ACAS Review UPDATED Questions and
CORRECT Answers
Components of an Active Vulnerability Scan consist of: A policy, credentials, scan zone,
schedule, ________, and _________. - CORRECT ANSWER - Repository and Target List
______ are administrative level usernames and passwords used in authenticated scans? -
CORRECT ANSWER - Credentials
True/False: You can associate multiple credentials with a single scan - CORRECT
ANSWER - True
Networks using DHCP require what Active Scan setting be enabled to properly track hosts -
CORRECT ANSWER - Track hosts which have been issued new IP addresses
Which type of scan obtains information by authenticating to the host access resources not
available over the network - CORRECT ANSWER - Credentialed
True/False: You may only select one import repository per scan - CORRECT ANSWER -
True
True/False: Once a scan is running, you cannot pause or stop it until it is completed - CORRECT
ANSWER - False
Which Port Scanning Range option tells the scanner to scan only common ports? - CORRECT
ANSWER - Default
In a low-bandwidth environment, which options might you adjust to try to improve scanning
performance? - CORRECT ANSWER - Max Simultaneous Checks Per Host and Max
Simultaneous Hosts Per Scan
, What is the function of Performance Options in the Scan Policy? - CORRECT ANSWER -
Determines the impact of a scan related to scan times and network behavior
You can configures the targets for you Blackout Window to include... - CORRECT
ANSWER - All Systems, Assets, IPs, Mixed
Which Scan Policy types allows you to select Plugin Families you want? - CORRECT
ANSWER - Custom Advanced Scan
What is an organization? - CORRECT ANSWER - A group of individuals who are
responsible for a set of common assets
What is a scan zone? - CORRECT ANSWER - A defined static range of IP addresses with
an associated Nessus scanner
What is the maximum size of a SecurityCenter 5 Repository? - CORRECT ANSWER -
32GB
True/False: The IP addresses you are scanning must be contained in both the definition of the
scan zone and the definition of the repository - CORRECT ANSWER - True
What SecurityCenter Role is responsible for setting scan zones? - CORRECT ANSWER -
Admin
How can you get your SecurityCenter Plugin updates? - CORRECT ANSWER -
Automatically from DISA's plugin server or Manually from the DoD Patch Repository
True/False: The SecurityCenter Plugins menu displays a list of script files used by Nessus and
PVS scanners to collect and interpret vulnerability, compliance, and configuration data. -
CORRECT ANSWER - True
CORRECT Answers
Components of an Active Vulnerability Scan consist of: A policy, credentials, scan zone,
schedule, ________, and _________. - CORRECT ANSWER - Repository and Target List
______ are administrative level usernames and passwords used in authenticated scans? -
CORRECT ANSWER - Credentials
True/False: You can associate multiple credentials with a single scan - CORRECT
ANSWER - True
Networks using DHCP require what Active Scan setting be enabled to properly track hosts -
CORRECT ANSWER - Track hosts which have been issued new IP addresses
Which type of scan obtains information by authenticating to the host access resources not
available over the network - CORRECT ANSWER - Credentialed
True/False: You may only select one import repository per scan - CORRECT ANSWER -
True
True/False: Once a scan is running, you cannot pause or stop it until it is completed - CORRECT
ANSWER - False
Which Port Scanning Range option tells the scanner to scan only common ports? - CORRECT
ANSWER - Default
In a low-bandwidth environment, which options might you adjust to try to improve scanning
performance? - CORRECT ANSWER - Max Simultaneous Checks Per Host and Max
Simultaneous Hosts Per Scan
, What is the function of Performance Options in the Scan Policy? - CORRECT ANSWER -
Determines the impact of a scan related to scan times and network behavior
You can configures the targets for you Blackout Window to include... - CORRECT
ANSWER - All Systems, Assets, IPs, Mixed
Which Scan Policy types allows you to select Plugin Families you want? - CORRECT
ANSWER - Custom Advanced Scan
What is an organization? - CORRECT ANSWER - A group of individuals who are
responsible for a set of common assets
What is a scan zone? - CORRECT ANSWER - A defined static range of IP addresses with
an associated Nessus scanner
What is the maximum size of a SecurityCenter 5 Repository? - CORRECT ANSWER -
32GB
True/False: The IP addresses you are scanning must be contained in both the definition of the
scan zone and the definition of the repository - CORRECT ANSWER - True
What SecurityCenter Role is responsible for setting scan zones? - CORRECT ANSWER -
Admin
How can you get your SecurityCenter Plugin updates? - CORRECT ANSWER -
Automatically from DISA's plugin server or Manually from the DoD Patch Repository
True/False: The SecurityCenter Plugins menu displays a list of script files used by Nessus and
PVS scanners to collect and interpret vulnerability, compliance, and configuration data. -
CORRECT ANSWER - True
