ACAS Best Practice Knowledge Exam 1

ACAS Best Practice Knowledge Exam 1

Questions and Correct Answers Rated A+

Select the Task Order for the Implementation of Assured Compliance

Assessment Solution (ACAS) for the Enterprise:

• 12-0501
• 13-0294
• 16-0294
• 20-0020 -ANSWER-d

What is ACAS?

Select the best answer.

• ACAS is a system that ensures security for the DoD Networks.
• ACAS is a system that monitors and corrects vulnerabilities to

provide security for the DoD networks.

• ACAS is the Army Centralized Arial Sensor System.
• ACAS is a suite of commercial off-the-shelf (COTS) products used

to accurately assess the configuration compliance of DoD enterprise networks and connected system against DoD standards. -ANSWER-d

Select the component (below) with the letter of the matching description.

Drag the software tool to the bar beside the matching description of the component.

• The passive scanner that detects vulnerabilities by sniffing network

traffic

• The tool that probes hosts and does active vulnerability and

compliance scanning

• The central console that provides continuous endpoint security and

compliance monitoring

• The tool that can manage scan data, run scans and pull in data

from various Nessus Agents

• A lightweight program installed on the endpoint that gives you

visibility into other IT assets that connect intermittently to the internet - ANSWER-a. Nessus Network Monitor

• Nessus
• Tenable.sc
• Nessus Manager
• Nessus Agent

You have just logged in to your new instance of Tenable.sc. You are in California. The default local time zone is set to EST (New York).Where would you change the time zone to California in the Tenable.sc?

Select the best answer.

• Dashboard > Dashboard
• Username Menu > Feeds
• Username Menu > Profile
• Workflow > Tickets
• Username Menu > Help -ANSWER-c

You were just directed to update the version of your Tenable.sc.Where would you see the version of your current Tenable.sc in the tool itself?

Select the best answer.

• Dashboard > Assurance Report Cards
• Username Menu > About
• Workflow > Alerts
• Reporting > Reports -ANSWER-b

On which website would you look for the ACAS documentation?

Select the best answer.

• eMASS website
• Path Repository
• DEPS portal
• Cyber Exchange -ANSWER-b

Match the building block term with the matching description below.Drag the definition/description to the bar beside the appropriate building block. Then drop it.

• Repository
• Organization
• Zone
• Plugin -ANSWER-a. A set of proprietary data files that stores scan

results and resides on the Tenable.sc

• A group(s) of users responsible for a secific set(s) of assets
• A defined static range of IP addresses with an associated Nessus

scanner(s)

• A script file used to collect and interpret vulnerability, compliance,

and configuration data

The IP address(es) you are scanning must be contained in both the definition of the scan zone and the definition of the repository. Will Repository A accept the Scan Results for IP 192.168.1.10?

• Yes, because the IP address is in the scan zone definition.
• Yes, because the Repository definition contains that IP address.
• No, because the IP address in not in the Repository definition.
• No, because you must have two Repositories. -ANSWER-c

Per the ACAS contract, how can you get your Tenable.sc plugin updates?

Select all that apply.

• Automatically, from DISA's plugin server

• Manually from the DoD Patch Repository
• Manually key the plugin updates into Tenable.sc -ANSWER-a b

Which user role could do these tasks in Tenable.sc?Drag the appropriate role to the task they could perform.

• Launch a scan
• Create a set of credentials
• Create a scan zone -ANSWER-a. Security Manager
• Both
• Administrator

Today is Thursday, and you are getting ready to run your weekly vulnerability scans. Your plugins were updated on Monday.

Select the correct answer based on your status.

• In compliance because active plugins must be updated within 7

days before TASKORD-mandated scans.

• In compliance because active plugins must be updated within 14

days before TASKORD-mandated scans.

• Out of compliance because active plugins must be updated within

72 hours before TASKORD-mandated scans.

• Out of compliance because active plugins must be updated within

24 hours before TASKORD-mandated scans. -ANSWER-a

According to the ACAS contract, what are the allowable options for scanning stand-alone networks?

Select the best answers from the ACAS Standalone Guide.

• Install both Nessus and Tenable.sc on a Linux system using

Kickstart.

• Install both Nessus and Tenable.sc on a 64-bit Windows operating

system with a virtualization application.

• Install Nessus as its own standalone system.