ACAS EXAM STUDY GUIDE
COMPLETE QUESTIONS WITH
CORRECT SOLUTIONS||100%
GUARANTEED PASS||UPDATED
2026/2027 SYLLABUS||A+
GRADED||<<RECENT VERSION>>
Which Security Center user role creates Scan Zones? Select the best answer.
A. Executive
B. Security Manager
C. Administrator
D. User
**** Module 3-4 **** - ANSWER ✓ C
Repositories are proprietary data files residing on the SecurityCenter that store
_______? Select the best answer.
A. Log files
B. Saved queries
C. Scan data
D. Compliance plugins
E. Tickets
,**** Module 3-5 **** - ANSWER ✓ C
What alert function defines what an alert does after it has been triggered? Select
the best answer.
A. Add Behaviors
B. Add Filters
C. Add Tickets
D. Add Actions
**** Module 3-7 **** - ANSWER ✓ D
Which of the following is NOT a potential action when defining an alert? Select
the best answer.
A. Send Email
B. Notify Users
C. Create Scan Policies
D. Assign Ticket
E. Launch Scan
F. Generate Syslog
**** Module 3-7 **** - ANSWER ✓ C
True/False
Tickets can be automatically generated from an alert or manually created.
,What is ACAS? - ANSWER ✓ ACAS is a network-based security compliance and
assessment capability
designed to provide awareness of the security posture and network health of
DoD networks.
Which of the following best describes the SecurityCenter? - ANSWER ✓ The
central console that provides continuous asset-based security and
compliance monitoring
A vulnerability is a weakness or an attack that can compromise your system. -
ANSWER ✓ False (a vulnerability does not include an attack)
The Nessus scanner monitors data at rest, while the PVS monitors data in motion.
- ANSWER ✓ True
PVS detects vulnerabilities based on network traffic instead of actively scanning
hosts. - ANSWER ✓ True
Which ACAS component performs active vulnerability and compliance scanning?
- ANSWER ✓ Nessus
CMRS is a tool to provide DoD component- and enterprise-level situational
awareness by quantitatively displaying an organization's security posture. -
ANSWER ✓ True
Select the Task Order for the Implementation of Assured Compliance Assessment
Solution (ACAS) for the Enterprise: - ANSWER ✓ 13-670
Which page loads by default when you log in to SecurityCenter? Select the best
answer. - ANSWER ✓ Dashboard
Which of the following pages show the date and time of the most recent plugin
updates? - ANSWER ✓ Plugins, Feeds
Which page allows you to set your local time zone? - ANSWER ✓ Profile
, What is an organization? - ANSWER ✓ A group of individuals who are
responsible for a set of common assets
What is a scan zone? - ANSWER ✓ A defined static range of IP addresses with
an associated Nessus scanner(s)
What is the maximum size of a SecurityCenter 5 Repository? - ANSWER ✓ 32
GB
The IP address(es) you are scanning must be contained in both the definition of
the scan zone and the definition of the repository. - ANSWER ✓ True
What SecurityCenter role is responsible for setting up scan zones? - ANSWER ✓
Administrator
How can you get your SecurityCenter plugin updates? - ANSWER ✓
Automatically, from DISA's plugin server, Manually from the DoD Patch
Repository
The SecurityCenter Plugins menu displays a list of script files used by Nessus and
PVS scanners to collect and interpret vulnerability, compliance, and configuration
data. - ANSWER ✓ True
Which of the following are options you can consider for scanning stand-alone
networks? - ANSWER ✓ Install both Nessus and SecurityCenter on a Linux
Laptop using Kickstart, Install both Nessus and SecurityCenter in virtual machines
on a Windows 7 laptop, Detach a Nessus scanner from its SecurityCenter for
scanning purposes and then reattach to SecurityCenter to upload scan results
Components of an Active Vulnerability Scan consist of: a policy, credentials, scan
zone, schedule, _________, and __________. - ANSWER ✓ Repository, Target
list
_________ are administrative-level usernames and passwords (or SSH keypairs)
used in authenticated scans? - ANSWER ✓ Credentials
You can associate multiple credentials with a single scan. - ANSWER ✓ True
COMPLETE QUESTIONS WITH
CORRECT SOLUTIONS||100%
GUARANTEED PASS||UPDATED
2026/2027 SYLLABUS||A+
GRADED||<<RECENT VERSION>>
Which Security Center user role creates Scan Zones? Select the best answer.
A. Executive
B. Security Manager
C. Administrator
D. User
**** Module 3-4 **** - ANSWER ✓ C
Repositories are proprietary data files residing on the SecurityCenter that store
_______? Select the best answer.
A. Log files
B. Saved queries
C. Scan data
D. Compliance plugins
E. Tickets
,**** Module 3-5 **** - ANSWER ✓ C
What alert function defines what an alert does after it has been triggered? Select
the best answer.
A. Add Behaviors
B. Add Filters
C. Add Tickets
D. Add Actions
**** Module 3-7 **** - ANSWER ✓ D
Which of the following is NOT a potential action when defining an alert? Select
the best answer.
A. Send Email
B. Notify Users
C. Create Scan Policies
D. Assign Ticket
E. Launch Scan
F. Generate Syslog
**** Module 3-7 **** - ANSWER ✓ C
True/False
Tickets can be automatically generated from an alert or manually created.
,What is ACAS? - ANSWER ✓ ACAS is a network-based security compliance and
assessment capability
designed to provide awareness of the security posture and network health of
DoD networks.
Which of the following best describes the SecurityCenter? - ANSWER ✓ The
central console that provides continuous asset-based security and
compliance monitoring
A vulnerability is a weakness or an attack that can compromise your system. -
ANSWER ✓ False (a vulnerability does not include an attack)
The Nessus scanner monitors data at rest, while the PVS monitors data in motion.
- ANSWER ✓ True
PVS detects vulnerabilities based on network traffic instead of actively scanning
hosts. - ANSWER ✓ True
Which ACAS component performs active vulnerability and compliance scanning?
- ANSWER ✓ Nessus
CMRS is a tool to provide DoD component- and enterprise-level situational
awareness by quantitatively displaying an organization's security posture. -
ANSWER ✓ True
Select the Task Order for the Implementation of Assured Compliance Assessment
Solution (ACAS) for the Enterprise: - ANSWER ✓ 13-670
Which page loads by default when you log in to SecurityCenter? Select the best
answer. - ANSWER ✓ Dashboard
Which of the following pages show the date and time of the most recent plugin
updates? - ANSWER ✓ Plugins, Feeds
Which page allows you to set your local time zone? - ANSWER ✓ Profile
, What is an organization? - ANSWER ✓ A group of individuals who are
responsible for a set of common assets
What is a scan zone? - ANSWER ✓ A defined static range of IP addresses with
an associated Nessus scanner(s)
What is the maximum size of a SecurityCenter 5 Repository? - ANSWER ✓ 32
GB
The IP address(es) you are scanning must be contained in both the definition of
the scan zone and the definition of the repository. - ANSWER ✓ True
What SecurityCenter role is responsible for setting up scan zones? - ANSWER ✓
Administrator
How can you get your SecurityCenter plugin updates? - ANSWER ✓
Automatically, from DISA's plugin server, Manually from the DoD Patch
Repository
The SecurityCenter Plugins menu displays a list of script files used by Nessus and
PVS scanners to collect and interpret vulnerability, compliance, and configuration
data. - ANSWER ✓ True
Which of the following are options you can consider for scanning stand-alone
networks? - ANSWER ✓ Install both Nessus and SecurityCenter on a Linux
Laptop using Kickstart, Install both Nessus and SecurityCenter in virtual machines
on a Windows 7 laptop, Detach a Nessus scanner from its SecurityCenter for
scanning purposes and then reattach to SecurityCenter to upload scan results
Components of an Active Vulnerability Scan consist of: a policy, credentials, scan
zone, schedule, _________, and __________. - ANSWER ✓ Repository, Target
list
_________ are administrative-level usernames and passwords (or SSH keypairs)
used in authenticated scans? - ANSWER ✓ Credentials
You can associate multiple credentials with a single scan. - ANSWER ✓ True
