ACAS Training and Best Practice Reviews with Questions and Complete Solutions, A+

A vulnerability will be marked as mitigated in the T repository if a subsequent scan determines that the vulnerability is no longer present on the endpoint. Select the correct answer. a. True b. False a Select the best answer. a. Active Scan View b. Vulnerability Summary c. IP Summary d. Remediation Summary c Nessus Agents are lightweight Nessus scanners installed on the endpoint, according to the ACAS Agent Rapid Deployment Guide. Select the best answer. a. True b. False a Per the Best Practices Guide, which of the following statements are true? Select the correct answer(s). a. The TASKORD defines several target types on which Nessus Agents are required to be installed. b. Nessus Agents can be installed on addition endpoints above TASKORD requirement. c. Per the TASKORD organizations endpoints which leverage a Nessus Agents must also be scanned with the Nessus active scanner using ACAS Best Practice Guide Agent Differential scan policy. d. If you use Nessus Agents, then you don't need any other scanning tools for ACAS. e. All the above a b c Nessus Agent and Manager use the same software. Select the correct answer. a. True b. False b Per the Best Practices Guide, which of these statements is true. Select the correct answers. a. ACAS TASKORD 20-0020 FRAGO 3 clarifies that only DISA STIG Tenable Audit files are to be used for configuration scanning in ACAS. b. DISA SCAP-compliant, automated benchmarks are still acceptable for ingest into CMRS. c. Audit files are proprietary formatted XML files that define how ACAS should check for configuration with a specified benchmark. d. Tenable distributes audit files via the the T Feed that is used to update T e. None of the above a c d It has been 20 days since your last configuration (STIG) scan. Per FRAGO 2 of the Task Order 20-0020, which of the following statements reflects your current compliance status? Select the best answer. In compliance because configuration scans are only required every 30 days. In compliance because vulnerability scans are only required every 21 days. Out of compliance because configuration scans are required every 14 days. Out of compliance because vulnerability scans are required every single day. a Choose the T Severity Level that corresponds to the Configuration result. Tenable re-used severity levels for configuration results. a. Critical b. High c. Medium d. Info a. Not used with configuration b. Failed configuration check c. Unable to Determine/Error d. Passed configuration check Per the ACAS Best Practices Guide, which of the following T resources are proprietary formatted XML files that define how ACAS should check for configuration with a specified STIG? Select the best answer: a. Credentials b. Queries c. Policies d. Audit Files d The Tenable Nessus vulnerability scanner allows you to perform compliance audits of numerous platforms including (but not limited to) databases, Cisco, Unix, and Windows configurations as well as sensitive data discovery based on regex contained in audit files. Audit files are XML-based text files that contain the specific configuration, file permission, and access control tests to be performed. Log in to Tenable Security Center via the user interface. Click Scans Audit Files. The Audit Files page appears. Scan zone Scan zones are areas of your network that you want to target in an active scan Associates an IP address or range of IP addresses with one or more scanners You must create scan zones in order to run active scans in Tenable Security Center. CVSS vs. VPR CVSS is the overall score assigned to a vulnerability. CVE is simply a list of all publicly disclosed vulnerabilities that includes the CVE ID, a description, dates, and comments. The CVSS score is not reported in the CVE listing – you must use the NVD to find assigned CVSS scores. Tenable calculates a dynamic VPR for most vulnerabilities. The VPR is a dynamic companion to the data provided by the vulnerability's CVSS score, since Tenable updates the VPR to reflect the current threat landscape. VPR values range from 0.1-10.0, with a higher value representing a higher likelihood of exploit. Note: When you view these metrics on an analysis page organized by plugin (for example, the Vulnerabilities page), the metrics represent the highest value assigned or calculated for a vulnerability associated with the plugin. Nessus scanners Collects data and reports results to T console CAT II vulnerability weight 4 CAT I vulnerability weight 10 JFHQ-DODIN Order TASKORD 20-0020 Security Manager Role Capabilities Launches scans, configures users, policies, and objects for their organization ACAS metrics Pulled from 'Scans Scan Results' in ACAS Menu Tab SecurityCenter plugin update frequency Daily Air Force entity for ACAS information 561 NOS Network Address Declaration (NAD) responsibility ISSM Vulnerability scan type Assessment Scan (authenticated vs unauthenticated) Discovery Scan - find assets on your network ACAS account access Determined by roles ACAS configuration tasks Performed by Administrator role ACAS asset list for validating hosts Dynamic Dyanmic assets Dynamic Assets Dynamic assets are flexible groups of condition statements that Tenable Security Center uses to retrieve a list of devices meeting the conditions. Tenable Security Center refreshes dynamic asset lists using the results from Tenable Security Center scans. You cannot use dynamic assets until after Tenable Security Center performs an initial discovery scan and retrieves a list of devices. Maximum hosts in a single targeted scan 2,500 What is a Tenable Scan policy In Tenable's Security Center (now part of T for clarity), a scan policy is a comprehensive set of configurations that dictate how vulnerability scans are conducted. It contains: Plugin Settings: Defines which plugins are enabled or disabled for a scan. Plugins are scripts that check for specific types of vulnerabilities. Advanced Directives: These are configurations that fine-tune the scanning process, adjusting it for specific requirements or environments. When an administrator creates a scan policy in Tenable Security Center, they're essentially setting up the rules and conditions under which a scan will operate. This includes the depth of the scan, the types of vulnerabilities to look for, and how aggressively the scan should attempt to identify potential security issues. T T repostirories are A repository database is crucial for storing detailed information about network vulnerabilities, compliance data, and other security-related insights derived from scans across an organization's network. Key points about the T repositories include: