nerdexam
ExamsCAS-002Questions#3
CompTIA

CAS-002 · Question #3

CAS-002 Question #3: Real Exam Question with Answer & Explanation

The correct answer is D: Distributed patch management system where all updates are tested in a lab environment. Testing patches in a lab environment before deploying to production minimizes downtime by catching problematic updates before they affect operational systems.

Question

Several critical servers are unresponsive after an update was installed. Other computers that have not yet received the same update are operational, but are vulnerable to certain buffer overflow attacks. The security administrator is required to ensure all systems have the latest updates while minimizing any downtime. Which of the following is the BEST risk mitigation strategy to use to ensure a system is properly updated and operational?

Options

  • ADistributed patch management system where all systems in production are patched as
  • BCentral patch management system where all systems in production are patched by
  • CCentral patch management system where all updates are tested in a lab environment after
  • DDistributed patch management system where all updates are tested in a lab environment

Explanation

Testing patches in a lab environment before deploying to production minimizes downtime by catching problematic updates before they affect operational systems.

Common mistakes.

  • A. Patching all production systems simultaneously without prior lab testing is the scenario that caused the outage described; it maximizes exposure and downtime risk.
  • B. A centralized system that patches all production systems directly also skips the lab validation step, repeating the same risky process that caused the initial failure.
  • C. Testing in a lab environment after deploying to production reverses the correct order; issues are discovered only after production systems are already impacted.

Concept tested. Patch management lab testing before production deployment

Reference. https://learn.microsoft.com/en-us/windows/deployment/update/waas-manage-updates-wsus

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice