CISSP · Question #797
Which of the following is the PRIMARY objective of performing scans with an active discovery tool?
The correct answer is C. Asset identification (ID) and inventory management. The primary objective of performing scans with an active discovery tool is to identify active assets and populate an inventory list by actively probing the network.
Question
Which of the following is the PRIMARY objective of performing scans with an active discovery tool?
Options
- ADiscovering virus and malware activity
- BDiscovering changes for security configuration management (CM)
- CAsset identification (ID) and inventory management
- DVulnerability management and remediation
How the community answered
(38 responses)- A5% (2)
- C92% (35)
- D3% (1)
Why each option
The primary objective of performing scans with an active discovery tool is to identify active assets and populate an inventory list by actively probing the network.
Discovering virus and malware activity is typically handled by endpoint detection and response (EDR) tools, antivirus software, or intrusion detection systems (IDS), not primarily by active discovery tools.
Discovering changes for security configuration management is achieved through configuration management tools that track baseline deviations, not primarily through active discovery scans.
Active discovery tools, such as network scanners (e.g., Nmap), send probes (like ARP requests, ICMP pings, or port scans) across the network to identify live hosts, open ports, and running services. This process directly leads to asset identification by creating a list of active devices and helps build a comprehensive inventory of all connected devices on the network.
Vulnerability management and remediation are performed by dedicated vulnerability scanners that specifically look for known weaknesses, which is a subsequent step to asset identification, not the primary goal of active discovery.
Concept tested: Active discovery tools' primary function
Source: https://www.cisco.com/c/en/us/td/docs/dna/dna_center/sw/2_3_3_5/config_guide/b_dnac_config_guide_2_3_3_5/b_dnac_config_guide_2_3_3_5_chapter_0100.html
Topics
Community Discussion
No community discussion yet for this question.