nerdexam
(ISC)2

CISSP · Question #797

Which of the following is the PRIMARY objective of performing scans with an active discovery tool?

The correct answer is C. Asset identification (ID) and inventory management. The primary objective of performing scans with an active discovery tool is to identify active assets and populate an inventory list by actively probing the network.

Submitted by fatima_kr· Mar 5, 2026Security Assessment and Testing

Question

Which of the following is the PRIMARY objective of performing scans with an active discovery tool?

Options

  • ADiscovering virus and malware activity
  • BDiscovering changes for security configuration management (CM)
  • CAsset identification (ID) and inventory management
  • DVulnerability management and remediation

How the community answered

(38 responses)
  • A
    5% (2)
  • C
    92% (35)
  • D
    3% (1)

Why each option

The primary objective of performing scans with an active discovery tool is to identify active assets and populate an inventory list by actively probing the network.

ADiscovering virus and malware activity

Discovering virus and malware activity is typically handled by endpoint detection and response (EDR) tools, antivirus software, or intrusion detection systems (IDS), not primarily by active discovery tools.

BDiscovering changes for security configuration management (CM)

Discovering changes for security configuration management is achieved through configuration management tools that track baseline deviations, not primarily through active discovery scans.

CAsset identification (ID) and inventory managementCorrect

Active discovery tools, such as network scanners (e.g., Nmap), send probes (like ARP requests, ICMP pings, or port scans) across the network to identify live hosts, open ports, and running services. This process directly leads to asset identification by creating a list of active devices and helps build a comprehensive inventory of all connected devices on the network.

DVulnerability management and remediation

Vulnerability management and remediation are performed by dedicated vulnerability scanners that specifically look for known weaknesses, which is a subsequent step to asset identification, not the primary goal of active discovery.

Concept tested: Active discovery tools' primary function

Source: https://www.cisco.com/c/en/us/td/docs/dna/dna_center/sw/2_3_3_5/config_guide/b_dnac_config_guide_2_3_3_5/b_dnac_config_guide_2_3_3_5_chapter_0100.html

Topics

#asset identification#inventory management#network discovery#asset scanning

Community Discussion

No community discussion yet for this question.

Full CISSP Practice