CompTIA
PT0-001 · Question #86
PT0-001 Question #86: Real Exam Question with Answer & Explanation
The correct answer is A: Storage access. When a compliance scan returns fewer assets than the network diagram shows, the scanner likely lacked visibility into storage network segments or was constrained to a limited portion of the network.
Reconnaissance and enumeration
Question
The results of a basic compliance scan show a subset of assets on a network. This data differs from what is shown on the network architecture diagram, which was supplied at the beginning of the test. Which of the following are the MOST likely causes for this difference? (Select TWO)
Options
- AStorage access
- BLimited network access
- CMisconfigured DHCP server
- DIncorrect credentials
- ENetwork access controls
Explanation
When a compliance scan returns fewer assets than the network diagram shows, the scanner likely lacked visibility into storage network segments or was constrained to a limited portion of the network.
Common mistakes.
- C. A misconfigured DHCP server would affect IP address assignment for endpoints but would not reduce the number of devices visible to a network scanner that has already obtained connectivity.
- D. Incorrect credentials would cause authentication or enumeration failures on discovered hosts but would not prevent the scanner from detecting that those hosts exist on the network.
- E. Network access controls could restrict scanner traffic in ways that overlap with limited network access, but as a distinct answer choice it is less precisely the root cause compared to B, which directly describes the scanner's constrained network reach.
Concept tested. Compliance scan scope limitations and network segment visibility
Reference. https://csrc.nist.gov/publications/detail/sp/800-115/final
Topics
#network discovery#compliance scanning#asset inventory#scan discrepancy
Community Discussion
No community discussion yet for this question.