Cyber AB CMMC-CCA Study & Exam Dumps 2025

Certified CMMC Assessor (CCA) Exam Questions and Answers

Question 1

An OSC has a large multi-building facility. One building is used as the OSC’s data center. A guard is stationed at the entrance to the data center. A vendor engineer comes onsite to perform maintenance on the storage array in the data center. The guard knows the engineer well and has the engineer fill out the visitor log with the contact person’s name and phone number, the reason for the visit, and the date and time. Since the guard has known the engineer for many years, what is the BEST step the guard should take?

Options:

Call the contact person and let her know that the engineer is onsite and give the engineer a temporary badge to enter the data center.

Call the operations center to give the engineer temporary access to enter the data center and escort the engineer to the array and leave.

Call the contact person to have her come down and escort the engineer to the array and stay with the engineer until the maintenance is complete.

Call the operations center to have one of the admins escort the engineer to the array and stay with the engineer until the maintenance is complete.

Buy Now

Question 2

An organization’s password policy includes these requirements:

Passwords must be at least 8 characters in length.

Passwords must contain at least one uppercase character, one lowercase character, and one numeric digit.

Passwords must be changed at least every 90 days.

When a password is changed, none of the previous 3 passwords can be reused.

Per IA.L2-3.5.7: Password Complexity, what requirement is missing from this password policy?

Options:

It does not require MFA.

It does not include a list of prohibited passwords.

It does not specify a minimum change of character requirement.

It does not require the password to contain at least one special character.

Question 3

Video monitoring is used by an OSC to help meet PE.L2-3.10.2: Monitor Facility. The OSC’s building has three external doors, each with badge access and a network-connected video camera above the door. The video cameras are connected to the same network as employee computers. The OSC contracted a local security company to provide surveillance services. The security company stores the recordings at its premises and requires access to the OSC’s network to manage the video cameras. Which factor is a clear negative finding for the OSC’s assessment?

Options:

Video surveillance needs to be of both private and public areas of the building

A non-certified third party accesses the OSC’s network to manage the cameras

Video surveillance alone does not satisfy the facility monitoring requirement of PE.L2-3.10.2

A non-certified third party’s data center may not store video recordings for a company authorized to process CUI

Get Free CMMC-CCA Questions and Answers

Summer Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Cyber AB CMMC-CCA Exam With Confidence Using Practice Dumps

CMMC-CCA: CMMC Exam 2025 Study Guide Pdf and Test Engine

Related Cyber AB Exams

Certified CMMC Assessor (CCA) Exam Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce