Citrix ADC Advanced Topics - Security, Management, and Optimization v1.0 (1Y0-341)

Page:    1 / 8   
Total 108 questions

Scenario: A Citrix Engineer creates a Responder policy to redirect users attempting to access an application protected with Citrix Web App Firewall. Instead of being redirected, users are seeing an ‘Access Denied’ page.
This is happening because Citrix Web App Firewall is processed ___________. (Choose the correct option to complete the sentence.)

  • A. before Responder, and the redirection is invalid
  • B. after Responder, but the violation is applied to prevent access
  • C. before Responder, and a violation is occurring
  • D. after Responder, and the redirection is invalid


Answer : B

A Citrix Engineer enabled Cookie Consistency protection on a web application and wants to verify that it is working.
Which cookie name can the engineer look for in the HTTP headers sent from the client to verify the protection?

  • A. Citrix_ns_id
  • B. Citrix_waf_id
  • C. Citrix_adc_id
  • D. Citrix_sc_id


Answer : D

Which protection is applied on a server response from a protected application?

  • A. Cross-Site Request Forgeries (CSRF)
  • B. Form Field Consistency
  • C. HTML Cross-Site Scripting (XSS)
  • D. Safe Object


Answer : A

Which variable will display the client’s source IP address when added to an HTML Error Object page?

  • A. $[CLIENT.IP.SRC]
  • B. ${CLIENT.IP.SRC}
  • C. $<CLIENT.IP.SRC>
  • D. $(CLIENT.IP.SRC)


Answer : B

Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. After the Web App Firewall policy afweb_protect is bound to the virtual server, the engineer notices that Citrix Web App Firewall is NOT properly displaying the page.
A positive number for the Policy Hits counter for afweb_protect, tells the engineer the number of times Citrix Web App Firewall ___________. (Choose the correct option to complete the sentence.)

  • A. received a request that matched the policy expression for afweb_protect
  • B. blocked traffic for web applications assigned the afweb_protect policy
  • C. logged a request matching the expression defined in the afweb_protect policy
  • D. forwarded users to the Redirect URL specified in the profile assigned to afweb_protect


Answer : C

Which license must be present on the Citrix ADC for the Citrix Application Delivery Management (ADM) Service to generate HDX Insight reports that present one year’s worth of data?

  • A. Advanced
  • B. Premium Plus
  • C. Premium
  • D. Standard


Answer : A

A Citrix Engineer is reviewing the log files for a sensitive web application and notices that someone accessed the application using the engineer’s credentials while the engineer was out of the office for an extended period of time.
Which production can the engineer implement to protect against this vulnerability?

  • A. Deny URL
  • B. Buffer Overflow
  • C. Form Field Consistency
  • D. Cookie Consistency


Answer : C

Which build-in TCP profile can a Citrix Engineer assign to a virtual server to improve performance for users who access an application from a remote office over an ATM connection?

  • A. nstcp_default_tcp_lfp
  • B. nstcp_default_tcp_lan
  • C. nstcp_default_tcp_interactive_stream
  • D. nstcp_default_tcp_lnp


Answer : C

Scenario: A Citrix Engineer has configured Citrix Application Delivery Management (ADM) to monitor applications presented by Citrix ADC appliances. When reviewing the App Security Dashboard, the engineer finds no data.

What must the engineer do to ensure data is being collected from the applications?

  • A. Update the password stored in the instance profile on Citrix ADM.
  • B. Point the default route on Citrix ADM to the subnet with the NSIPs of the Citrix ADC appliances.
  • C. Enable AppFlow for Security Insight on the instances in Citrix ADM.
  • D. Enable the Web App Firewall feature on the Citrix ADC appliances.


Answer : C

Scenario: A Citrix Engineer needs to limit Front End Optimization (FEO) on a web application to mobile users with mobile devices. The engineer deckles to create and bind an FEO policy.

Which advanced expression should the engineer use in the FEO policy?

  • A. CLIENT.IP.SRC.IS_MOBILE
  • B. HTTP.REQ.HEADER(“User-Agent”).CONTAINS(“IOS”)||HTTP.REQ.HEADER(“User-Agent”).CONTAINS(“Android”)
  • C. HTTP.REQ.HEADER(“User-Agent”).CONTAINS(“Mobile”) && CLIENT.IP.SRC.IN_SUBNET(192.168.10.0/24).NOT
  • D. HTTP.REQ.HEADER(“User-Agent”).NOTCONTAINS(“Windows”) && CLIENT.IS_MOBILE


Answer : D

Scenario: A Citrix Engineer notices that a web page takes a long time to display. Upon further investigation, the engineer determines that the requested page is referencing 48 other elements for download.

Which Front End Optimization technique can the engineer enable on the Citrix ADC to improve time-to-display?

  • A. Domain Sharding
  • B. Remove comments from HTML
  • C. Move to Head Tag
  • D. Shrink to Attributes


Answer : A

Which Citrix Web App Firewall profile setting can a Citrix Engineer Implement to remove non-essential content from web files to improve response time?

  • A. Exclude Uploaded Files from Security Checks
  • B. Exempt Closure URLs from Security Checks
  • C. Strip HTML Comments
  • D. Enable Form Tagging


Answer : C

Which Citrix Application Delivery Management (ADM) Analytics page allows an engineer to measure the ICA Round-Trip Time for user connections?

  • A. Security Insight
  • B. TCP Insight
  • C. HDX Insight
  • D. Web Insight
  • E. Gateway Insight


Answer : C

Scenario: A Citrix Engineer is using Citrix Application Delivery Management (ADM) to manage SSL certificates across all Citrix ADC instances. The engineer wants to distribute a new certificate to the devices.

What, in addition to the certificate file, must the engineer provide when uploading the new certificate?

  • A. Root Certificate
  • B. Serial Number File
  • C. Certificate Signing Request (CSR)
  • D. Key File


Answer : D

Scenario: A Citrix Engineer is asked to help improve the performance of a web application. After capturing and analyzing a typical session, the engineer notices a large number of requests for small graphics files, each smaller than 10KB.

Which action can the engineer take to improve web application performance for the graphics files?

  • A. Enable the Convert GIF to PNG image optimization.
  • B. Create a static content group.
  • C. Enable the Shrink to Attributes image optimization.
  • D. Create a dynamic content group.


Answer : A

Page:    1 / 8   
Total 108 questions