Free 1Y0-341 Sample Questions — Citrix ADC Advanced Topics - Security, Management, and Optimization

Which Citrix Application Delivery Management (ADM) feature can a Citrix Engineer use to narrow a list of Citrix ADC devices based on pre-defined criteria?

• A. AutoScale Groups
• B. Instance Groups
• C. Configuration Template
• D. Tags
• E. Agent

Scenario: A Citrix Engineer needs to forward the Citrix Web App Firewall log entries to a central management service. This central management service uses an open log file standard. Which log file format should the engineer use in the Citrix Web App Firewall engine settings to designate the open log file standard?

• A. CEF
• B. IIS
• C. W3C
• D. TLA

Scenario: A Citrix Engineer creates a Responder policy to redirect users attempting to access an application protected with Citrix Web App Firewall. Instead of being redirected, users are seeing an ‘Access Denied’ page. This is happening because Citrix Web App Firewall is processed ___________. (Choose the correct option to complete the sentence.)

• A. before Responder, and the redirection is invalid
• B. after Responder, but the violation is applied to prevent access
• C. before Responder, and a violation is occurring
• D. after Responder, and the redirection is invalid

Which three items does Citrix Application Delivery Management (ADM) require when adding an instances? (Choose three.)

• A. Site
• B. Tags
• C. IP address
• D. Agent
• E. Profile

Which action ensures that content is retrieved from the server of origin?

• A. CACHE
• B. MAY_CACHE
• C. NOCACHE
• D. MAY_NOCACHE

Which Citrix Web App Firewall engine setting can a Citrix Engineer use to ensure that protections are applied in the event that an advanced policy expression cannot be evaluated as either ‘True’ or ‘False’?

• A. Undefined profile
• B. Entity Decoding
• C. Default profile
• D. Session Limit

Which setting in the Cookie Consistency protection feature does a Citrix Engineer need to configure to ensure that all a cookie is sent using TLS only?

• A. Encrypt Server Cookies > Encrypt All
• B. Flags to Add in Cookies > Secure
• C. Encrypt Server Cookies > Encrypt Session Only
• D. Proxy Server Cookies > Session Only

Scenario: A Citrix Engineer wants to use Citrix Application Delivery Management (ADM) to monitor a single Citrix ADC VPX with eight web applications and one Citrix Gateway. It is important that the collected data be protected. Which deployment will satisfy the requirements?

• A. single Citrix ADM with database replication to a secondary storage repository
• B. pair of Citrix ADM virtual appliances configured for High Availability
• C. single Citrix ADM imported onto the same hypervisor as the Citrix ADC VPX
• D. pair of Citrix ADM virtual appliances, each working independently

Scenario: A Citrix Engineer is implementing Citrix Web App Firewall to protect a new web application. The engineer has created a profile, configured the relaxation rules, and applied signature protections. Additionally, the engineer has assigned the profile to a policy and bound the policy to the application. What is the next step for the engineer in protecting the web application?

• A. Update the global default Citrix Wed App Firewall profile with the new signature file
• B. Enable the Signature Auto-Update feature
• C. Enable logging on key protections
• D. Test the web application protections with a group of trusted users

How can a Citrix Engineer ensure that the Citrix ADC rejects all HTTP/0.9 requests?

• A. Select 'Change HTTP Parameters' under System > Settings. Select 'Mark HTTP/0.9 Requests as Invalid'
• B. Modify the default HTTP profile and select 'Mark HTTP/0.9 Requests as Invalid'. Bind the default HTTP profile globally
• C. Create an HTTP profile and select 'Mark HTTP/0.9 Requests as Invalid’. Assign the HTTP profile to the service group
• D. Create an HTTP profile and select 'Mark HTTP/0.9 Requests as Invalid'. Assign the HTTP profile to the virtual server

Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall. Signature Auto-Update has been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the settings for Signature Auto Update the engineer notices that the URL is blank. Which URL should the engineer enter to restore the update process?

• A. https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMapping.xml
• B. https://download.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
• C. https://www.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
• D. https://citrix.azure.com/NSAppFwSignatures/SignaturesMapping.xml

Statistics for which three types of violations are presented on the App Security Dashboard? (Choose three.)

• A. Web App Firewall protection
• B. IP Reputation
• C. SSL Enterprise Policy
• D. Signature
• E. AAA

A Citrix Engineer needs to set up access to an internal application for external partners. Which two entities must the engineer configure on the Citrix ADC to support this? (Choose two.)

• A. SAML Policy
• B. SAML IdP Profile
• C. SAML IdP Policy
• D. SAML Action

Scenario: A Citrix Engineer is asked to implement multi-factor authentication for Citrix Gateway. The engineer creates the authentication policies and binds the policies to the appropriate bind points. The engineer creates a custom form using Notepad++ to format the page which will capture the user's credentials. The engineer uploads the form and binds the form to the authentication policy. When the engineer connects to the Citrix Gateway for validation testing, the form fields are NOT correctly displayed. What is the most likely cause of this display issue?

• A. The login schema contains invalid XML syntax
• B. The authentication policies are bound in the wrong order
• C. The first authentication server is offline
• D. The policy bindings are NOT consistent with the login schema

Which protection is applied on a server response from a protected application?

• A. Cross-Site Request Forgeries (CSRF)
• B. Form Field Consistency
• C. HTML Cross-Site Scripting (XSS)
• D. Safe Object

Which report can a Citrix Engineer review to ensure that the Citrix ADC meets all PCI-DSS requirements.

• A. Generate Application Firewall Configuration
• B. PCI-DSS Standards
• C. Application Firewall Violations Summary
• D. Generate PCI-DSS

Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Users report that they are NOT able to log on. The engineer enables a Start URL relaxation for the path //login.aspx. What is the effect of the Start URL relaxation on the application?

• A. Access to the path /login.aspx is unblocked
• B. Access to the path /login.aspx is blocked
• C. External users are blocked from the path /login.aspx. Internal users are permitted to the path /login.aspx.
• D. Non-administrative users are blocked from the path /login.aspx Administrative users are permitted to the path /login.aspx.

Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received from a protected web application is NOT matching what the web server is sending out. The engineer is concerned that someone is trying to disrupt caching behavior. Which action is the Citrix Web App Firewall performing that would trigger this false positive?

• A. Removing the Last-Modified header
• B. Inserting a hidden form field
• C. Removing the Accept-Encoding header
• D. Modifying and adding cookies in the response

Scenario: A Citrix Engineer needs to ensure that the flow of traffic to a web application does NOT overwhelm the server. After thorough testing, the engineer determines that the application can handle a maximum of 3,000 requests per minute. The engineer builds a limit identifier, rl_maxrequests, to enforce this limitation. Which advanced expression can the engineer write in the Responder policy to invoke rate limiting?

• A. SYS.CHECK_LIMIT(“rl_maxrequests”)
• B. SYS.CHECK_LIMIT(“rl_maxrequests”).CONTAINS(“Busy”)
• C. SYS.CHECK_LIMIT(“rl_maxrequests”).IS_VALID
• D. SYS.CHECK_LIMIT(“rl_maxrequests”).GE(3000)

Scenario: When reviewing the activity lags for a web application, a Citrix Engineer notices a high number of requests for the page, /setup.aspx. Further investigation reveals that most of these requests originated from outside the network. Which protection can the engineer implement to prevent this?

• A. Start URL with URL Closure
• B. HTML Cross-Site Scripting (XSS)
• C. Buffer Overflow
• D. Cookie Consistency