1Y0-341 Exam - Citrix ADC Advanced Topics - Security-Management and Optimization

NEW QUESTION 1
Which Front End Optimization technique can a Citrix Engineer enable on the Citrix ADC to remove all excess whitespace from a file?

• A. Shrink to Attributes
• B. Minify
• C. Lazy Load
• D. Inlining

Answer: B

NEW QUESTION 2
Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. The engineer enables the Learn action for the Start URL, HTML, Cross-Site Scripting, and HTML SQL Injection protections. The engineer assigns this profile to a policy, which is then bound to the virtual server.
Which two items can the engineer check to determine that the Learn action is NOT capturing any rules? (Choose two.)

• A. The HTML Error Object is configured for the profile.
• B. Enough space is left on the /flash file system.
• C. The aslearn process is running on the Citrix ADC appliance.
• D. The Learn database is less than 20 MB.

Answer: AC

NEW QUESTION 3
Scenario: A Citrix Engineer implements Application-level Quality of Experience (AppQoE) to protect a web application. The engineer configures the AppQoE action to deliver a custom response from a backup server once the maximum number of concurrent connection is reached.
To achieve this, the engineer should set the Acton Type to and specify the . (Choose the correct option to complete the sentence.)

• A. NS; Alternate Content Server Name
• B. ACS; Custom File
• C. ACS; Alternate Content Server Name
• D. NS; Custom File

Answer: C

NEW QUESTION 4
Scenario: A Citrix Engineer creates a Responder policy to redirect users attempting to access an application protected with Citrix Web App Firewall. Instead of being redirected, users are seeing an ‘Access Denied’ page.
This is happening because Citrix Web App Firewall is processed. (Choose the correct option to complete the sentence.)

• A. before Responder, and the redirection is invalid
• B. after Responder, but the violation is applied to prevent access
• C. before Responder, and a violation is occurring
• D. after Responder, and the redirection is invalid

Answer: C

NEW QUESTION 5
Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received from a protected web application is NOT matching what the web server is sending out. The auditor is concerned that Man-In-The-Middle attack is in progress.
Which action is the Citrix Web App Firewall performing that would trigger this false positive?

• A. Removing the Last-Modified header
• B. Inserting a hidden form field
• C. Removing the Accept-Encoding header
• D. Modifying and adding cookies in the response

Answer: D

NEW QUESTION 6
Which syntax is used to write a StyleBook?

• A. JSON
• B. LISP
• C. YAML
• D. XML

Answer: C

NEW QUESTION 7
Which protection is applied on a server response from a protected application?

• A. Cross-Site Request Forgeries (CSRF)
• B. Form Field Consistency
• C. HTML Cross-Site Scripting (XSS)
• D. Safe Object

Answer: D

NEW QUESTION 8
Scenario: A Citrix Engineer Is using Citrix Application Delivery Management (ADM) to manage 20 Citrix ADC VPX appliances. The engineer has added the instances to Citrix ADM. The nsroot password has been changed but is the same across all 20 instances.
The engineer needs to update with the new password in Citrix ADM to ensure continued connectivity to the appliances. (Choose the correct option to complete the sentence.)

• A. the profile assigned to each instance
• B. the instance group
• C. each instance
• D. the profile assigned to the instance group

Answer: A

NEW QUESTION 9
Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall. Signature Auto- Update has been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the settings for Signature Auto Update the engineer notices that the URL is blank.
Which URL should the engineer enter to restore the update process?

• A. https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMapping.xml
• B. https://download.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
• C. https://www.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
• D. https://citrix.azure.com/NSAppFwSignatures/SignaturesMapping.xml

Answer: A

NEW QUESTION 10
Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. After the Web App Firewall policy is bound to the virtual server, the engineer notices that Citrix Web App Firewall is NOT blocking bad requests from clients. Which tool can help the engineer view the traffic that is passing to and from the client?

• A. nstrace
• B. nsconmsg
• C. syslog
• D. aaad.debug

Answer: A

NEW QUESTION 11
Scenario: A Citrix Engineer has a pair of Citrix ADC VPX appliances configured as a High-Availability (HA) pair and hosted on a Citrix Hypervisor. The engineer wants to use Citrix Application Delivery Management (ADM) to monitor and manage the 35 web applications on the appliances. The engineer has imported Citrix ADM virtual appliance to Citrix Hypervisor. The engineer has also configured the management IP address settings and has added the 35 instances. However, some of the instances are NOT reporting any data.
Which two areas can the engineer check to determine the cause of the issue? (Choose two.)

• A. A Premium platform license must be configured on each instance.
• B. AppFlow must be enabled on each instance.
• C. The Citrix ADM license must be installed.
• D. An SSL certificate must be installed on the Citrix ADM appliance.

Answer: CD

NEW QUESTION 12
A Citrix Engineer wants the Citrix Web App Firewall to respond with a page stored on the Citrix ADC when a violation is detected.
Which profile setting accomplishes this?

• A. Redirect URL
• B. RFC Profile
• C. Default Request
• D. HTML Error Object

Answer: D

NEW QUESTION 13
Scenario: When reviewing the activity logs for a web application, a Citrix Engineer notices a high number of requests for the page, /setup.aspx. Further investigation reveals that most of these requests originated from outside the network. Which protection can the engineer implement to prevent this?

• A. HTML Cross-Site Scripting (XSS)
• B. Cookie Consistency
• C. Start URL with URL Closure
• D. Buffer Overflow

Answer: C

NEW QUESTION 14
Which two protections ensure that the correct data is returned by the client? (Choose two.)

• A. Form Field Consistency.
• B. Field Formats
• C. HTML Cross-Site Scripting (XSS)
• D. Cross-Site Request Forgeries (CSRF)

Answer: AD

NEW QUESTION 15
Which data populates the Events Dashboard?

• A. Syslog messages
• B. SNMP trap messages
• C. API calls
• D. AppFlow IPFIX records

Answer: A

NEW QUESTION 16
Scenario: A Citrix Engineer needs to ensure that the flow of traffic to a web application does NOT overwhelm the server. After thorough testing, the engineer determines that the application can handle a maximum of 3,000 requests per minute. The engineer builds a limit identifier, rl_maxrequests, to enforce this limitation.
Which advanced expression can the engineer write in the Responder policy to invoke rate limiting?

• A. SYS.CHECK_LIMIT(“rl_maxrequests”)
• B. SYS.CHECK_LIMIT(“rl_maxrequests”).CONTAINS(“Busy”)
• C. SYS.CHECK_LIMIT(“rl_maxrequests”).IS_VALID
• D. SYS.CHECK_LIMIT(“rl_maxrequests”).GE(3000)

Answer: B

NEW QUESTION 17
Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received from a protected web application is NOT matching what the web server is sending out. The engineer is concerned that someone is trying to disrupt caching behavior.
Which action is the Citrix Web App Firewall performing that would trigger this false positive?

• A. Removing the Last-Modified header
• B. Inserting a hidden form field
• C. Removing the Accept-Encoding header
• D. Modifying and adding cookies in the response

Answer: A

NEW QUESTION 18
Scenario: A Citrix Engineer is setting up Citrix Application Delivery Management (ADM) in High Availability (HA) mode. The engineer creates both nodes and connects them to the same subnet.
Which IP address must the engineer configure on the Citrix ADM HA pair to allow instances to reconnect to Citrix ADM after a failover?

• A. Virtual
• B. Cluster
• C. Subnet
• D. Floating

Answer: D

NEW QUESTION 19
What is required for connecting a data center to the Citrix Application Delivery Management (ADM) Service?

• A. Instance
• B. Configuration Job
• C. Agent
• D. Syslog

Answer: C

NEW QUESTION 20
......