Citrix

1Y0-341

Citrix ADC Advanced Topics - Security? Management and Optimization

https://killexams.com/pass4sure/exam-detail/1Y0-341

Question: 51

Scenario: A Citrix Engineer used Learning to establish the HTML SQL Injection relaxations for a critical web application. The engineer now wishes to begin working on the protections for a different web application. The name of the Web App Profile is appfw_prof_customercare.

Which CLI command can the engineer use to empty the Learn database?

1. set appfw learningsettings appfw_prof_customercare -SQLInjectionMinThreshold 0

2. set appfw learningsettings appfw_prof_customercare -startURLMinThreshold 0

3. reset appfw learningdata

   
   

   r: C

   
   

   on: 52

   
   

   o: A Citrix Engineer wants to configure the Citrix ADC for OAuth authentication. The engineer uploads certificates, configure the actions, and creates all the necessary policies. After binding the authenticati

   to the application, the engineer is unable to authenticate.

   
   

   the most likely cause of this failure? og files are full.

   edirect URL is incorrect. ertificates have expired.

   olicy bindings were assigned incorrect priorities.

   
   

   r: D ation:

   nce: https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/entities-of-authentication-authorizati g/authentication-policies.html

   
   

   on: 53

   
   

   o: A Citrix Engineer has enabled the IP Reputation feature. The engineer wants to protect a critical web

   

4. export appfw learningdata appfw_prof_customercare

Answe

Questi

Scenari the

required on

policy

What is

1. The l

2. The R

3. The c

4. The p

Answe

Explan

Refere on-

auditin

Questi

Scenari

application from a distributed denial of service attack.

Which advanced expression can the engineer write for a Responder policy?

1. CLIEN

2. I

3. SR

4. IPREP_THREAT_CATEGORY(SPAM_SOURCES)

5. CLIEN

6. I

7. SR

8. IPREP_THREAT_CATEGORY(BOTNETS)

. CLIEN

. I

. SR

. IPREP_THREAT_CATEGORY(WEB_ATTACKS)

. CLIEN

. I

. SR

. IPREP_THREAT_CATEGORY(WINDOWS_EXPLOITS)

Engineer needs to set up access to an internal application for external partners.

wo entities must the engineer configure on the Citrix ADC to support this? (Choose two.) ML Policy

ML IdP Profile ML IdP Policy ML Action

r: A,C

ation:

nce: https://www.citrix.com/blogs/2015/04/09/how-to-use-saml-authentication-with-storefront-2-6/

on: 55

eport can a Citrix Engineer review to ensure that the Citrix ADC meets all PCI-DSS requirements. erate Application Firewall Configuration

DSS Standards

lication Firewall Violations Summary erate PCI-DSS

r: D

Answer: C Question: 54 A Citrix

Which t

1. SA

2. SA

3. SA

4. SA

Answe Explan Refere

Questi

Which r

1. Gen

2. PCI-

3. App

4. Gen

Answe

Explanation:

Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/application-firewall/stats-and-reports.html

Question: 56

Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Delivery Management (ADM). Management has asked for a report of high-risk traffic to protected internal websites.

Which dashboard can the engineer use to generate the requested report?

1. App Security

2. Transactions

3. Users & Endpoints

4. App

Answer: B

Question: 57

A Citrix Engineer wants to delegate management of Citrix Application Delivery Management (ADM) to a junior team member.

only Readonly in

Admin

r: B ation:

nce: https://docs.citrix.com/en-us/citrix-application-delivery-management-service/setting-up/configuring ccess-control.html

on: 58

Engineer is reviewing the log files for a sensitive web application and notices that someone accessed t tion using the engineer’s credentials while the engineer was out of the office for an extended period of ti

roduction can the engineer implement to protect against this vulnerability? URL

er Overflow

Field Consistency kie Consistency

r: C

on: 59

Which assigned role will limit the team member to view all application-related data?

1. read

2. app

3. adm

4. app

Answe

Explan

Refere -role-

based-a

Questi

A Citrix he

applica me.

Which p

1. Deny

2. Buff

3. Form

4. Coo

Answe

Questi

Which data populates the Events Dashboard?

1. Syslog messages

2. SNMP trap messages

3. API calls

4. AppFlow IPFIX records

Answer: D

Question: 60

Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall. Signature Auto-Update has been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the settings for Signature Auto Update the engineer notices that the URL is blank.

Which URL should the engineer enter to restore the update process?

1. https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMapping.xml

2. https://download.citrix.com/NSAppFwSignatures/SignaturesMapping.xml

3. https://www.citrix.com/NSAppFwSignatures/SignaturesMapping.xml

4. https://citrix.azure.com/NSAppFwSignatures/SignaturesMapping.xml

r: A ation:

nce: https://support.citrix.com/article/CTX138858

Answe Explan Refere

For More exams visit https://killexams.com/vendors-exam-list