Citrix



            1Y0-341







            Citrix ADC Advanced Topics - Security? Management
            and Optimization








                                   https://killexams.com/pass4sure/exam-detail/1Y0-341





    Question: 51


    Scenario: A Citrix Engineer used Learning to establish the HTML SQL Injection relaxations for a critical web
    application. The engineer now wishes to begin working on the protections for a different web application. The name of
    the Web App Profile is appfw_prof_customercare.

    Which CLI command can the engineer use to empty the Learn database?
    A. set appfw learningsettings appfw_prof_customercare -SQLInjectionMinThreshold 0
    B. set appfw learningsettings appfw_prof_customercare -startURLMinThreshold 0
    C. reset appfw learningdata
    D. export appfw learningdata appfw_prof_customercare





    Answer: C

    Question: 52

    Scenario: A Citrix Engineer wants to configure the Citrix ADC for OAuth authentication. The engineer uploads the
    required certificates, configure the actions, and creates all the necessary policies. After binding the authentication
    policy to the application, the engineer is unable to authenticate.

    What is the most likely cause of this failure?
    A. The log files are full.
    B. The Redirect URL is incorrect.
    C. The certificates have expired.
    D. The policy bindings were assigned incorrect priorities.




    Answer: D


    Explanation:

    Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/entities-of-authentication-authorization-
    auditing/authentication-policies.html

    Question: 53


    Scenario: A Citrix Engineer has enabled the IP Reputation feature. The engineer wants to protect a critical web
    application from a distributed denial of service attack.


    Which advanced expression can the engineer write for a Responder policy?
    A. CLIEN
    B. I
    C. SR
    D. IPREP_THREAT_CATEGORY(SPAM_SOURCES)
    E. CLIEN
    F. I
    G. SR
    H. IPREP_THREAT_CATEGORY(BOTNETS)
    . CLIEN


    . I
    . SR
    . IPREP_THREAT_CATEGORY(WEB_ATTACKS)
    . CLIEN
    . I
    . SR
    . IPREP_THREAT_CATEGORY(WINDOWS_EXPLOITS)





    Answer: C

    Question: 54

    A Citrix Engineer needs to set up access to an internal application for external partners.


    Which two entities must the engineer configure on the Citrix ADC to support this? (Choose two.)
    A. SAML Policy
    B. SAML IdP Profile
    C. SAML IdP Policy
    D. SAML Action





    Answer: A,C

    Explanation:


    Reference: https://www.citrix.com/blogs/2015/04/09/how-to-use-saml-authentication-with-storefront-2-6/

    Question: 55

    Which report can a Citrix Engineer review to ensure that the Citrix ADC meets all PCI-DSS requirements.
    A. Generate Application Firewall Configuration
    B. PCI-DSS Standards
    C. Application Firewall Violations Summary
    D. Generate PCI-DSS





    Answer: D

    Explanation:

    Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/application-firewall/stats-and-reports.html


    Question: 56

    Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Delivery Management (ADM).
    Management has asked for a report of high-risk traffic to protected internal websites.

    Which dashboard can the engineer use to generate the requested report?
    A. App Security
    B. Transactions


    C. Users & Endpoints
    D. App




    Answer: B

    Question: 57


    A Citrix Engineer wants to delegate management of Citrix Application Delivery Management (ADM) to a junior team
    member.

    Which assigned role will limit the team member to view all application-related data?
    A. readonly
    B. appReadonly
    C. admin
    D. appAdmin




    Answer: B


    Explanation:

    Reference: https://docs.citrix.com/en-us/citrix-application-delivery-management-service/setting-up/configuring-role-
    based-access-control.html

    Question: 58

    A Citrix Engineer is reviewing the log files for a sensitive web application and notices that someone accessed the
    application using the engineer’s credentials while the engineer was out of the office for an extended period of time.

    Which production can the engineer implement to protect against this vulnerability?
    A. Deny URL
    B. Buffer Overflow
    C. Form Field Consistency
    D. Cookie Consistency





    Answer: C

    Question: 59

    Which data populates the Events Dashboard?
    A. Syslog messages
    B. SNMP trap messages
    C. API calls
    D. AppFlow IPFIX records





    Answer: D


    Question: 60

    Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall. Signature Auto-Update has
    been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the
    settings for Signature Auto Update the engineer notices that the URL is blank.

    Which URL should the engineer enter to restore the update process?
    A. https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMapping.xml
    B. https://download.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
    C. https://www.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
    D. https://citrix.azure.com/NSAppFwSignatures/SignaturesMapping.xml





    Answer: A

    Explanation:

    Reference: https://support.citrix.com/article/CTX138858













                          For More exams visit https://killexams.com/vendors-exam-list