NEW QUESTION 1
Which report can a Citrix Engineer review to ensure that the Citrix ADC meets all PCI-DSS requirements.

• A. Generate Application Firewall Configuration
• B. PCI-DSS Standards
• C. Application Firewall Violations Summary
• D. Generate PCI-DSS

Answer: D

NEW QUESTION 2
Scenario: A Citrix Engineer wants to configure the Citrix ADC for OAuth authentication. The engineer uploads the required certificates, configure the actions, and creates all the necessary policies. After binding the authentication policy to the application, the engineer is unable to authenticate.
What is the most likely cause of this failure?

• A. The log files are full.
• B. The Redirect URL is incorrect.
• C. The certificates have expired.
• D. The policy bindings were assigned incorrect priorities.

Answer: D

NEW QUESTION 3
Scenario: A Citrix Engineer reviewed the log files of a web application and found the error message below: "Unable to complete request Unrecognized field cext2_price>" Which protection can the engineer implement to prevent this error from happening?

• A. Form Field Consistency
• B. Cross-Site Request Forgeries (CSRF)
• C. HTML SQL Injection
• D. HTML Cross-Site Scripting (XSS)

Answer: A

NEW QUESTION 4
Scenario: A Citrix Engineer implements Application-level Quality of Experience (AppQoE) to protect a web application. Shortly after that, users call to complain that nearly every request is being met with a Captcha.
What can the engineer do to improve the user experience?

• A. Disable the Captcha.
• B. Increase the DOS Attack Threshold.
• C. Increase the Policy Queue Depth.
• D. Increase the Session Life.

Answer: B

NEW QUESTION 5
Which Citrix Application Delivery Management (ADtv1) Analytics page allows a Citrix Engineer to monitor Citrix Virtual Apps and Desktop traffic?

• A. Web Insight
• B. WAN Insight
• C. HDX Insight
• D. Gateway Insight

Answer: C

NEW QUESTION 6
Scenario: When reviewing the activity logs for a web application, a Citrix Engineer notices a high number of requests for the page, /setup.aspx. Further investigation reveals that most of these requests originated from outside the network. Which protection can the engineer implement to prevent this?

• A. HTML Cross-Site Scripting (XSS)
• B. Cookie Consistency
• C. Start URL with URL Closure
• D. Buffer Overflow

Answer: C

NEW QUESTION 7
Which Front End Optimization technique causes the Citrix ADC to resize images before sending them to the client?

• A. Minify
• B. Shrink to Attributes
• C. Compression
• D. Inlining

Answer: B

NEW QUESTION 8
A Citrix Engineer wants to quietly track attempts that cause a web application to display a list of all user accounts.
Which action should the engineer enable to achieve this?

• A. Stats
• B. Block
• C. Log
• D. Learn

Answer: D

NEW QUESTION 9
What can a Citrix Engineer implement to protect against the accidental disclosure of personally identifiable information (PII)?

• A. Form Field Consistency
• B. HTML Cross-Site Scripting
• C. Safe Object
• D. Cookie Consistency

Answer: C

NEW QUESTION 10
A review of purchases made at an online retailer shows that several orders were processed for items at an unpublished price.
Which protection can a Citrix Engineer implement to prevent a site visitor from modifying the unit price of a product on the shopping cart page?

• A. Cross-Site Request Forgeries (CSRF)
• B. Form Field Consistency
• C. HTML Cross-Site Scripting (XSS)
• D. HTML SQL Injection

Answer: B

NEW QUESTION 11
Scenario: A Citrix Engineer wants to configure the Citrix ADC for 0Auth Authentication. The engineer uploads the required certificates, configures the actions, and creates all the necessary policies. After binding the authentication policy to the application, the engineer is unable to authenticate.

• A. The log files are full
• B. The policy bindings were assigned incorrect priorities
• C. The Redirect URL is incorrect
• D. The certificates have expired

Answer: C

NEW QUESTION 12
Which two protections ensure that the correct data is returned by the client? (Choose two.)

• A. Form Field Consistency.
• B. Field Formats
• C. HTML Cross-Site Scripting (XSS)
• D. Cross-Site Request Forgeries (CSRF)

Answer: AD

NEW QUESTION 13
Which Citrix Application Delivery Management (ADM) Analytics page allows an engineer to monitor the metrics of end-point analysis and authentication failures?

• A. Gateway Insight
• B. HDX Insight
• C. Web Insight
• D. Security Insight

Answer: A

NEW QUESTION 14
In which order is a client request to a protected web application processed?

• A. CitrixWebApp Firewall, Load Balancing, Caching, Rewrite
• B. Caching, Citrix Web App Firewall, Load Balancing, Rewrite
• C. Citrix Web App Firewall, Caching, Load Balancing, Rewrite
• D. Load Balancing, Citrix Web App Firewall, Caching, Rewrite

Answer: C

NEW QUESTION 15
Which action ensures that content is retrieved from the server of origin?

• A. CACHE
• B. MAY_CACHE
• C. NOCACHE
• D. MAY_NOCACHE

Answer: C

NEW QUESTION 16
Which Front End Optimization technique can a Citrix Engineer enable on the Citrix ADC to remove all excess whitespace from a file?

• A. Shrink to Attributes
• B. Minify
• C. Lazy Load
• D. Inlining

Answer: B

NEW QUESTION 17
A Citrix Engineer wants the Citrix Web App Firewall to respond with a page stored on the Citrix ADC when a violation is detected.
Which profile setting accomplishes this?

• A. Redirect URL
• B. RFC Profile
• C. Default Request
• D. HTML Error Object

Answer: D

NEW QUESTION 18
A Citrix Engineer needs to create a configuration job to clone a configuration from an existing Citrix ADC to a new Citrix ADC.
Which configuration source can the engineer use to accomplish this?

• A. Master Configuration
• B. Inbuilt Template
• C. Instance
• D. Configuration Template

Answer: C

NEW QUESTION 19
Which security model should a Citrix Engineer implement to make sure that no known attack patterns pass through Citrix Web App Firewall?

• A. Hybrid
• B. Static
• C. Positive
• D. Negative

Answer: D

NEW QUESTION 20
Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Upon reviewing the log files, the engineer notices a pattern of forceful browsing toward the configuration page for the application. To protect against this, the engineer enforces Start URL and enables Enforce URL Closure.
What is the effect of enforcing Start URL and enabling Enforce URL Closure on the application?

• A. Access to the path /config.aspx is unblocked when a user clicks a referring link elsewhere on the website.
• B. Non-administrative users are blocked from the path /config.aspx.Administrative users are permitted to the path /config.aspx.
• C. External users are blocked from the path /config.aspx.Internal users are permitted to the path /config.aspx.
• D. Access to the path /config.aspx is blocked.

Answer: A

NEW QUESTION 21
......