Mac and Microsoft Windows Devices
After being audited, a Citrix Administrator learns that additional security enhancements should be
made to one
of the virtual servers.
Which two actions can the administrator perform to accomplish this? (Choose two.)
AC
A Citrix Administrator needs to configure a Citrix Gateway virtual server to meet an organizations
security
requirements.
Which two types of devices can the administrator control with Endpoint Analysis (EPA) scans?
(Choose two.)
BC
Reference:
https://shop.adn.de/out/media/citrix_netscaler_gw.pdfs
Mac and Microsoft Windows Devices
Mac and Windows
Scenario: A Citrix Administrator would like to grant access to a Junior Citrix Administrator on the
Citrix ADC.
The administrator would like to grant full access to everything except:
Shell
User configuration
Partition configuration
Which preexisting command policy would meet the needs of this scenario?
C
Reference:
https://docs.citrix.com/en-us/citrix-adc/current-release/system/authentication-and-
authorization-forsystem-user/user-usergroups-command-policies.html
Sysadmin is correct
Sysadmin is the best option
Scenario: A Citrix Administrator suspects an attack on a load-balancing virtual server (IP address
192.168.100.25). The administrator needs to restrict access to this virtual server for 10 minutes.
Which access control list (ACL) will accomplish this?
D
D is correct
A Citrix Administrator needs to integrate an existing certification-based authentication policy into an
existing
Citrix Gateway virtual server.
Which three steps can the administrator take to accomplish this? (Choose three.)
CDE
Reference:
https://docs.citrix.com/en-us/citrix-gateway/current-release/authentication-
authorization/configureclient-cert-authentication/ng-client-cert-vserver-and-bind-tsk.html
I believe C, D and E are correct, although I could argue for A as the description says existing certification-based policy
C, D, and E are correct, although the wording makes me lean more towards A than E
A Citrix Administrator configured a Citrix Gateway virtual server for authentication, but there is no
authentication policy bound to the virtual server.
Which authentication binding point will the Citrix ADC evaluate next?
D
User authentication
User Authentication
A Citrix Administrator needs to block all local printer access from users in the Marketing department
who are
connecting remotely, but who should still have access when connecting inside the corporate network
using the
same Citrix Gateway.
What can the administrator configure to accomplish this?
A
Reference:
https://docs.citrix.com/en-us/citrix-gateway/current-release/integrate-web-interface-
apps/smartcontrol
.
html
SmartControl
SmartControl
A Citrix Administrator wants to customize the look of the landing page presented to users during the
authentication process on Citrix ADC.
Which nFactor component should the administrator modify in this scenario?
A
Reference:
https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/authentication-
methods/multi-factornfactor-authentication/nfactor-authentication-configuring.html
Logon Schema
A is the correct option
Scenario: A Citrix Administrator is configuring a new authentication, authorization, and auditing
(AAA) virtual
server, and the status is DOWN. The administrator makes the below configurations:
add lb vserver lb_vsrv_www HTTP 10.107.149.229 80 -persistenceType NONE -cltTimeout 180 -
authn401 ON
-authnVsName SAML_SP
bind lb vserver lb_vsrv_www_ssl Red_srv
bind lb vserver Ib_vsrv_www_ssl Blue_srv
add authentication vserver SAML_SP SSL 10.107.149.230 443 -AuthenticationDomain citrix.lab
What should the administrator bind to the virtual server SAML_SP to complete the installation and
change the
status to UP?
D
There needs to be an authentication policy
An authentication policy is needed
Which feature can a Citrix Administrator use to create a consistent set of front-end SSL parameters
across
multiple SSL virtual servers?
D
Reference:
https://docs.citrix.com/en-us/citrix-adc/current-release/ssl/ssl-profiles.html
SSL Profile is correct
SSL Profile allows settings to be modified and applied globally to SSL VIPs
Scenario: A Citrix Administrator made changes to a Citrix ADC, deleting parts of the configuration and
saving some new ones. The changes caused an outage that needs to be resolved as quickly as
possible. There is no Citrix ADC backup.
What does the administrator need to do to recover the configuration quickly?
A
Revision history contains the list of changes made and can be batch loaded to revert in the event of issues
Revision history will contain all configuration changes made and can be batch exported/imported to correct issues
Revision History
Scenario: A Junior Citrix Administrator needs to create a content switching virtual server on a Citrix
ADC high availability (HA) pair. The NSIP addresses are 192 168.20.10 and 192.168.20.11. The junior
administrator connects to NSIP address 192.168.20.10 and saves the changes.
The following day, a Senior Citrix Administrator tests the new content switching virtual server, but it
is NOT working. The senior administrator connects to the HA pair and discovers that everything the
junior administrator configured is NOT visible.
Why has the Citrix ADC lost the newly added configurations?
D
I chose D, but could also make a case for B
I chose D, but B is also an option
I chose D but could also be B
What are three possible policy results in a default (advanced) policy configuration? (Choose three.)
ABC
True, False or Undefined are the only possibilities
True, False or Undefined are the correct options
True, False, Undefined
Scenario: After deploying a Citrix ADC in production, a Citrix Administrator notices that client
requests are NOT being evenly distributed among backend resources. The administrator wants to
change from the default load-balancing method to one that will help distribute the load more evenly.
Which load-balancing method would ensure that the server with the least amount of network
utilization is receiving new connections?
B
Reference:
https://kb.wisc.edu/ns/page.php?id=13201#Least%20Bandwidth%20Method
Least Bandwidth is the appropriate option
Least Bandwidth is the correct option for network utilization
Least Bandwidth
Scenario: While performing a disaster recovery test, a Citrix Administrator decides to failover the
Citrix ADC high availability (HA) pair appliances. The administrator notices that the failover is NOT
working as expected, and the secondary Citrix ADC is NOT taking over as primary. The administrator
suspects that networking issues may be causing the failure.
What could be the cause of this issue?
A
The interface is Down but showing Enabled for HA Monitoring is correct
Interface Enabled but down
Interface Enabled but Down
Options A and C are correct
A and C are correct, although SHA1 is pretty old!!