The Secret Of Citrix 1Y0-341 Exam Answers

NEW QUESTION 1
Which setting in the Cookie Consistency protection feature does a Citrix Engineer need to configure to ensure that all a cookie is sent using TLS only?

• A. Encrypt Server Cookies > Encrypt All
• B. Flags to Add in Cookies > Secure
• C. Encrypt Server Cookies > Encrypt Session Only
• D. Proxy Server Cookies > Session Only

Answer: B

NEW QUESTION 2
Which feature of Learning should a Citrix Engineer configure to direct Citrix Web App Firewall to learn from specific sessions?

• A. Advanced policy expression filter
• B. Default policy expression filter
• C. Trusted Learning Clients list
• D. Manage Content Types for Safe Commerce

Answer: C

NEW QUESTION 3
Scenario: A Citrix Engineer has enabled the Learn function for a Citrix Web App Firewall profile. After a period of time, the engineer notices that Citrix Web App
Firewall is no longer learning any new rules.
What would cause Citrix Web App Firewall to stop learning?

• A. The Citrix Web App Firewall has reached its capacity of 500 Learn transactions.
• B. The Citrix Web App Firewall feature is NOT licensed.
• C. The Citrix Web App Firewall Learn database has reached its capacity of 20 MB.
• D. The Citrix Web App Firewall profile was unbound from the application.

Answer: C

NEW QUESTION 4
Which Citrix Web App Firewall profile setting can a Citrix Engineer configure to provide a response when a violation occurs?

• A. Default Request
• B. Redirect URL
• C. Return URL
• D. Default Response

Answer: B

NEW QUESTION 5
Scenaho: A Citrix Engineer needs to block requests from a list of IP addresses in a database maintained by the Security team. The Security team has built a web application that will send a response of either "Blocked" or "Allowed," based on whether the given IP address is on the list. Which expression should the engineer use to extract the status for policy processing?

• A. HTTP.RES.STATUS
• B. HTTP.RES.HEADERfConnection")
• C. HTTP.RES.BODY(1000)
• D. HTTP.RES.CONTENT LENGTH.GT(0)

Answer: B

NEW QUESTION 6
Which Application-level Quality of Experience (AppQoE) Action setting modifies the communication characteristics of the connections established with the associated web application?

• A. Priority
• B. TCP Profile
• C. Action Type
• D. DOS Action

Answer: C

NEW QUESTION 7
Scenario: A Citrix Engineer creates a Responder policy to redirect users attempting to access an application protected with Citrix Web App Firewall. Instead of being redirected, users are seeing an ‘Access Denied’ page.
This is happening because Citrix Web App Firewall is processed. (Choose the correct option to complete the sentence.)

• A. before Responder, and the redirection is invalid
• B. after Responder, but the violation is applied to prevent access
• C. before Responder, and a violation is occurring
• D. after Responder, and the redirection is invalid

Answer: C

NEW QUESTION 8
Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall. Signature Auto- Update has been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the settings for Signature Auto Update the engineer notices that the URL is blank.
Which URL should the engineer enter to restore the update process?

• A. https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMapping.xml
• B. https://download.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
• C. https://www.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
• D. https://citrix.azure.com/NSAppFwSignatures/SignaturesMapping.xml

Answer: A

NEW QUESTION 9
Which protection is applied on a server response from a protected application?

• A. Cross-Site Request Forgeries (CSRF)
• B. Form Field Consistency
• C. HTML Cross-Site Scripting (XSS)
• D. Safe Object

Answer: D

NEW QUESTION 10
Scenario: A Citrix Engineer is using Citrix Application Delivery Management (ADM) to manage SSL certificates across all Citrix ADC instances. The engineer wants to distribute a new certificate to the devices. What, in addition to the certificate file, must the engineer provide when uploading the new certificate?

• A. Serial Number File
• B. Certificate Signing Request (CSR)
• C. Root Certificate
• D. Key File

Answer: D

NEW QUESTION 11
A Citrix Engineer for an online retailer wants to ensure that customer address information is NOT stolen. Which protection can the engineer implement to prevent this?

• A. Cross-Site Request Forgeries (CSFR)
• B. HTML SQL Injection
• C. For Field Consistency
• D. Credit Card Check

Answer: B

NEW QUESTION 12
Which Citrix Web App Firewall engine setting can a Citrix Engineer use to ensure that protections are applied in the event that an advanced policy expression cannot be evaluated as either 'True' or 'False'?

• A. Undefined profile
• B. Session Limit
• C. Default profile
• D. Entity Decoding

Answer: B

NEW QUESTION 13
Scenario: A Citrix Engineer needs to limit Front End Optimization (FEO) on a web application to mobile users with mobile devices. The engineer decides to create and bind an FEO policy.
Which advanced expression should the engineer use in the FEO policy?

• A. HTTP.REG.HEADER(“User-Agent”).CONTAINS(“Mobile”)&&CLIENT.IP.SRC.IN_SUBNET(192.168
• B. HTTP.REQ.HEADER(“User-Agent”).NOTCONTAINS(“Windows”)&&CLIENT.IS_MOBILE
• C. CLIENT.IP.SRC.IS_MOBILE
• D. HTTP.RED.HEADER(“User-Agent”).CONTAINS(“Ios”) II HTTP.REQ.HEADER(“User-Agent”).CONTAINS(“Andriod”)

Answer: A

NEW QUESTION 14
Which Citrix Application Delivery Management (ADM) Analytics page allows a Citrix Engineer to monitor web application traffic?

• A. Web Insight
• B. WAN Insight
• C. HDX Insight
• D. Gateway Insight

Answer: A

NEW QUESTION 15
A Citrix Engineer needs to set up access to an internal application for external partners.
Which two entities must the engineer configure on the Citrix ADC to support this? (Choose two.)

• A. SAML Policy
• B. SAMLldP Profile
• C. SAMLldP Policy
• D. SAML Action

Answer: AB

NEW QUESTION 16
......