1Y0-341 Braindumps PDF, Citrix 1Y0-341 Exam Cram [Q36-Q57]

1Y0-341 Braindumps PDF, Citrix 1Y0-341 Exam Cram

New 2022 1Y0-341 Sample Questions Reliable 1Y0-341 Test Engine

NEW QUESTION 36
Scenario: A Web Application Developer asked a Citrix Engineer to implement Citrix Web App Firewall protections. To provide consistency in branding, the developer asked that the web server provide a custom message when a violation occurs. Which profile setting does the engineer need to configure to provide the custom message?

• A. RFC Profile
• B. Content Type Default Response
• C. HTML Error Object
• D. Redirect URL

Answer: C

 

NEW QUESTION 37
Which report can a Citrix Engineer review to ensure that the Citrix ADC meets all PCI-DSS requirements.

• A. PCI-DSS Standards
• B. Generate Application Firewall Configuration
• C. Generate PCI-DSS
• D. Application Firewall Violations Summary

Answer: C

Explanation:
Explanation/Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/application-firewall/stats-and-reports.html

 

NEW QUESTION 38
Which security model should a Citrix Engineer implement to ensure that only appropriate traffic that matches the expected application behavior is permitted to pass through to the web application?

• A. Negative
• B. Dynamic
• C. Hybrid
• D. Positive

Answer: D

 

NEW QUESTION 39
Scenario: A Citrix Engineer observes that when going through NetScaler, user connections fail and users are unable to access Exchange server. However, users can connect directly to the Exchange server. After checking the logs, the engineer finds that the POST request is blocked through the NetScaler.
The log in/ var/log/ns.log is as follows:
Jul 20 11:00: 38 <local0.info>x.x.x. 1 07/20/2017:11:00:38 GMT ns 0-PPE-0:APPFW AF_400_RESP 29362 0: x.x.x.1 439800-PPEO- urlwdummy
https://test.abc.com/rpc/rpcproxy.dll?mail.sfmta.com:6004 Bad request headers. Content-length exceeds post body limit <blocked> Which parameter can the engineer modify to resolve the issue while maintaining security?

• A. Increase the POST body limit under common settings in Application Firewall profile settings.
• B. Increase the POST body limit using the HTTP profile.
• C. Add an Application Firewall policy with the expression "HTTP.REQ.METHOD.EQ(\ "POST"\)" with APPFW_BYPASS profile bound.
• D. Increase the Maximum Header Length under nshttp_default_profile.

Answer: A

 

NEW QUESTION 40
The NetScaler processes HTTP/2 web client connections to the backend web servers by _________.
(Choose the correct option to complete the sentence.)

• A. Converting HTTP/2 to HTTP 0.9 and forwarding the packets to the web servers.
• B. Passing- through all HTTP/2 traffic to the web servers.
• C. Dropping HTTP/2 requests as it is NOT supported by web servers.
• D. Converting the HTTP/2 headers to HTTP/1.1 headers and forwarding them to the web servers.

Answer: D

 

NEW QUESTION 41
A Citrix Engineer observes that the servers hosting a critical application are crashing on a regular basis. Which protection could the engineer implement on a Citrix Web App Firewall in front of the application?

• A. Buffer Overflow Check
• B. HTML SQL Injection
• C. Start URL
• D. HTML Cross-Site Scripting (XSS)

Answer: A

 

NEW QUESTION 42
A Citrix Engineer enabled Cookie Consistency protection on a web application and wants to verify that it is working.
Which cookie name can the engineer look for in the HTTP headers sent from the client to verify the protection?

• A. Citrix_adc_id
• B. Citrix_sc_id
• C. Citrix_ns_id
• D. Citrix_waf_id

Answer: C

 

NEW QUESTION 43
Which mechanism does the NetScaler use to enable a safe and speedy data exchange between a client/ server initial TCP handshake?

• A. TCP Burst Rate Control
• B. TCP Hystart
• C. TCP Time Stamp
• D. TCP Fast Open (TFO)

Answer: D

 

NEW QUESTION 44
Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Management (ADM). Management has asked lota report of high-risk traffic to protected internal websites.
Which dashboard can the engineer use to generate the requested report?

• A. Transactions
• B. APP
• C. APP Security
• D. Users & Endpoints

Answer: C

 

NEW QUESTION 45
What is required for connecting a data center to the Citrix Application Delivery Management (ADM) Service?

• A. Instance
• B. Syslog
• C. Configuration Job
• D. Agent

Answer: D

Explanation:
https://docs.citrix.com/en-us/citrix-application-delivery-management-service/citrix-application- delivery-management-service.html

 

NEW QUESTION 46
Which report can a Citrix Engineer review to ensure that the Citrix ADC meets all PCI-DSS requirements.

• A. PCI-DSS Standards
• B. Generate Application Firewall Configuration
• C. Generate PCI-DSS
• D. Application Firewall Violations Summary

Answer: C

 

NEW QUESTION 47
Which Citrix Web App Firewall engine setting can a Citrix Engineer use to ensure that protections are applied in the event that an advanced policy expression cannot be evaluated as either 'True' or 'False'?

• A. Session Limit
• B. Undefined profile
• C. Default profile
• D. Entity Decoding

Answer: A

 

NEW QUESTION 48
Scenario: A Citrix Engineer is notified that improper requests are reacting the web application. While investigating, the engineer notices that the Citrix Web App Firewall policy has zero hits.
What are two possible causes for this within the Citrix Web App Firewall policy? (Choose two.)

• A. It is NOT bound to the virtual server.
• B. It has been assigned the built-in APPFW_RESET profile.
• C. It has been assigned an Advanced HTML profile.
• D. The expression is incorrect.

Answer: A,D

Explanation:
Explanation/Reference:

 

NEW QUESTION 49
Scenario: A Citrix Engineer is asked to implement multi-factor authentication for Citrix Gateway.
The engineer creates the authentication policies and binds the policies to the appropriate bind points. The engineer creates a custom form using Notepad++ to format the page which will capture the user's credentials.
To which folder on the Citrix ADC will the engineer need to upload this form?

• A. /flash/nsconfig/loginschema
• B. /flash/nsconfig/loginschema/LoginSchema
• C. /var/netscaler
• D. /var

Answer: B

Explanation:
https://docs.citrix.com/en-us/citrix-adc/current-release/system/authentication-and-authorization- for-system-user/two-factor-authentication-for-system-users-and-external-users.html

 

NEW QUESTION 50
Scenario: A Citrix Engineer wants to configure the Citrix ADC for 0Auth Authentication. The engineer uploads the required certificates, configures the actions, and creates all the necessary policies. After binding the authentication policy to the application, the engineer is unable to authenticate.

• A. The certificates have expired
• B. The Redirect URL is incorrect
• C. The log files are full
• D. The policy bindings were assigned incorrect priorities

Answer: B

 

NEW QUESTION 51
Statistics for which three types of violations are presented on the App Security Dashboard? (Choose three.)

• A. Signature
• B. SSL Enterprise Policy
• C. Web App Firewall protection
• D. IP Reputation
• E. AAA

Answer: A,C,D

Explanation:
Explanation/Reference: https://docs.citrix.com/en-us/citrix-application-delivery-management-service/analytics/security/ security-violations.html

 

NEW QUESTION 52
A Citrix Engineer observes the following event in the ns.log:
Aug 3 11:55:58 <local0.info> 10.248.64.10 08/03/2015:15:55:58 GMT ATL0NS01 0-PPE-1:
default APPFW APPFW_STARTURL 406856 0: 10.248.13.13 11152-PPE1 LG
+hd4LkcYiOyQVWvOTsCtSyiv00001 SPI Disallow illegal URL: https://training.citrix.com/login
<blocked>
Which Application Firewall profile has blocked the URL?

• A. ATL0NS01
• B. APPFW_STARTURL
• C. SPI Disallow illegal URL
• D. SPI

Answer: A

 

NEW QUESTION 53
Scenario: A Citrix Engineer has migrated an application to NetScaler to secure it from application layer attacks. The engineer receives a complaint that the application is timing out while users are actively accessing the page. Those users are forced to reestablish the connection.
What can be the cause of this issue?

• A. The maximum session lifetime is NOT configured.
• B. The session time out is configured to a low value.
• C. The application is configured with a low session timeout.
• D. The maximum session lifetime is less than the session timeout.

Answer: B

 

NEW QUESTION 54
Scenario: A Citrix Engineer is implementing Integrated Caching to increase performance of a web application. The Application Engineer replaces a small logo on the main page with a new one. Later on, when the engineer attempts to access the page, the old logo is displayed. Which enabled setting in the Content Group would cause this to happen?

• A. Do not cache - if hits are less than 1
• B. Ignore browser's reload request
• C. Expire content after 60 seconds
• D. Do not cache - if size exceeds 500 KB

Answer: B

 

NEW QUESTION 55
Scenario: A Citrix Engineer receives the following error when accessing content from a virtual server:
"Page cannot be displayed."
However, the content is accessible when connecting directly to the web server. The engineer captured the traffic using nstrace and found that the amount of data sent from the web server exceeds the content length defined in the HTTP header. Which action can the engineer take to resolve the issue?

• A. Disable Drop extra data from server in the HTTP Profile.
• B. Disable Drop extra CRLF in the HTTP Profile.
• C. Increase the Content length in the Application Firewall Profile.
• D. Enable Drop extra data from server in the HTTP Profile.

Answer: D

 

NEW QUESTION 56
Scenario: A Citrix Engineer is reviewing the log files for a protected application. The engineer discovers a lot of errors pertaining to invalid data being supplied by users.
Which protection can the engineer implement at the Citrix Web App Firewall to reduce these errors?

• A. Field Format
• B. Cross-Site Request Forgeries (CSRF)
• C. HTML SQL Injection
• D. Form Field Consistency

Answer: D

 

NEW QUESTION 57
......

Feel Citrix 1Y0-341 Dumps PDF Will likely be The best Option: https://www.actual4exams.com/1Y0-341-valid-dump.html