CPP-AppDS-NetScaler Advance Features (Security and Management) v1.0

Page:    1 / 4   
Exam contains 60 questions

When users encounter issues with authentication, where and a system administrator look to find real-time diagnostics for errors and password failures?

  • A. /netscaler/authe.debug
  • B. /tmp/authe.debug
  • C. /netscaler/aaad.debug
  • D. /tmp/aaad.debug


Answer : D

A Citrix Engineer wants to delegate management of NetScaler Console (ADM) to a junior team member.
Which assigned role will limit the team member to view all application-related data?

  • A. appReadonly
  • B. appAdmin
  • C. admin
  • D. readonly


Answer : A

Scenario: During application troubleshooting, the web application developer notices that response traffic received from a protected web application is NOT matching what the web server is sending out. A Citrix Engineer is concerned that someone is attempting to gain unauthorized access to the application.
Which action is the NetScaler Web App Firewall performing that would trigger this false positive?

  • A. Modifying and adding cookies in the response
  • B. Inserting a hidden form field
  • C. Removing the Accept-Encoding header
  • D. Removing the Last-Modified header


Answer : B

Which NetScaler Console (ADM) Analytics page allows a Citrix Engineer to monitor remote access traffic?

  • A. HDX Insight
  • B. Gateway Insight
  • C. Web Insight
  • D. WAN Insight


Answer : B

Which two settings can a Citrix Engineer modify globally for the NetScaler Web App Firewall engine? (Choose two.)

  • A. CEF Logging
  • B. Session Timeout
  • C. PCI-DSS Profile
  • D. W3C Logging


Answer : AD

How can a Citrix Engineer monitor the NetScaler appliances to check that all SSL certifications have a key strength of at least 2048 bits from the SSL Dashboard Settings?

  • A. Select 2048 on the Enterprise Policy tab.
  • B. Delete 512, 1024, and 4096 on the Enterprise Policy tab.
  • C. Delete 512 and 1024 on the Enterprise Policy tab.
  • D. Select 2048 and 4096 on the Enterprise Policy tab.


Answer : D

Which two settings on a Safe Object rule can a Citrix Engineer enable to allow the page to be returned without displaying any data that matches the defined regular expression? (Choose two.)

  • A. Remove
  • B. X-Out
  • C. Transform
  • D. Block


Answer : AB

Scenario: A Citrix Engineer wants to implement Cookie Consistency protections for web applications due to numerous instances of cookie tampering. Prior to configuring this protection, the engineer determines that memory utilization on the NetScaler appliance is very high.
After enabling ‘Transform’, the engineer should select______ and choose ______ to meet the requirement.

  • A. Encrypt Server Cookies; Encrypt session only
  • B. Encrypt Server Cookies; Encrypt all
  • C. Proxy Server Cookies; Session only
  • D. Proxy Server Cookies; All


Answer : C

Scenario: A Citrix Engineer has a pair of NetScaler VPX appliances configured as a High-Availability (HA) pair and hosted on a Citrix Hypervisor. The engineer wants to use NetScaler Console (ADM) to monitor and manage the 35 web applications on the appliances.
What is the first step the engineer must take to achieve this?

  • A. Import the NetScaler Console virtual appliance to Citrix Hypervisor.
  • B. Purchase a NetScaler Console license.
  • C. Enable AppFlow on NetScaler appliances.
  • D. Configure a syslog server on NetScaler appliances.


Answer : A

A review of purchases made at an online retailer shows that several orders were processed for items at an unpublished price.
Which protection can a Citrix Engineer implement to prevent a site visitor from modifying the unit price of a product on the shopping cart page?

  • A. HTML Cross-Site Scripting (XSS)
  • B. Cross-Site Request Forgeries (CSRF)
  • C. HTML SQL Injection
  • D. Form Field Consistency


Answer : D

Which NetScaler Console (ADM) Analytics page allows an engineer to measure the ICA Round-Trip Time for user connections?

  • A. TCP Insight
  • B. HDX Insight
  • C. Security Insight
  • D. Web Insight
  • E. Gateway Insight


Answer : B

What can a Citrix Engineer create to combine multiple applications to be monitored as a single entity?

  • A. An Application Category
  • B. An Instance Group
  • C. A Custom Dashboard
  • D. A Custom App


Answer : D

What is required for implementing the NetScaler Console (ADM) Service?

  • A. Citrix Virtual Apps and Desktops
  • B. NetScaler Instances
  • C. Citrix Hypervisor
  • D. Citrix Cloud subscription


Answer : D

Scenario: A Citrix Engineer configures NetScaler Web App Firewall to protect an application. Upon reviewing the log files, the engineer notices a pattern of forceful browsing toward the configuration page for the application. To protect against this, the engineer implements a Deny URL rule for the path /config.aspx.
What is the effect of the Deny URL rule on the application?

  • A. The path /config.aspx can only be accessed through another link in the application.
  • B. No traffic is directed toward the path /config.aspx.
  • C. External traffic is blocked to the path /config.aspx.
    Internal traffic is permitted to the path /config.aspx.
  • D. Non-administrative users are blocked from accessing the path /config.aspx.
    Administrative users are permitted to access the path /config.aspx.


Answer : B

Scenario: A Citrix Engineer configures NetScaler Web App Firewall to protect an application. Users report that they are NOT able to log on. The engineer enables a Start URL relaxation for the path/login.aspx.
What is the effect of the Start URL relaxation on the application?

  • A. External users are blocked from the path/login.aspx.
    Internal users are permitted to the path/login.aspx.
  • B. Non-administrative users are blocked from the path/login.aspx.
    Administrative users are permitted to the path/login.aspx.
  • C. Access to the path/login.aspx is blocked.
  • D. Access to the path/login.aspx is unblocked.


Answer : D

Page:    1 / 4   
Exam contains 60 questions

Talk to us!


Have any questions or issues ? Please dont hesitate to contact us

Certlibrary.com is owned by MBS Tech Limited: Room 1905 Nam Wo Hong Building, 148 Wing Lok Street, Sheung Wan, Hong Kong. Company registration number: 2310926
Certlibrary doesn't offer Real Microsoft Exam Questions. Certlibrary Materials do not contain actual questions and answers from Cisco's Certification Exams.
CFA Institute does not endorse, promote or warrant the accuracy or quality of Certlibrary. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Terms & Conditions | Privacy Policy | Amazon Exams | Cisco Exams | CompTIA Exams | Databricks Exams | Fortinet Exams | Google Exams | Microsoft Exams | VMware Exams