NEW QUESTION 1
Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Delivery Management (ADM). Management has asked for a report of high-risk traffic to protected internal websites.
Which dashboard can the engineer use to generate the requested report?

• A. App Security
• B. Transactions
• C. Users & Endpoints
• D. App

Answer: B

NEW QUESTION 2
Which build-in TCP profile can a Citrix Engineer assign to a virtual server to improve performance for users who access an application from a remote office over an ATM connection?

• A. nstcp_default_tcp_lfp
• B. nstcp_default_tcp_lan
• C. nstcp_default_tcp_interactive_stream
• D. nstcp_default_tcp_lnp

Answer: D

NEW QUESTION 3
Which setting in the Cookie Consistency protection feature does a Citrix Engineer need to configure to ensure that all a cookie is sent using TLS only?

• A. Encrypt Server Cookies > Encrypt All
• B. Flags to Add in Cookies > Secure
• C. Encrypt Server Cookies > Encrypt Session Only
• D. Proxy Server Cookies > Session Only

Answer: B

NEW QUESTION 4
Scenario: A Citrix Engineer is asked to implement multi-factor authentication for Citrix Gateway. The engineer creates the authentication policies and binds the policies to the appropriate bind points. The engineer creates a custom form using Notepad++ to format the page which will capture the user's credentials. The engineer uploads the form and binds the form to the authentication policy.
When the engineer connects to the Citrix Gateway for validation testing, the form fields are NOT correctly displayed. What is the most likely cause of this display issue?

• A. The login schema contains invalid XML syntax.
• B. The authentication policies are bound in the wrong order
• C. The first authentication server is offline.
• D. The policy bindings are NOT consistent with the login schema.

Answer: A

NEW QUESTION 5
Scenario: A Citrix Engineer implements Application-level Quality of Experience (AppQoE) to protect a web application. Shortly after that, users call to complain that nearly every request is being met with a Captcha.
What can the engineer do to improve the user experience?

• A. Disable the Captcha.
• B. Increase the DOS Attack Threshold.
• C. Increase the Policy Queue Depth.
• D. Increase the Session Life.

Answer: B

NEW QUESTION 6
Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received from a protected web application is NOT matching what the web server is sending out. The auditor is concerned that Man-In-The-Middle attack is in progress.
Which action is the Citrix Web App Firewall performing that would trigger this false positive?

• A. Removing the Last-Modified header
• B. Inserting a hidden form field
• C. Removing the Accept-Encoding header
• D. Modifying and adding cookies in the response

Answer: D

NEW QUESTION 7
Scenario: A Citrix Engineer reviews the log files for a business-critical web application. The engineer notices a series of attempts to directly access a file, /etc/passwd.
Which feature can the engineer implement to protect the application against this attack?

• A. Buffer Overflow
• B. Start URL
• C. Content Type
• D. Form Field Consistency

Answer: B

NEW QUESTION 8
Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received from a protected web application is NOT matching what the web server is sending out. The engineer is concerned that someone is trying to disrupt caching behavior.
Which action is the Citrix Web App Firewall performing that would trigger this false positive?

• A. Removing the Last-Modified header
• B. Inserting a hidden form field
• C. Removing the Accept-Encoding header
• D. Modifying and adding cookies in the response

Answer: A

NEW QUESTION 9
A Citrix Engineer observes that the servers hosting a critical application are crashing on a regular basis. Which protection could the engineer implement on a Citrix Web App Firewall in front of the application?

• A. Buffer Overflow Check
• B. HTML Cross-Site Scripting (XSS)
• C. Start URL
• D. HTML SQL Injection

Answer: A

NEW QUESTION 10
A Citrix Engineer needs to set up access to an internal application for external partners.
Which two entities must the engineer configure on the Citrix ADC to support this? (Choose two.)

• A. SAML Policy
• B. SAMLldP Profile
• C. SAMLldP Policy
• D. SAML Action

Answer: AB

NEW QUESTION 11
Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. After the Web App Firewall policy afweb_protect is bound to the virtual server, the engineer notices that Citrix Web App Firewall is NOT properly displaying the page.
A positive number for the Policy Hits counter for afweb_protect, tells the engineer the number of times Citrix Web App Firewall . (Choose the correct option to complete the sentence.)

• A. received a request that matched the policy expression for afweb_protect
• B. blocked traffic for web applications assigned the afweb_protect policy
• C. logged a request matching the expression defined in the afweb_protect policy
• D. forwarded users to the Redirect URL specified in the profile assigned to afweb_protect

Answer: A

NEW QUESTION 12
Which data populates the Events Dashboard?

• A. Syslog messages
• B. SNMP trap messages
• C. API calls
• D. AppFlow IPFIX records

Answer: A

NEW QUESTION 13
Scenario: A Citrix Engineer is implementing Citrix Web App Firewall to protect a new web application. The engineer has created a profile, configured the relaxation rules, and applied signature protections. Additionally, the engineer has assigned the profile to a policy and bound the policy to the application.
What is the next step for the engineer in protecting the web application?

• A. Update the global default Citrix Wed App Firewall profile with the new signature file.
• B. Enable the Signature Auto-Update feature.
• C. Enable logging on key protections.
• D. Test the web application protections with a group of trusted users.

Answer: B

NEW QUESTION 14
In which order is a client request to a protected web application processed?

• A. CitrixWebApp Firewall, Load Balancing, Caching, Rewrite
• B. Caching, Citrix Web App Firewall, Load Balancing, Rewrite
• C. Citrix Web App Firewall, Caching, Load Balancing, Rewrite
• D. Load Balancing, Citrix Web App Firewall, Caching, Rewrite

Answer: C

NEW QUESTION 15
Scenario: A Citrix Engineer is asked to help improve the performance of a web application. After capturing and analyzing a typical session, the engineer notices a large number of user requests for the stock price of the company.
Which action can the engineer take to improve web application performance for the stock quote?

• A. Enable the Combine CSS optimization.
• B. Create a static content group.
• C. Create a dynamic content group.
• D. Enable the Minify JavaScript optimization.

Answer: C

NEW QUESTION 16
......