NEW QUESTION 1
Which variable will display the client's source IP address when added to an HTML Error Object page?

• A. $<CUENTIP.SRC>
• B. ${CUENT.IPSRC}
• C. $(CLIENT.1P.SRC)
• D. $[CLIENT.IP.SRC]

Answer: B

NEW QUESTION 2
A Citrix Engineer wants to quietly track attempts that cause a web application to display a list of all user accounts.
Which action should the engineer enable to achieve this?

• A. Stats
• B. Block
• C. Log
• D. Learn

Answer: D

NEW QUESTION 3
Which variable will display the client’s source IP address when added to an HTML Error Object page?

• A. $[CLIENT.IP.SRC]
• B. ${CLIENT.IP.SRC}
• C. $<CLIENT.IP.SRC>
• D. $(CLIENT.IP.SRC)

Answer: B

NEW QUESTION 4
Scenario: When reviewing the activity logs for a web application, a Citrix Engineer notices a high number of requests for the page, /setup.aspx. Further investigation reveals that most of these requests originated from outside the network. Which protection can the engineer implement to prevent this?

• A. HTML Cross-Site Scripting (XSS)
• B. Cookie Consistency
• C. Start URL with URL Closure
• D. Buffer Overflow

Answer: C

NEW QUESTION 5
Which protection is applied on a server response from a protected application?

• A. Cross-Site Request Forgeries (CSRF)
• B. Form Field Consistency
• C. HTML Cross-Site Scripting (XSS)
• D. Safe Object

Answer: D

NEW QUESTION 6
Scenario: A Citrix Engineer has configured Citrix Application Delivery Management (ADM) to monitor applications presented by Citrix ADC appliances. When reviewing the App Security Dashboard, the engineer finds no data.
What must the engineer do to ensure data is being collected from the applications?

• A. Enable AppFlow for Security Insight on the instances in Citrix ADM.
• B. Update the password stored in the instance profile on Citrix ADM.
• C. Point the default route on Citrix ADM to the subnet with the NSIPs of the Citrix ADC appliances.
• D. Enable the Web App Firewall feature on the Citrix ADC appliances.

Answer: A

NEW QUESTION 7
Which Citrix Application Delivery Management (ADM) Analytics page allows a Citrix Engineer to monitor the metrics of the optimization techniques and congestion control strategies used in Citrix ADC appliances?

• A. Gateway Insight
• B. TCP Insight
• C. HDX Insight
• D. Web Insight

Answer: B

NEW QUESTION 8
In which order is a client request to a protected web application processed?

• A. CitrixWebApp Firewall, Load Balancing, Caching, Rewrite
• B. Caching, Citrix Web App Firewall, Load Balancing, Rewrite
• C. Citrix Web App Firewall, Caching, Load Balancing, Rewrite
• D. Load Balancing, Citrix Web App Firewall, Caching, Rewrite

Answer: C

NEW QUESTION 9
Scenario: A Web Application Developer asked a Citrix Engineer to implement Citrix Web App Firewall protections. To provide consistency in branding, the developer asked that the web server provide a custom message when a violation occurs. Which profile setting does the engineer need to configure to provide the custom message?

• A. Redirect URL
• B. HTML Error Object
• C. RFC Profile
• D. Content Type Default Response

Answer: B

NEW QUESTION 10
Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Management (ADM). Management has asked lota report of high-risk traffic to protected internal websites.
Which dashboard can the engineer use to generate the requested report?

• A. Transactions
• B. APP
• C. APP Security
• D. Users & Endpoints

Answer: C

NEW QUESTION 11
A Citrix Engineer needs to create a configuration job to clone a configuration from an existing Citrix ADC to a new Citrix ADC.
Which configuration source can the engineer use to accomplish this?

• A. Master Configuration
• B. Inbuilt Template
• C. Instance
• D. Configuration Template

Answer: C

NEW QUESTION 12
Scenario: A Citrix Engineer implements Application-level Quality of Experience (AppQoE) to protect a web application. The engineer configures the AppQoE action to deliver a custom response from a backup server once the maximum number of concurrent connection is reached.
To achieve this, the engineer should set the Acton Type to and specify the . (Choose the correct option to complete the sentence.)

• A. NS; Alternate Content Server Name
• B. ACS; Custom File
• C. ACS; Alternate Content Server Name
• D. NS; Custom File

Answer: C

NEW QUESTION 13
A manager for a hospital billing system wants to display the last four digits of a credit card number when printing invoices.
Which credit card security action does this?

• A. X-Out
• B. Log
• C. Transform
• D. Block

Answer: A

NEW QUESTION 14
Which Front End Optimization technique overcomes the parallel download limitation of web browsers?

• A. Domain Sharding
• B. Minify
• C. Extend Page Cache
• D. Lazy Load

Answer: A

NEW QUESTION 15
Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. After the Web App Firewall policy is bound to the virtual server, the engineer notices that Citrix Web App Firewall is NOT blocking bad requests from clients. Which tool can help the engineer view the traffic that is passing to and from the client?

• A. nstrace
• B. nsconmsg
• C. syslog
• D. aaad.debug

Answer: A

NEW QUESTION 16
Scenario: A Citrix Engineer is reviewing the Citrix Web App Firewall log files using the GUI. Upon further analysis, the engineer notices that legitimate application traffic is being blocked.
What can the engineer do to allow the traffic to pass through while maintaining security?

• A. Note the protection blocking the traffic in the log entr
• B. Edit the profile and deselect the Block action for the protection.
• C. Select the check box in the log entr
• D. Choose Dismiss to allow the traffic to pass through from the Action menu.
• E. Note the protection blocking the traffic in the log entr
• F. Create a new profile and policy and bind it with a larger priority number.
• G. Select the check box in the log entr
• H. Choose Edit & Deploy to create a relaxation rule from the Action menu.

Answer: D

NEW QUESTION 17
A Citrix Engineer wants to create a configuration job template to add a DNS nameserver to each Citrix ADC instance. What is a valid variable name for the DNS nameserver?

• A. %dns_nameserver%
• B. %dns_nameserver
• C. $dns_nameserver$
• D. $dns nameserver

Answer: C

NEW QUESTION 18
......