1Y0-341 MCQs and Practice Test


1Y0-341 MCQs

1Y0-341 TestPrep 1Y0-341 Study Guide 1Y0-341 Practice Test

1Y0-341 Exam Questions


killexams.com


Citrix


1Y0-341


Citrix ADC Advanced Topics - Security Management and Optimization (CCP-AppDS)


https://killexams.com/pass4sure/exam-detail/1Y0-341

Download PDF for 1Y0-341



Question: 51


Scenario: A Citrix Engineer used Learning to establish the HTML SQL Injection relaxations for a critical web application. The engineer now wishes to begin working on the protections for a different web application. The name of the Web App Profile is appfw_prof_customercare.


Which CLI command can the engineer use to empty the Learn database?

  1. set appfw learningsettings appfw_prof_customercare -SQLInjectionMinThreshold 0

  2. set appfw learningsettings appfw_prof_customercare -startURLMinThreshold 0

  3. reset appfw learningdata

  4. export appfw learningdata appfw_prof_customercare




Answer: C




Question: 52


Scenario: A Citrix Engineer wants to configure the Citrix ADC for OAuth authentication. The engineer uploads the required certificates, configure the actions, and creates all the necessary policies. After binding the authentication policy to the application, the engineer is unable to authenticate.


What is the most likely cause of this failure?

  1. The log files are full.

  2. The Redirect URL is incorrect.

  3. The certificates have expired.

  4. The policy bindings were assigned incorrect priorities.




Answer: D Explanation:


Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/entities-of-authentication-authorization- auditing/authentication-policies.html




Question: 53


Scenario: A Citrix Engineer has enabled the IP Reputation feature. The engineer wants to protect a critical web application from a distributed denial of service attack.


Which advanced expression can the engineer write for a Responder policy?

  1. CLIEN

  2. I

  3. SR

  4. IPREP_THREAT_CATEGORY(SPAM_SOURCES)

  5. CLIEN

  6. I

  7. SR

  8. IPREP_THREAT_CATEGORY(BOTNETS)

. CLIEN

. I

. SR

. IPREP_THREAT_CATEGORY(WEB_ATTACKS)

. CLIEN

. I

. SR

. IPREP_THREAT_CATEGORY(WINDOWS_EXPLOITS)




Answer: C




Question: 54


A Citrix Engineer needs to set up access to an internal application for external partners.


Which two entities must the engineer configure on the Citrix ADC to support this? (Choose two.)

  1. SAML Policy

  2. SAML IdP Profile

  3. SAML IdP Policy

  4. SAML Action




Answer: A,C Explanation:


Reference: https://www.citrix.com/blogs/2015/04/09/how-to-use-saml-authentication-with-storefront-2-6/




Question: 55


Which report can a Citrix Engineer review to ensure that the Citrix ADC meets all PCI-DSS requirements.

  1. Generate Application Firewall Configuration

  2. PCI-DSS Standards

  3. Application Firewall Violations Summary

  4. Generate PCI-DSS




Answer: D Explanation:


Reference: https://docs.citrix.com/en-us/citrix-adc/current-release/application-firewall/stats-and-reports.html




Question: 56


Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Delivery Management (ADM). Management has asked for a report of high-risk traffic to protected internal websites.


Which dashboard can the engineer use to generate the requested report?

  1. App Security

  2. Transactions

  3. Users & Endpoints

  4. App




Answer: B




Question: 57


A Citrix Engineer wants to delegate management of Citrix Application Delivery Management (ADM) to a junior team member.


Which assigned role will limit the team member to view all application-related data?

  1. readonly

  2. appReadonly

  3. admin

  4. appAdmin




Answer: B Explanation:


Reference: https://docs.citrix.com/en-us/citrix-application-delivery-management-service/setting-up/configuring-role- based-access-control.html




Question: 58


A Citrix Engineer is reviewing the log files for a sensitive web application and notices that someone accessed the application using the engineer???s credentials while the engineer was out of the office for an extended period of time.


Which production can the engineer implement to protect against this vulnerability?

  1. Deny URL

  2. Buffer Overflow

  3. Form Field Consistency

  4. Cookie Consistency




Answer: C




Question: 59


Which data populates the Events Dashboard?

  1. Syslog messages

  2. SNMP trap messages

  3. API calls

  4. AppFlow IPFIX records




Answer: D



Question: 60


Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall. Signature Auto-Update has been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the settings for Signature Auto Update the engineer notices that the URL is blank.


Which URL should the engineer enter to restore the update process?

  1. https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMapping.xml

  2. https://download.citrix.com/NSAppFwSignatures/SignaturesMapping.xml

  3. https://www.citrix.com/NSAppFwSignatures/SignaturesMapping.xml

  4. https://citrix.azure.com/NSAppFwSignatures/SignaturesMapping.xml




Answer: A Explanation:


Reference: https://support.citrix.com/article/CTX138858


KILLEXAMS.COM


Killexams.com is a leading online platform specializing in high-quality certification exam preparation. Offering a robust suite of tools, including MCQs, practice tests, and advanced test engines, Killexams.com empowers candidates to excel in their certification exams. Discover the key features that make Killexams.com the go-to choice for exam success.



Exam Questions:

Killexams.com provides exam questions that are experienced in test centers. These questions are updated regularly to ensure they are up-to-date and relevant to the latest exam syllabus. By studying these questions, candidates can familiarize themselves with the content and format of the real exam.


Exam MCQs:

Killexams.com offers exam MCQs in PDF format. These questions contain a comprehensive

collection of questions and answers that cover the exam topics. By using these MCQs, candidate can enhance their knowledge and improve their chances of success in the certification exam.


Practice Test:

Killexams.com provides practice test through their desktop test engine and online test engine. These practice tests simulate the real exam environment and help candidates assess their readiness for the actual exam. The practice test cover a wide range of questions and enable candidates to identify their strengths and weaknesses.


Guaranteed Success:

Killexams.com offers a success guarantee with the exam MCQs. Killexams claim that by using this materials, candidates will pass their exams on the first attempt or they will get refund for the purchase price. This guarantee provides assurance and confidence to individuals preparing for certification exam.


Updated Contents:

Killexams.com regularly updates its question bank of MCQs to ensure that they are current and reflect the latest changes in the exam syllabus. This helps candidates stay up-to-date with the exam content and increases their chances of success.

Back to Home