Question 26
Scenario: A Citrix Architect has configured two MPX devices in high availability mode with version
12.0.53.13 nc. After a discussion with the security teamf the architect enabled the Application Firewall feature for additional protection. In the initial deployment phase, the following security features were enabled:
* IP address reputation
* HTML SQL injection check
* Start URL
* HTML Cross-site scripting
* Form-Field consistency
After deployment in pre-production, the team identifies the following additional security features and changes as further requirements:
* Application Firewall should retain the response of form field in its memory. When a client submits the form in the next request Application Firewall should check for inconsistency in the request before sending it to the web server.
* All the requests dropped by Application Firewall should get a pre-configured HTML error page with appropriate information.
* The Application Firewall profile should be able to handle the data from an RSS feed and an ATOM-based site. Click the Exhibit button to view an excerpt of the existing configuration.
What should the architect do to meet these requirements?
12.0.53.13 nc. After a discussion with the security teamf the architect enabled the Application Firewall feature for additional protection. In the initial deployment phase, the following security features were enabled:
* IP address reputation
* HTML SQL injection check
* Start URL
* HTML Cross-site scripting
* Form-Field consistency
After deployment in pre-production, the team identifies the following additional security features and changes as further requirements:
* Application Firewall should retain the response of form field in its memory. When a client submits the form in the next request Application Firewall should check for inconsistency in the request before sending it to the web server.
* All the requests dropped by Application Firewall should get a pre-configured HTML error page with appropriate information.
* The Application Firewall profile should be able to handle the data from an RSS feed and an ATOM-based site. Click the Exhibit button to view an excerpt of the existing configuration.
What should the architect do to meet these requirements?
Question 27
Scenario: A Citrix Architect needs to deploy a load balancing for an application server on the NetScaler. The authentication must be performed on the NetScaler. After the authentication, the Single Sign-on with the application servers must be performed using Kerberos impersonation.
Which three authentication methods can the Architect utilize to gather the credentials from the user in this scenario? (Choose three.)
Which three authentication methods can the Architect utilize to gather the credentials from the user in this scenario? (Choose three.)
Question 28
Which request can a Citrix Architect utilize to create a NITRO API command to add a NetScaler appliance with NSIP address 10.102.29.60 to the cluster?
Question 29
Which session parameter does the default authorization setting control when authentication, authorization, and auditing profiles are configured?
Question 30
Scenario: A Citrix Architect needs to assess an existing NetScaler gateway deployment. During the assessment, the architect collected key requirements for VPN users, as well as the current session profile settings that are applied to those users.
Click the Exhibit button to view the information collected by the architect.
Which configuration should the architect change to meet all the stated requirements?
Click the Exhibit button to view the information collected by the architect.
Which configuration should the architect change to meet all the stated requirements?