更新された検証済みの1Y0-341問題集と解答には100%一発合格保証問題集はここ [Q34-Q58]

更新された検証済みの1Y0-341問題集と解答には100%一発合格保証問題集はここ

合格CCP-N 1Y0-341試験問題には110問があります

Citrix 1Y0-341 認定試験の出題範囲：

トピック	出題範囲
トピック 1	Determine how Citrix Web App Firewall interacts with applications in a given environment Determine how to configure Citrix Web App Firewall learning for a given scenario
トピック 2	Determine how to configure SAML based on a given scenario Determine how to configure Citrix Web App Firewall Policies
トピック 3	Determine how to configure OAuth and OpenID based on a description of a Citrix ADC environment Determine how to configure security checks to meet given requirements
トピック 4	Determine how to configure the various top-level protections based on the needs of an environment Determine how to audit for PCI-DSS compliance
トピック 5	Determine how to configure advanced form protection checks an environment Determine how to analyze Citrix Web App Firewall settings
トピック 6	Determine how to resolve Citrix Web App Firewall configuration issues given a description of an issue Determine how to deploy Citrix Web App Firewall for a given environment
トピック 7	Determine how to configure cookie consistency checks for an environment Determine how to customize error pages for a given environment

 

質問 34
Scenario: A Citrix Engineer reviews the log files for a business-critical web application. The engineer notices a series of attempts to directly access a file, /etc/passwd.
Which feature can the engineer implement to protect the application against this attack?

• A. Start URL
• B. Buffer Overflow
• C. Content Type
• D. Form Field Consistency

正解: A

 

質問 35
A Citrix Engineer needs to configure the authentication feature on NetScaler Management and Analytics System (NMAS) to enable local authentication to take over if the external authentication fails.
What can the engineer configure to meet this requirement?

• A. Enable the fallback local authentication option.
• B. Select EXTERNAL as the Server Type when configuring authentication.
• C. Configure Cascade authentication with External as primary and LOCAL as secondary.
• D. Select LOCAL as the Server Type when configuring authentication.

正解: B

 

質問 36
Which content type takes the maximum advantage of web caching mechanisms to boost performance?

• A. Dynamic Content
• B. Pseudo-Dynamic Content
• C. Pseudo-Static Content
• D. Static Content

正解: A

 

質問 37
A Citrix Engineer is reviewing the log files for a sensitive web application and notices that someone accessed the application using the engineer's credentials while the engineer was out of the office for an extended period of time.
Which production can the engineer implement to protect against this vulnerability?

• A. Deny URL
• B. Form Field Consistency
• C. Cookie Consistency
• D. Buffer Overflow

正解: B

解説:
Explanation/Reference:

 

質問 38
Scenario: A Citrix Engineer has a pair of Citrix ADC VPX appliances configured as a High- Availability (HA) pair and hosted on a Citrix Hypervisor. The engineer wants to use Citrix Application Delivery Management (ADM) to monitor and manage the 35 web applications on the appliances. The engineer has imported Citrix ADM virtual appliance to Citrix Hypervisor. The engineer has also configured the management IP address settings and has added the 35 instances. However, some of the instances are NOT reporting any data.
Which two areas can the engineer check to determine the cause of the issue? (Choose two.)

• A. The Citrix ADM license must be installed.
• B. A Premium platform license must be configured on each instance.
• C. An SSL certificate must be installed on the Citrix ADM appliance.
• D. AppFlow must be enabled on each instance.

正解: A,C

 

質問 39
Which Citrix Application Delivery Management (ADM) Analytics page allows a Citrix Engineer to monitor web application traffic?

• A. Web Insight
• B. WAN Insight
• C. Gateway Insight
• D. HDX Insight

正解: D

解説:
Explanation/Reference: https://docs.citrix.com/en-us/citrix-application-delivery-management-service/analytics/hdx- insight.html

 

質問 40
A manager for a hospital billing system wants to display the last four digits of a credit card number when printing invoices.
Which credit card security action does this?

• A. Transform
• B. Block
• C. X-Out
• D. Log

正解: C

解説:
https://docs.citrix.com/en-us/citrix-adc/current-release/application-firewall/dataleak- prevention/creditcard-check.html

 

質問 41
Which Citrix Application Delivery Management (ADM) Analytics page allows a Citrix Engineer to monitor the metrics of the optimization techniques and congestion control strategies used in Citrix ADC appliances?

• A. Web Insight
• B. HDX Insight
• C. Gateway Insight
• D. TCP Insight

正解: D

解説:
https://docs.citrix.com/en-us/tech-zone/design/reference-architectures/citrix-adm.html

 

質問 42
A Citrix Engineer wants to create a configuration job template to add a DNS nameserver to each Citrix ADC instance. What is a valid variable name for the DNS nameserver?

• A. $dns_nameserver$
• B. $dns nameserver
• C. %dns_nameserver%
• D. %dns_nameserver

正解: A

 

質問 43
Scenario: A Citrix Engineer manages Citrix Application Delivery Management (ADM) for a large holding company. Each division maintains its own ADC appliances. The engineer wants to make Citrix ADM features and benefits available to each group independently.
What can the engineer create for each division to achieve this?

• A. A tenant
• B. A group
• C. A role
• D. A dashboard
• E. A site

正解: E

 

質問 44
Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Management (ADM). Management has asked lota report of high-risk traffic to protected internal websites.
Which dashboard can the engineer use to generate the requested report?

• A. APP Security
• B. APP
• C. Users & Endpoints
• D. Transactions

正解: A

 

質問 45
Scenario: A Citrix Engineer is notified that improper requests are reacting the web application. While investigating, the engineer notices that the Citrix Web App Firewall policy has zero hits.
What are two possible causes for this within the Citrix Web App Firewall policy? (Choose two.)

• A. It has been assigned the built-in APPFW_RESET profile.
• B. It has been assigned an Advanced HTML profile.
• C. The expression is incorrect.
• D. It is NOT bound to the virtual server.

正解: C,D

 

質問 46
A Citrix Engineer has configured SQL Injection security check to block all special characters.
Which two requests will be blocked after enabling this check? (Choose two.)

• A. 175' OR `1'= `1'
• B. Citrix" OR "1"="1
• C. Citrix; Sqltest
• D. Citrix OR 1=1
• E. 175// OR 1//=1//

正解: C,E

 

質問 47
Scenario: A Citrix Engineer configures the Application Firewall for protecting a sensitive website. The security team captures traffic between a client and the website and notes the following cookie:
citrix_ns_id
The security team is concerned that the cookie name is a risk, as it can be easily determined that the NetScaler is protecting the website.
Where can the engineer change the cookie name?

• A. Application Firewall Default Signatures
• B. Application Firewall Policy
• C. Application Firewall Engine Settings
• D. Application Firewall Profile

正解: D

 

質問 48
An attacker inserting a malicious code that compromises the trust relationship between users and a web application is an example of a (n) _____ attack. (Choose the correct option to complete the sentence.)

• A. SQL Injection
• B. Cookie Tampering
• C. Cross-site Scripting
• D. Form Field Consistency

正解: C

 

質問 49
A Web Application Engineer is reviewing log files and finds that a large number of bad HTTP requests are being sent to the web application servers.
What can the Citrix ADC Engineer to do prevent bad HTTP requests from getting to the web application?

• A. Select 'Change HTTP Parameters' under System > Settings.
  Select 'Drop invalid HTTP requests'.
• B. Create an HTTP profile and select 'Drop invalid HTTP requests'.
  Assign the HTTP profile to the Web App Firewall policy.
• C. Create an HTTP profile and select 'Drop invalid HTTP requests'.
  Assign the HTTP profile to the virtual server.
• D. Modify the default HTTP profile and select 'Drop invalid HTTP requests'.
  Bind the default HTTP profile globally.

正解: D

 

質問 50
A Citrix Engineer needs to ensure that infrastructure is PCI DSS compliant. Which two are prerequisite actions for PCI DSS compliance? (Choose two.)

• A. Track and monitor every transaction of the cardholder.
• B. Assign a unique ID to each person with computer access.
• C. Ensure that cardholder data is sent unencrypted over public networks.
• D. Use only vendor-supplied defaults for system passwords and other security parameters.
• E. Regularly test security systems and processes.

正解: A,E

 

質問 51
A manager for a hospital billing system wants to display the last four digits of a credit card number when printing invoices.
Which credit card security action does this?

• A. Transform
• B. Block
• C. X-Out
• D. Log

正解: C

 

質問 52
A Citrix Engineer has received the following message after setting up Application Firewall in Learning mode.
August 28 6 03:14:27 <local0.info>XXX.0.0.2.08/28/2017:03:14:27 GMT VPXExtProd01 0-PPE-0:
default GUI CMD_EXECUTED 1670370 0: User CitrixAdmin- Remote_ip XXX.19.XXX.XXX-Command
"show appfwlearningdata WebPub_vs_af_1 startURL"- Status "ERROR: Communication error with aslearn" What can the engineer perform to resolve the issue?

• A. Disable the Application Firewall feature.
• B. Reboot the NetScaler appliance.
• C. Reinstall the Application Firewall license.
• D. Delete the Profile database and restart the aslearn process.

正解: B

 

質問 53
Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall.
Signature Auto- Update has been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the settings for Signature Auto Update the engineer notices that the URL is blank.
Which URL should the engineer enter to restore the update process?

• A. https://citrix.azure.com/NSAppFwSignatures/SignaturesMapping.xml
• B. https://download.citrix.com/NSAppFwSignatures/SignaturesMapping.xml
• C. https://s3.amazonaws.com/NSAppFwSignatures/SignaturesMapping.xml
• D. https://www.citrix.com/NSAppFwSignatures/SignaturesMapping.xml

正解: C

解説:
https://support.citrix.com/article/CTX138858

 

質問 54
What can a Citrix Engineer implement to protect against the accidental disclosure of personally identifiable information (PII)?

• A. HTML Cross-Site Scripting
• B. Cookie Consistency
• C. Safe Object
• D. Form Field Consistency

正解: C

 

質問 55
How can a Citrix Engineer configure a specific LDAP attribute in the nFactor implementation?

• A. Change the order of the policies.
• B. Specify the attribute in the LDAP server attributes field.
• C. Change the login schema and add the new attribute.
• D. Add the attribute on the nFactor traffic policy.

正解: C

 

質問 56
A website hosts highly dynamic content that is frequently requested in bursts of high user access. Which configuration will reduce traffic to the origin server while optimizing client performance?

• A. -flashCache YES
• B. pollEveryTime NO
• C. -heurExpiryParam 0
• D. -expireAtLastByte YES

正解: B

 

質問 57
Scenario: A Citrix Engineer needs to configure an Application Firewall policy for an online shopping website called "mycompany.com". As a security measure, the shopping cart application is hosted on a separate directory "/mycart" on the backend server. The engineer configured a profile to secure the connections to this shopping cart and now needs to ensure that this profile is allied to all incoming connections to the shopping cart.
Which policy expression will accomplish this requirement?

• A. http.req.url.contains("/mycart") & http:req.url.hostname.eq("mycompany.com")
• B. http.req.header ("url").contains ("/mycart") && http:req.url.contains ("mycompy.com")
• C. http.req.url.contains("/mycart") || http:req.url.hostname.eq("mycompany.com")
• D. http.req.header ("url").contains ("/mycart") || http.req.url.contains ("mycompany.com")

正解: A

 

質問 58
......

究極の無料ガイド準備1Y0-341試験問題と解答：https://drive.google.com/open?id=1lQetFkKbMIIojr2aOB59G6oszIf3E02t

合格させる1Y0-341テストエンジンPDFで完全版無料問題集がここに：https://www.passtest.jp/Citrix/1Y0-341-shiken.html