Citrix 1y0-341 practice test

Which report can a Citrix Engineer review to ensure that the Citrix ADC meets all PCI-DSS
requirements.

• A. Generate Application Firewall Configuration
• B. PCI-DSS Standards
• C. Application Firewall Violations Summary
• D. Generate PCI-DSS

Scenario: A Citrix Engineer manages Citrix Application Delivery Management (ADM) for a large
holding company. Each division maintains its own ADC appliances. The engineer wants to make Citrix
ADM features and benefits available to each group independently.
What can the engineer create for each division to achieve this?

• A. A site
• B. A role
• C. A tenant
• D. A dashboard
• E. A group

Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received
from a protected web application is NOT matching what the web server is sending out. The engineer
is concerned that someone is trying to disrupt caching behavior.
Which action is the Citrix Web App Firewall performing that would trigger this false positive?

• A. Removing the Last-Modified header
• B. Inserting a hidden form field
• C. Removing the Accept-Encoding header
• D. Modifying and adding cookies in the response

Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Users report
that they are NOT able to log on. The engineer enables a Start URL relaxation for the path
//login.aspx.
What is the effect of the Start URL relaxation on the application?

• A. Access to the path /login.aspx is unblocked.
• B. Access to the path /login.aspx is blocked.
• C. External users are blocked from the path /login.aspx. Internal users are permitted to the path /login.aspx.
• D. Non-administrative users are blocked from the path /login.aspx Administrative users are permitted to the path /login.aspx.

Which setting in the Cookie Consistency protection feature does a Citrix Engineer need to configure
to ensure that all a cookie is sent using TLS only?

• A. Encrypt Server Cookies > Encrypt All
• B. Flags to Add in Cookies > Secure
• C. Encrypt Server Cookies > Encrypt Session Only
• D. Proxy Server Cookies > Session Only

Which security model should a Citrix Engineer implement to make sure that no known attack
patterns pass through Citrix Web App Firewall?

• A. Hybrid
• B. Static
• C. Positive
• D. Negative

Scenario: A Citrix Engineer has configured Integrated Caching to improve application performance.
Within hours, the Citrix ADC appliance has run out of memory.
Which Content Group setting can the engineer configure to show the caching process until a need is
demonstrated?

• A. Maximum memory usage limit
• B. Quick Abort Size
• C. Do not cache – if hits are less than
• D. Do not cache – if size exceeds

A Citrix Engineer reviews the App Dashboard and notices that three of the monitored applications
have an App Score of less than 50.
The engineer can interpret the App Score as a metric of application
. (Choose the correct option
to complete the sentence.)

• A. security, with a lower score indicating better security
• B. performance and availability, with a higher score indicating better health
• C. performance and availability, with a lower score indicating better health
• D. security, with a higher score indicating better security

Which Front End Optimization technique causes the Citrix ADC to resize images before sending them
to the client?

• A. Minify
• B. Shrink to Attributes
• C. Compression
• D. Inlining

A review of purchases made at an online retailer shows that several orders were processed for items
at an unpublished price.
Which protection can a Citrix Engineer implement to prevent a site visitor from modifying the unit
price of a product on the shopping cart page?

• A. Cross-Site Request Forgeries (CSRF)
• B. Form Field Consistency
• C. HTML Cross-Site Scripting (XSS)
• D. HTML SQL Injection