NEW QUESTION 1
Scenario: A Citrix Administrator configured the “-denySSLReneg” Parameter using the below command on NetScaler to enhance security.
set ssl parameter –denySSLReneg <option>
Which two options can the administrator use to complete the command (Choose two.)

• A. NO
• B. NONSECURE
• C. ALL
• D. HIGHSECURE
• E. FRONTEND_CLIENT

Answer: AB

NEW QUESTION 2
Which two items can a Citrix Administrator change when configuring a default portal theme? (Choose two.)

• A. Center logo
• B. NetScaler with Unified Gateway header
• C. Browser requirements
• D. Font color

Answer: AD

NEW QUESTION 3
Scenario: A Citrix Administrator created four session policies and applied them to the bind points below.
Policy A: Split tunnel ON priority 10 bound at the Virtual Server level
Policy B: Split tunnel OFF priority 20 bound at the Group level
Policy C: Split tunnel NOT configured priority 30 bound at the Global level
Policy D: Split tunnel ON priority 6 bound at the Group level
Which policy will take precedence?

• A. Policy C
• B. Policy D
• C. Policy A
• D. Policy B

Answer: A

NEW QUESTION 4
Which two features can a Citrix Administrator use to allow secure access to a sensitive company web server that is load-balanced by the NetScaler? (Choose two.)

• A. ICA proxy
• B. Integrated caching
• C. Application Firewall
• D. AppFlow
• E. AAA

Answer: AC

NEW QUESTION 5
Where should a Citrix Administrator configure SmartControl restrictions?

• A. NetScaler Gateway
• B. XenDesktop Delivery Controller
• C. NetScaler Gateway, XenDesktop Delivery Controller and StoreFront
• D. StoreFront and XenDesktop Delivery Controller

Answer: A

NEW QUESTION 6
Which three NetScaler features can a Citrix Administrator use for default syntax policies? (Choose three.)

• A. SSL
• B. Rewrite
• C. Integrated caching
• D. Protection
• E. Responder

Answer: ABE

Explanation: Reference
https://docs.citrix.com/zh-cn/netscaler/11/appexpert/policies-and-expressions/ns-pi-intro-pol-exp-wrapper-con/n

NEW QUESTION 7
Which option is needed to configure the NetScaler Gateway to provide users with multiple logon options after successful authentication, if the users are connected through clientless access?

• A. Client choices without using Endpoint Analysis
• B. Configuration of Endpoint Analysis
• C. Configuration of Quarantine Group
• D. Client choices options with mandatory Endpoint Analysis

Answer: D

NEW QUESTION 8
A Citrix Administrator needs to migrate a Remote Desktop Protocol (RDP) Proxy configuration based on NetScaler 11.1 to NetScaler 12.0.
Which three actions can the administrator perform to accomplish this requirement? (Choose three.)

• A. Replace an existing Unified Gateway virtual server with RDP Proxy configuration to a load-balancing virtual server with the AAA-TM server bound to it
• B. Move the existing NetScaler Gateway virtual server with RDP Proxy configuration, placing it behind a Unified Gateway virtual server
• C. Keep the existing NetScaler Gateway virtual server with RDP Proxy configuration as is, with a Platinum or Enterprise license
• D. Add a standalone NetScaler Gateway virtual server with RDP Proxy configuration to an existing Standard Edition appliance
• E. Add a NetScaler Gateway virtual server with RDP Proxy configuration to an existing Content-Switching virtual server

Answer: ABE

NEW QUESTION 9
A NetScaler with Unified Gateway combines and to provide access to websites and applications through a single URL. (Choose the correct option to complete the sentence.)

• A. NetScaler Gateway; Load Balancing
• B. Content Switching; Authentication features
• C. Content Switching; NetScaler Gateway
• D. Authentication features; Load Balancing

Answer: B

Explanation: NetScaler Unified Gateway leverages its Authentication, Authorization and Auditing (AAA) features with content switching to enable users to access all their authorized enterprise applications through a single gateway and URL.

NEW QUESTION 10
Which NetScaler feature can be utilized to reuse existing TCP connections?

• A. Content Switching
• B. TCP Buffering
• C. Keep Alives
• D. Connection Multiplexing

Answer: D

NEW QUESTION 11
Scenario: A Citrix Administrator needs to integrate LDAP for NetScaler system administration using the current Active Directory groups. The administrator created the group on the NetScaler, exactly matching the group name in LDAP.
What can the administrator add next to complete the configuration of the LDAP?

• A. Users to the group on the NetScaler
• B. An AAA action to the group
• C. A command policy to the group to specify the permission level
• D. A nested group to the new group

Answer: C

NEW QUESTION 12
Scenario: Client connects to certain virtual servers are abnormally high. A Citrix Administrator needs to be alerted whatever the connections pass a certain threshold.
How can the administrator use NetScaler Management and Analytics System (MAS) to accomplish this requirement?

• A. Configure SMTP Reporting on the NetScaler MAS by adding the threshold and email address.
• B. Configure specific alerts for virtual servers using NetScaler MAS.
• C. Configure TCP Insight on the NetScaler MAS.
• D. Configure Network Reporting on the NetScaler MAS by setting the threshold and email address.

Answer: D

NEW QUESTION 13
A Citrix Administrator needs to generate AppFlow data for internal ICA connections.
Which two connection methods could the administrator use to route internal ICA connections through NetScaler without modifying the existing network routing? (Choose two.)

• A. Policy-based Routing
• B. ICA Proxy
• C. SOCKS proxy
• D. Transparent Mode

Answer: AD

NEW QUESTION 14
Scenario: A NetScaler is configured with the following modes:
-MAC-based Forwarding
-USIP
-USNIP
-Layer 3 mode
A Citrix Administrator configured a new router and now requires some of the incoming and outgoing traffic to take different paths through the new router. However, the administrator notices that this is failing and takes a network trace. After a short monitoring period, the administrator notices that the packets are still NOT getting to the new router from the NetScaler.
Which mode should the administrator disable on the NetScaler to facilitate the addition of the new router and successfully route the packets?

• A. MAC-based Forwarding
• B. USIP
• C. Layer 3 mode
• D. USNIP

Answer: D

NEW QUESTION 15
Which two options would provide an end-to-end encryption data, while allowing the NetScaler to optimize the responses? (Choose two.)

• A. HTTP protocol for the virtual server
• B. SSL Bridge protocol for the virtual server
• C. HTTP protocol for the services
• D. SSL protocol for the virtual server
• E. SSL protocol for the services
• F. SSL Bridge protocol for the services

Answer: AB

NEW QUESTION 16
A Citrix Administrator needs to configure a NetScaler high availability (HA) pair with both NetScalers in different subnets.
What does the administrator need to do for the HA pair to work in different subnets?

• A. Configure Sync VLAN
• B. Turn on HA Monitoring on all Interfaces
• C. Turn on Fail-safe Mode
• D. Turn on Independent Network Configuration (INC) mode

Answer: D

NEW QUESTION 17
Which three steps can a Citrix Administrator take to integrate an existing CERT-based authentication policy on an existing NetScaler Gateway platform? (Choose three.)

• A. Create a CERT authentication policy and bind it to the NetScaler Gateway virtual server
• B. Enable client authentication on the SSL parameters of the virtual server
• C. Bind the existing CERT authentication policy to the NetScaler Gateway virtual server
• D. Enable the two-factor option on the existing CERT authentication profile
• E. Change the client certificate to Mandatory on the SSL parameters of the virtual server

Answer: ACD