1Y0-340 Online Practice Questions and Answers
An attacker inserting a malicious code that compromises the trust relationship between users and a web application is an example of a (n) _____ attack. (Choose the correct option to complete the sentence.)
A. Cookie Tampering
B. SQL Injection
C. Form Field Consistency
D. Cross-site Scripting
A Citrix Engineer needs to configure Relaxation Rules using the learned data for SQL Injection.
Which setting can the engineer enable in order to avoid false-positive learned rules?
A. Increase database size for Learned data.
B. Decrease Minthreshold value to Default in Learning settings.
C. Increase Minthreshold value in Learning settings.
D. Remove all unreviewed data from Learning settings.
Scenario: A Citrix Engineer has migrated an application to NetScaler to secure it from application layer attacks. The engineer receives a complaint that the application is timing out while users are actively accessing the page. Those users are forced to reestablish the connection.
What can be the cause of this issue?
A. The maximum session lifetime is NOT configured.
B. The session time out is configured to a low value.
C. The application is configured with a low session timeout.
D. The maximum session lifetime is less than the session timeout.
Scenario: A Citrix Engineer has enabled learning on Application Firewall for all the Security checks on a basic profile that is configured in a production environment. However, after a few hours, the Application Firewall has stopped learning new data.
What is causing the issue?
A. The learning database is limited to 20 MB in size and needs a reset.
B. Application Firewall learning can only be enabled for an advanced profile.
C. Application Firewall learning should only be enabled on Start URL.
D. All the Security checks CANNOT be enabled simultaneously.
A Citrix Engineer needs to configure the authentication feature on NetScaler Management and Analytics System (NMAS) to enable local authentication to take over if the external authentication fails.
What can the engineer configure to meet this requirement?
A. Select LOCAL as the Server Type when configuring authentication.
B. Select EXTERNAL as the Server Type when configuring authentication.
C. Enable the fallback local authentication option.
D. Configure Cascade authentication with External as primary and LOCAL as secondary.
A website hosts highly dynamic content that is frequently requested in bursts of high user access. Which configuration will reduce traffic to the origin server while optimizing client performance?
A. –pollEveryTime NO
B. –expireAtLastByte YES
C. –flashCache YES
D. –heurExpiryParam 0
Scenario: A Citrix Engineer is trying to optimize a website that is load balanced on a NetScaler and is accessed by mobile users. The web application is complex and made up of hundreds of embedded images, scripts, and other objects per page. This limitation is creating a significant bottleneck, resulting in excessive load times.
Which NetScaler feature can the engineer use to optimize the web application?
A. Domain Sharding
B. SPDY (Speedy)
C. Multipath TCP
D. Minification
Scenario: A Citrix Engineer is assigned applications using Role-based Access Control (RBAC) in NetScaler Management and Analytics Systems (NMAS). In the NMAS, the engineer can see all virtual servers under Web Insight > Applications, but is unable to access them.
What could be the cause of this behavior?
A. The RBAC is NOT supported for Orchestration.
B. The RBAC is NOT supported at the application level.
C. The Access Control policy is NOT configured on the NetScaler.
D. The Access Control policy name on NetScaler and NetScaler MAS should match.
A Citrix Engineer has configured SQL Injection security check to block all special characters.
Which two requests will be blocked after enabling this check? (Choose two.)
A. Citrix; Sqltest
B. 175// OR 1//=1//
C. Citrix" OR "1"="1
D. Citrix OR 1=1
E. 175' OR `1'= `1'
A Citrix Engineer needs to configure an AppQoE action to deliver content from an alternate service. Which three parameters should the engineer configure to meet this requirement? (Choose three.)
A. TCP Profile
B. Header Name
C. Action Type
D. Maximum Connections
E. Alternate Content Path