NO.61 A Citrix Engineer needs to ensure that infrastructure is PCI DSS compliant. Which two are prerequisite actions for PCI DSS compliance? (Choose two.)

NO.62 Which Citrix Web App Firewall profile setting can a Citrix Engineer configure to provide a response when a violation occurs?

NO.63 Scenario: A Citrix Engineer configured an HTTP Denial-of-Service (DoS) protection policy by setting the Surge Queue depth to 300. The surge queue reaches a size of 308, triggering the NetScaler “attack” mode. The HTTP DoS window mechanism is left at the default size which, when reached, will trigger “no- attack” mode.
Which queue depth value must the Surge Queue be to trigger the “no-attack” mode?

NO.64 Which Citrix Application Delivery Management (ADM) Analytics page allows a Citrix Engineer to monitor the metrics of the optimization techniques and congestion control strategies used in Citrix ADC appliances?

NO.65 Which build-in TCP profile can a Citrix Engineer assign to a virtual server to improve performance for users who access an application from a remote office over an ATM connection?

NO.66 A Citrix Engineer has determined that users are able to access random URLs on a web site through bookmarks and by manually typing in the URLs to skip the pages required to reach that part of the website.
Which two checks can the engineer enable to prevent this attack? (Choose two.)

NO.67 Which Citrix Application Delivery Management (ADM) Analytics page allows an engineer to measure the ICA Round Trip Time for user connections?

NO.68 Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Delivery Management (ADM). Management has asked for a report of high-risk traffic to protected internal websites.
Which dashboard can the engineer use to generate the requested report?

NO.69 Scenario: A Citrix Engineer needs to forward the Citrix Web App Firewall log entries to a central management service. This central management service uses an open log file standard.
Which log file format should the engineer use in the Citrix Web App Firewall engine settings to designate the open log file standard?

NO.70 A Citrix Engineer has defined an HTTP Callout, hc_authorized_location, to return the value “Authorized” if client’s IP address is on a list of authorized external locations.
Which advanced expression should the engineer use in a policy for testing this condition?

NO.71 Scenario: A Citrix Engineer wants to configure the Citrix ADC for OAuth authentication. The engineer uploads the required certificates, configure the actions, and creates all the necessary policies. After binding the authentication policy to the application, the engineer is unable to authenticate.
What is the most likely cause of this failure?

NO.72 Which is a single-digit rating system that indicates the criticalness of attacks on the application, regardless of whether or NOT the application is protected by a NetScaler appliance?

NO.73 Which data populates the Events Dashboard?

NO.74 Scenario: A Citrix Engineer has created a default admin user with username Admin1 and password `nsroot’ for the tenant example-online. However, the tenant administrator is unable to log in as username Admin1 and password `nsroot’.
Which action resolves this problem?

NO.75 Scenario: A Citrix Engineer has configured a NetScaler Management Analytics System (NMAS) policy mandating that all certificates must have minimum key strengths of 2048 bits and must be authorized by trusted CA/Issuers.
How does NMAS alert the engineer about non-compliance?

NO.76 A company has experienced an outage of their mission-critical website. Upon investigation, the Citrix Engineer determines that the following command was executed on the website:
DROP TABLE table_name
Which security check would have prevented this issue?

NO.77 Scenaho: A Citrix Engineer needs to block requests from a list of IP addresses in a database maintained by the Security team. The Security team has built a web application that will send a response of either “Blocked” or “Allowed,” based on whether the given IP address is on the list. Which expression should the engineer use to extract the status for policy processing?

NO.78 Which three protocols in a NetScaler Management and Analytics System (NMAS) can be used to back up the current state of the managed NetScaler instances? (Choose three.)

NO.79 A Citrix Engineer has configured SQL Injection security check to block all special characters.
Which two requests will be blocked after enabling this check? (Choose two.)

NO.80 Scenario: A Citrix Engineer configures the Application Firewall for protecting a sensitive website. The security team captures traffic between a client and the website and notes the following cookie:
citrix_ns_id
The security team is concerned that the cookie name is a risk, as it can be easily determined that the NetScaler is protecting the website.
Where can the engineer change the cookie name?

NO.81 Statistics for which three types of violations are presented on the App Security Dashboard? (Choose three.)

NO.82 Statistics for which three types of violations are presented on the App Security Dashboard?
(Choose three.)

NO.83 What can a Citrix Engineer use in NetScaler Management and Analytics System (NMAS) to troubleshoot an issue in which users report long response times when accessing a virtual desktop?

NO.84 Which Front End Optimization technique overcomes the parallel download limitation of web browsers?