Which action ensures that content is retrieved from the server of origin?

A. CACHE

B. MAY_CACHE

C. NOCACHE

D. MAY_NOCACHE

Which protection can a Citrix Engineer implement to prevent a hacker from extracting a customer list from the company website?

A. Cross-Site Request Forgeries (CSRF)

B. Form Field Consistency

C. HTML Cross-Site Scripting (XSS)

D. HTML SQL Injection

Scenario: A Citrix Engineer has a pair of Citrix ADC VPX appliances configured as a High- Availability (HA) pair and hosted on a Citrix Hypervisor. The engineer wants to use Citrix Application Delivery Management (ADM) to monitor and manage the 35 web applications on the appliances. The engineer has imported Citrix ADM virtual appliance to Citrix Hypervisor. The engineer has also configured the management IP address settings and has added the 35 instances. However, some of the instances are NOT reporting any data.

Which two areas can the engineer check to determine the cause of the issue? (Choose two.)

A. A Premium platform license must be configured on each instance.

B. AppFlow must be enabled on each instance.

C. The Citrix ADM license must be installed.

D. An SSL certificate must be installed on the Citrix ADM appliance.

Scenario: A Web Application Developer asked a Citrix Engineer to implement Citrix Web App Firewall protections. To provide consistency in branding, the developer asked that the web server provide a custom message when a violation occurs.

Which profile setting does the engineer need to configure to provide the custom message?

A. Redirect URL

B. HTML Error Object

C. RFC Profile

D. Content Type Default Response

What is required for Implementing to the Citrix Application Delivery Management (ADM) Service?

A. Citrix Hypervisor

B. Citrix Cloud subscription

C. Citrix Virtual Apps and Desktops

D. Citrix ADC Instances

Which font end Optimization technique overcomes the parallel download limitation of web browsers?

A. Domain Sharing

B. Minify

C. Extend Page Cache

D. Lazy Load

Scenario: A Citrix Engineer is notified that improper requests are reacting the web application. While investigating, the engineer notices that the Citrix Web App Firewall policy has zero hits.

What are two possible causes for this within the Citrix Web App Firewall policy? (Choose two.)

A. The expression is incorrect.

B. It has been assigned an Advanced HTML profile.

C. It is NOT bound to the virtual server.

D. It has been assigned the built-in APPFW_RESET profile.

Scenario: A Citrix Engineer is implementing Integrated Caching to increase performance of a web application. The Application Engineer replaces a small logo on the main page with a new one. Later on, when the engineer attempts to access the page, the old logo is displayed. Which enabled setting in the Content Group would cause this to happen?

A. Ignore browser's reload request

B. Do not cache--if size exceeds 500 KB

C. Expire content after 60 seconds

D. Do not cache--if hits are less than 1

Scenario: When reviewing the activity logs for a web application, a Citrix Engineer notices a high number of requests for the page, /setup.aspx. Further investigation reveals that most of these requests originated from outside the network.

Which protection can the engineer implement to prevent this?

A. HTML Cross-Site Scripting (XSS)

B. Cookie Consistency

C. Start URL with URL Closure

D. Buffer Overflow

Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Upon reviewing the log files, the engineer notices a pattern of forceful browsing toward the configuration page for the application. To protect against this, the engineer enforces Start URL and enables Enforce URL Closure.

What is the effect of enforcing Start URL and enabling Enforce URL Closure on the application?

A. Access to the path /config.aspx is unblocked when a user clicks a referring link elsewhere on the website.

B. Non-administrative users are blocked from the path /config.aspx. Administrative users are permitted to the path /config.aspx.

C. External users are blocked from the path /config.aspx.

Internal users are permitted to the path /config.aspx.

D. Access to the path /config.aspx is blocked.