Scenario: A Citrix Engineer configures an Application Firewall HTML SQL Injection Check and sets it to BLOCK and to use SQLSplCharANDKeyword as the SQL injection type. The engineer checks the logs and finds that nothing is being blocked.

What can be the cause of the Application Firewall failing to block the attack?

A. The request contains SQL Wildcard Characters.

B. The request neither contains SQL Special Characters nor keywords.

C. The request only contains SQL Special Characters.

D. The request only contains SQL keywords.

Scenario: A Citrix Engineer has created a default admin user with username Admin1 and password `nsroot' for the tenant example-online. However, the tenant administrator is unable to log in as username Admin1 and password `nsroot'.

Which action resolves this problem?

A. User should use the system administrator credentials to login.

B. The user BIND DN should be specified.

C. The default password must be change before login.

D. User should enter username as example-online\Admin1.

Which reason can cause fail over in a NetScaler Management and Analytics System (NMAS) High Availability pair?

A. A secondary server loses connectivity in the LAN.

B. The engineer manually forces the secondary server to shut down.

C. A primary server encounters a critical software issue.

D. A primary server does NOT receive the SNMP traps from the instances connected.

Which type of Application Profile type can be configured to protect the application which supports both HTML and XML data?

A. Web 2.0 Application Profile

B. Web Application Profile

C. XML Application Profile

D. Advanced Profile

A Citrix Engineer needs to set the rate at which connections are proxied from the NetScaler to the server. Which values should the engineer configure for Surge Protection?

A. UDP Threshold and Start Port

B. Grant Quota and Buffer Size

C. TCP Threshold and Reset Threshold

D. Base Threshold and Throttle

Scenario: A Citrix Engineer has configured the Signature file with new patterns and log strings and uploaded the file to Application Firewall. However, after the upload, the Signature rules are NOT implemented.

What can the engineer modify to implement Signature rules?

A. The Signature update URL should have an older version than the one on Application Firewall.

B. The new Signature file should have new ID and version number.

C. The NetScaler version should be upgraded before upgrading the signatures.

D. The Signature upgrade will take effect only after a restart.

Which three options can be used to specify the destination of an HTTP Callout? (Choose three.)

A. Load balancing Virtual server

B. Global server load balancing Virtual server

C. NetScaler Gateway Virtual server

D. Content switching Virtual server

E. Cache redirection Virtual server

Scenario: A Citrix Engineer has enabled learning on Application Firewall for all the Security checks on a basic profile that is configured in a production environment. However, after a few hours, the Application Firewall has stopped learning new data.

What is causing the issue?

A. The learning database is limited to 20 MB in size and needs a reset.

B. Application Firewall learning can only be enabled for an advanced profile.

C. Application Firewall learning should only be enabled on Start URL.

D. All the Security checks CANNOT be enabled simultaneously.

Scenario: A Citrix Engineer needs to configure the Application Firewall to do a credit card check using the command-line interface (CLI) and configure the profile to obscure the credit card number.

Which parameter will the engineer add in the CLI to encrypt the credit card numbers in the logs?

A. -creditCardAction BLOCK

B. -creditCardMaxAllowed

C. -creditCardXOut ON

D. -doSecureCreditCardLogging ON

Which Markup Language is used along with NITRO API to create a StyleBook?

A. YAML

B. GML

C. XML

D. HTML