Which Citrix Application Delivery Management (ADM) feature can a Citrix Engineer use to narrow a list of Citrix ADC devices based on pre-defined criteria?

A. AutoScale Groups

B. Instance Groups

C. Configuration Template

D. Tags

E. Agent

Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Users report that they are NOT able to log on. The engineer enables a Start URL relaxation for the path //login.aspx.

What is the effect of the Start URL relaxation on the application?

A. Access to the path /login.aspx is unblocked.

B. Access to the path /login.aspx is blocked.

C. External users are blocked from the path /login.aspx. Internal users are permitted to the path / login.aspx.

D. Non-administrative users are blocked from the path /login.aspx Administrative users are permitted to the path /login.aspx.

Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. After the Web App Firewall policy is bound to the virtual server, the engineer notices that Citrix Web App Firewall is NOT blocking bad requests from clients. Which tool can help the engineer view the traffic that is passing to and from the client?

A. nstrace

B. nsconmsg

C. syslog

D. aaad.debug

Which protection is applied on a server response from a protected application?

A. Cross-Site Request Forgeries (CSRF)

B. Form Field Consistency

C. HTML Cross-Site Scripting (XSS) D. Safe Object

Which variable will display the client's source IP address when added to an HTML Error Object page?

A. $[CLIENT.IP.SRC]

B. ${CLIENT.IP.SRC}

C. $

D. $(CLIENT.IP.SRC)

A Citrix Engineer for an online retailer wants to ensure that customer address information is NOT stolen. Which protection can the engineer implement to prevent this?

A. Cross-Site Request Forgeries (CSFR)

B. HTML SQL Injection

C. For Field Consistency

D. Credit Card Check

Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received from a protected web application is NOT matching what the web server is sending out. The engineer is concerned that someone is trying to disrupt caching behavior.

Which action is the Citrix Web App Firewall performing that would trigger this false positive?

A. Removing the Last-Modified header

B. Inserting a hidden form field

C. Removing the Accept-Encoding header

D. Modifying and adding cookies in the response

Scenario: A Citrix Engineer implements Application-level Quality of Experience (AppQoE) to protect a web application. The engineer configures the AppQoE action to deliver a custom response from a backup server once the maximum number of concurrent connection is reached.

To achieve this, the engineer should set the Acton Type to________and specify the_______. (Choose the correct option to complete the sentence.)

A. NS; Alternate Content Server Name

B. ACS; Custom File

C. ACS; Alternate Content Server Name

D. NS; Custom File

A Web Application Engineer is reviewing log files and finds that a large number of bad HTTP requests are being sent to the web application servers.

What can the Citrix ADC Engineer to do prevent bad HTTP requests from getting to the web application?

A. Create an HTTP profile and select 'Drop invalid HTTP requests'. Assign the HTTP profile to the virtual server.

B. Create an HTTP profile and select 'Drop invalid HTTP requests'. Assign the HTTP profile to the Web App Firewall policy.

C. Modify the default HTTP profile and select 'Drop invalid HTTP requests'. Bind the default HTTP profile globally.

D. Select `Change HTTP Parameters' under System > Settings. Select 'Drop invalid HTTP requests'.

Which security model should a Citrix Engineer implement to ensure that only appropriate traffic that matches the expected application behavior is permitted to pass through to the web application?

A. Dynamic

B. Hybrid

C. Positive

D. Negative