EMT Practice Test

1. Question Content...


Question List

Question1: Scenario: A Citrix Engineer has configured a Denial-of-Service (DoS) protection on the NetScaler and found that client TCP connections are failing. After taking a packet trace, the engineer notices that the first packet was dropped and that the NetScaler terminated the connection due to DoS protection being enabled.
What step can the engineer take to resolve the client connection failure?

Question2: The NetScaler Management and Analytics System (NMAS) collects inventory from the instance by sending a(n) ____________ request. (Choose the correct option to complete the sentence.)

Question3: A Citrix Engineer has correctly installed and configured the NetScaler Web Logging (NSWL) client but has noticed that logs are NOT being updated.
What could be causing this issue?

Question4: Which is a single-digit rating system that indicates the criticalness of attacks on the application, regardless of whether or NOT the application is protected by a NetScaler appliance?

Question5: A Citrix Engineer needs to configure NetScaler Management and Analytics System (NMAS) in their network to retain network reporting data, events, audit logs, and task logs for 20 days.
Which settings can the engineer configure to meet the requirement?

Question6: Scenario: A Citrix Engineer discovers a security vulnerability in one of its websites. The engineer takes a header trace and checks the Application Firewall logs.
The following was found in part of the logs:
method=GET request = http://my.companysite.net/FFC/sc11.html msg=URL length (39) is greater than maximum allowed (20).cn1=707 cn2=402 cs1=owa_profile cs2=PPE0 cs3=kW49GcKbnwKByByi3
+jeNzfgWa80000 cs4=ALERT cs5=2015
Which type of Application Firewall security check can the engineer configure to block this type of attack?

Question7: Which type of Application Profile type can be configured to protect the application which supports both HTML and XML data?

Question8: Which content type takes the maximum advantage of web caching mechanisms to boost performance?

Question9: A Citrix Engineer needs to deploy the NetScaler Management and Analytics System (NMAS) in their company environment to ensure that NMAS provides uninterrupted operation in all situations.
Which deployment type can meet this requirement?

Question10: A Citrix Engineer needs to ensure that clients always receive a fresh answer from the integrated cache for positive responses (response of 200).
Which two settings can the engineer configure to make sure that clients receive a fresh response when it is needed? (Choose two.)

Question11: Which security option falls under the Negative Security Model for Citrix Application Firewall?

Question12: A Citrix Engineer needs to configure an application firewall profile to ensure that the images uploaded on the website are NOT malicious. The engineer needs to create a policy to filter the upload requests and ensure that they are in JPEG format.
Which expression can the engineer use to fulfill this requirement?

Question13: A Citrix Engineer has found issues in the websites after enabling Application Firewall.
Which logs on the NetScaler can the engineer check to verify that the issues are NOT caused by Application Firewall?

Question14: Which three options can be used to specify the destination of an HTTP Callout? (Choose three.)

Question15: Which action can be used to place the rule on the relaxation list without being deployed and ensuring that the rule is NOT learned again?

Question16: Which reason can cause fail over in a NetScaler Management and Analytics System (NMAS) High Availability pair?

Question17: Scenario: A Citrix Engineer needs to configure an external SNMP server in a High Availability setup. The engineer configured the load-balancing virtual server to access the NetScaler Management and Analytics System (NMAS) HA pair.
Which IP address will be configured on the external SNMP Manager to add the NMAS devices?

Question18: A Citrix Engineer needs to optimize the Cascading Style Sheets (CSS) content sent from the backend server before being forwarded to the client.
Which option can the engineer use to accomplish CSS optimization?

Question19: A Citrix Engineer configures the integrated caching feature to cache both static and dynamic content, but the integrated cache feature does NOT work as expected.
Which two resources can the engineer use to troubleshoot this integrated cache issue? (Choose two.)

Question20: The NetScaler logging client server can be installed and configured to store the log for ___________.
(Choose the correct option to complete the sentence.)

Question21: A Citrix Engineer needs generate and present a NetScaler PCI-DSS report to management. The report should include a PCI-DSS summary of the required security measures for PCI-DSS compliance.
Where can the engineer generate the report from?

Question22: Which two settings can be used when creating a Cache Content group? (Choose two.)

Question23: An attacker inserting a malicious code that compromises the trust relationship between users and a web application is an example of a (n) _____ attack. (Choose the correct option to complete the sentence.)

Question24: What can a Citrix Engineer do to decrease browser load times by increasing the number of parallel connections to the resource?

Question25: A Citrix Engineer needs to implement Application Firewall to prevent the following tampering and vulnerabilities:
-If web server does NOT send a field to the user, the check should NOT allow the user to add that field and return data in the field.
-If a field is a read-only or hidden field, the check verifies that data has NOT changed.
-If a field is a list box or radio button field, the check verifies that data in the response corresponds to one of the values in that field.
Which security check can the engineer enable to meet this requirement?

Question26: Which two threats can be prevented by using IP Reputation? (Choose two.)

Question27: The NetScaler processes HTTP/2 web client connections to the backend web servers by _________.
(Choose the correct option to complete the sentence.)

Question28: Which NetScaler Management Analytics System (NMAS) feature can the Citrix Engineer use to convert configuration tasks performed using the GUI to CLI commands?

Question29: Scenario: A Citrix Engineer uses one StyleBook on a NetScaler Management and Analytics System (NMAS) to create multiple load-balanced virtual server configurations for NetScaler instances. The configuration is saved in a config pack.
In which two locations is the StyleBook config pack saved? (Choose two.)

Question30: A Citrix Engineer is considered that malicious users could exploit a web system by sending a large cookie.
Which security check can the engineer implement to address this concern?

Question31: A Citrix Engineer has received the following message after setting up Application Firewall in Learning mode.
August 28 6 03:14:27 <local0.info>XXX.0.0.2.08/28/2017:03:14:27 GMT VPXExtProd01 0-PPE-0: default GUI CMD_EXECUTED 1670370 0: User CitrixAdmin- Remote_ip XXX.19.XXX.XXX-Command "show appfw learningdata WebPub_vs_af_1 startURL"- Status "ERROR: Communication error with aslearn" What can the engineer perform to resolve the issue?

Question32: Which aspect of NetScaler Management and Analytics System (NMAS) can be used to monitor end-to-end ICA traffic flowing through a NetScaler ADC?

Question33: A Citrix Engineer has deployed Front-end Optimization on NetScaler. The following are the snippets of the content before and after optimization.
Before Optimization:

Which optimization technique has been applied to the content?

Question34: Scenario: A Citrix Engineer must enable a cookie consistency security check and ensure that all the session cookies get encrypted during the transaction. The engineer needs to ensure that none of the persistent coolies are encrypted and decrypted and decrypt any encrypted cookies during the transaction.
Which cookie consistency security feature will the engineer configure in the following configuration to achieve the desired results?
add appfw profile Test123 -startURLAction none- denyURLAction none- cookieConsistencyAction log - cookieTransforms ON -cookieEncryption ecryptSessionOnly -addCookieFlags httpOnly - crossSiteScriptingAction none- SQLInjectionAction log stats -SQLInjectionTransfrormSpecialChars ON- SQLInjectionCheckSQLWildChars ON -fieldFormatAction none -bufferOverflowAction none - responseContentType "application/octet-stream"- XMLSQLInjectionAction none -XMLXSSAction none- XMLWSIAction none- XMLValidationAction none

Question35: Scenario: A Citrix Engineer has deployed four NetScaler MPXs with the following network configuration:
-Management traffic is on VLAN 5 (NSIP).
-Application and server traffic is on VLAN 10 (SNIP).
The engineer added the NetScaler Management and Analytics System (NMAS) interface to VLAN 10 to deploy a NMAS High Availability (HA) pair to manage and monitor the applications and virtual servers.
After doing so, the engineer is NOT able to see the NetScaler or applications that need to be managed.
How can the engineer resolve the issue?

Question36: Scenario: A Citrix Engineer needs to configure Application Firewall to handle SQL injection issues.
However, after enabling SQL injection check, the backend server started dropping user requests.
The Application Firewall configuration is as follows:
add appfw profile Test123 -startURLAction none- denyURLAction none-crossSiteScriptingAction none - SQLInjectionAction log stats- SQLInjection TransformSpecialChars ON -
SQLInjectionCheckSQLWildChars ON- fieldFormatAction none- bufferOverflowAction none- responseContentType "application/octet-stream" -XMLSQLInjectionAction none- XMLXSSAction none- XMLWSIAction none- XMLValidationAction none
What does the engineer need to change in the Application Firewall configuration?

Question37: A Citrix Engineer needs to ensure that all traffic to the virtual server is blocked if NONE of the bound Application Firewall policies are matched.
Which setting can the engineer configure to meet this requirement?

Question38: The NetScaler Management and Analytics System (NMAS) needs to communicate with NetScaler instances on the Microsoft Azure and Amazon Web Services (AWS) clouds.
Which configuration must a Citrix Engineer make to meet this requirement?

Question39: A Citrix Engineer executed the below commands on the NetScaler command-line interface (CLI):
add stream selector cacheStreamSelector http.req.url
add ns limitidentifier cacheRateLimitIdentifier -threshold 5 -timeSlice 2000 -selectorName cacheStreamSelector
add cache policy cacheRateLimitPolicy -rule "http.req.method.eq(get) && sys.check_limit (\
"cacheRateLimitIdentifier\")" -action cache
bind cache global cacheRateLimitPolicy- priority 10
What will be the effect of executing these commands?

Question40: A Citrix Engineer is configuring an Application Firewall Policy to protect a website.
Which expression will the engineer use in the policy?

Question41: A Citrix Engineer needs to configure Relaxation Rules using the learned data for SQL Injection.
Which setting can the engineer enable in order to avoid false-positive learned rules?

Question42: Scenario: A Citrix Engineer observes that when going through NetScaler, user connections fail and users are unable to access Exchange server. However, users can connect directly to the Exchange server. After checking the logs, the engineer finds that the POST request is blocked through the NetScaler.
The log in/ var/log/ns.log is as follows:
Jul 20 11:00: 38 <local0.info>x.x.x. 1 07/20/2017:11:00:38 GMT ns 0-PPE-0:APPFW AF_400_RESP
29362 0: x.x.x.1 439800-PPEO- urlwdummy
https://test.abc.com/rpc/rpcproxy.dll?mail.sfmta.com:6004 Bad request headers. Content-length exceeds post body limit <blocked>
Which parameter can the engineer modify to resolve the issue while maintaining security?

Question43: A Citrix Engineer has configured SQL Injection security check to block all special characters.
Which two requests will be blocked after enabling this check? (Choose two.)

Question44: A Citrix Engineer needs to set the rate at which connections are proxied from the NetScaler to the server.
Which values should the engineer configure for Surge Protection?

Question45: Which TCP flag will the NetScaler Application Firewall module send in response to a malformed/non-RFC complaint request from a client?

Question46: Which media-character can be used as an escape character and also can qualify a Meta-Character as literal when used before any character?

Question47: Scenario: A Citrix Engineer has configured a NetScaler Management Analytics System (NMAS) policy mandating that all certificates must have minimum key strengths of 2048 bits and must be authorized by trusted CA/Issuers.
How does NMAS alert the engineer about non-compliance?

Question48: Scenario: A Citrix Engineer has migrated an application to NetScaler to secure it from application layer attacks. The engineer receives a complaint that the application is timing out while users are actively accessing the page. Those users are forced to reestablish the connection.
What can be the cause of this issue?

Question49: Which two security checks invoke sessionization? (Choose two.)

Question50: Scenario: A Citrix Engineer has created a default admin user with username Admin1 and password
'nsroot' for the tenant example-online. However, the tenant administrator is unable to log in as username Admin1 and password 'nsroot'.
Which action resolves this problem?

Question51: Which two actions can a Citrix Engineer use to provide Denial of Service (DoS) protection with the AppQoE feature? (Choose two.)

Question52: In PCRE, the only characters assumed to be literals are ___________ (Choose the correct option to complete the sentence.)

Question53: Scenario: A Citrix Engineer has configured an IP Reputation policy and Profile in Application Firewall.
However, the engineer is NOT able to see any hits on the policy during testing.
Which logs can the engineer check to ensure that IP Reputation is configured correctly?

Question54: Which mechanism does the NetScaler use to enable a safe and speedy data exchange between a client/ server initial TCP handshake?

Question55: Scenario: A Citrix Engineer needs to configure the Application Firewall to do a credit card check using the command-line interface (CLI) and configure the profile to obscure the credit card number.
Which parameter will the engineer add in the CLI to encrypt the credit card numbers in the logs?

Question56: Which two response headers are added by Application Firewall? (Choose two.)

Question57: Scenario: A Citrix Engineer needs to configure an Application Firewall policy for an online shopping website called "mycompany.com". As a security measure, the shopping cart application is hosted on a separate directory "/mycart" on the backend server. The engineer configured a profile to secure the connections to this shopping cart and now needs to ensure that this profile is allied to all incoming connections to the shopping cart.
Which policy expression will accomplish this requirement?

Question58: Which setting should be enabled to convert the content-length form submission requests to chunked requests, when HTML SQL Injection protection is enabled?

Question59: A Citrix Engineer observes that after enabling the security checks in Learning mode only in an Application Firewall profile, the NetScaler is blocking the non-RFC compliant HTTP packets.
What can the engineer modify in the configuration to resolve this issue?

Question60: Which protocol does NetScaler Management and Analytics System (NMAS) use when Discovery is run to locate instances?

Question61: Scenario: A Citrix Engineer has configured LDAP group extraction on the NetScaler Management and Analytics System (NMAS) for the administration. The engineer observes that extraction is NOT working for one of the five configured groups.
What could be the cause of the issue?

Question62: A Citrix Engineer needs to write a regular expression to treat the URL www.citrix.com as a literal string.
Which regular expression can the engineer use?