EMT Practice Test

1. Question Content...


Question List

Question1: Scenario: A Citrix Engineer wants to protect a web application using Citrix Web App Firewall. The engineer enables the Learn action for the Start URL, HTML, Cross-Site Scripting, and HTML SQL Injection protections. The engineer assigns this profile to a policy, which is then bound to the virtual server.
Which two items can the engineer check to determine that the Learn action is NOT capturing any rules? (Choose two.)

Question2: Which two security checks invoke sessionization? (Choose two.)

Question3: Scenario: A Citrix Engineer must enable a cookie consistency security check and ensure that all the session cookies get encrypted during the transaction. The engineer needs to ensure that none of the persistent coolies are encrypted and decrypted and decrypt any encrypted cookies during the transaction. Which cookie consistency security feature will the engineer configure in the following configuration to achieve the desired results?
add appfw profile Test123 startURLAction none- denyURLAction none- cookieConsistencyAction log - cookieTransforms ON cookieEncryptionecryptSessionOnly addCookieFlagshttpOnly - crossSiteScriptingAction none- SQLInjectionAction log stats SQLInjectionTransfrormSpecialChars ON- SQLInjectionCheckSQLWildChars ON fieldFormatAction none bufferOverflowAction none - responseContentType "application/octet- stream"- XMLSQLInjectionAction none XMLXSSAction none- XMLWSIAction none- XMLValidationAction none

Question4: A Citrix Engineer has deployed Front-end Optimization on NetScaler. The following are the snippets of the content before and after optimization.
Before Optimization:

After Optimization:

Which optimization technique has been applied to the content?

Question5: A Citrix Engineer has found issues in the websites after enabling Application Firewall. Which logs on the NetScaler can the engineer check to verify that the issues are NOT caused by Application Firewall?

Question6: A Citrix Engineer needs to implement Application Firewall to prevent the following tampering and vulnerabilities:
- If web server does NOT send a field to the user, the check should NOT allow the user to add that field and return data in the field.
- If a field is a read-only or hidden field, the check verifies that data has NOT changed.
- If a field is a list box or radio button field, the check verifies that data in the response corresponds to one of the values in that field.
Which security check can the engineer enable to meet this requirement?

Question7: Scenario: During application troubleshooting, a Citrix Engineer notices that response traffic received from a protected web application is NOT matching what the web server is sending out.
The engineer is concerned that someone is trying to disrupt caching behavior.
Which action is the Citrix Web App Firewall performing that would trigger this false positive?

Question8: Scenario: A Citrix Engineer is configuring a Buffer Overflow Security Check. When configuring the options, the engineer notices that the Learn Mode is unavailable. Why is the Learn Mode unavailable in this configuration?

Question9: A Citrix Engineer observes the following event in the ns.log:
Aug 3 11:55:58 <local0.info> 10.248.64.10 08/03/2015:15:55:58 GMT ATL0NS01 0-PPE-1:
default APPFW APPFW_STARTURL 406856 0: 10.248.13.13 11152-PPE1 LG
+hd4LkcYiOyQVWvOTsCtSyiv00001 SPI Disallow illegal URL: https://training.citrix.com/login
<blocked>
Which Application Firewall profile has blocked the URL?

Question10: Which build-in TCP profile can a Citrix Engineer assign to a virtual server to improve performance for users who access an application from a secondary campus building over a fiber optic connection?

Question11: Scenario: A Citrix Engineer has created a default admin user with username Admin1 and password `nsroot' for the tenant example-online. However, the tenant administrator is unable to log in as username Admin1 and password `nsroot'.
Which action resolves this problem?

Question12: The NetScaler processes HTTP/2 web client connections to the backend web servers by
_________.
(Choose the correct option to complete the sentence.)

Question13: Scenario: A Citrix Engineer needs to forward the Citrix Web App Firewall log entries to a central management service. This central management service uses an open log file standard.
Which log file format should the engineer use in the Citrix Web App Firewall engine settings to designate the open log file standard?

Question14: Which three protocols in a NetScaler Management and Analytics System (NMAS) can be used to back up the current state of the managed NetScaler instances? (Choose three.)

Question15: Which Front End Optimization technique overcomes the parallel download limitation of web browsers?

Question16: A company has experienced an outage of their mission-critical website. Upon investigation, the Citrix Engineer determines that the following command was executed on the website:
DROP TABLE table_name
Which security check would have prevented this issue?

Question17: What can a Citrix Engineer implement to protect against the accidental disclosure of personally identifiable information (PII)?

Question18: A Web Application Engineer is reviewing log files and finds that a large number of bad HTTP requests are being sent to the web application servers.
What can the Citrix ADC Engineer to do prevent bad HTTP requests from getting to the web application?

Question19: Scenario: A Citrix Engineer configured signature protections for Citrix Web App Firewall.
Signature Auto- Update has been enabled. Upon reviewing the log files, the engineer notices that the auto update process has an error. In the settings for Signature Auto Update the engineer notices that the URL is blank.
Which URL should the engineer enter to restore the update process?

Question20: A Citrix Engineer needs generate and present a NetScaler PCI-DSS report to management. The report should include a PCI-DSS summary of the required security measures for PCI-DSS compliance.
Where can the engineer generate the report from?

Question21: Scenario: A Citrix Engineer has configured LDAP group extraction on the NetScaler Management and Analytics System (NMAS) for the administration. The engineer observes that extraction is NOT working for one of the five configured groups.
What could be the cause of the issue?

Question22: Which action can be used to place the rule on the relaxation list without being deployed and ensuring that the rule is NOT learned again?

Question23: Which TCP flag will the NetScaler Application Firewall module send in response to a malformed/non- RFC complaint request from a client?

Question24: Scenario: A Citrix Engineer has a pair of Citrix ADC VPX appliances configured as a High- Availability (HA) pair and hosted on a Citrix Hypervisor. The engineer wants to use Citrix Application Delivery Management (ADM) to monitor and manage the 35 web applications on the appliances. The engineer has imported Citrix ADM virtual appliance to Citrix Hypervisor. The engineer has also configured the management IP address settings and has added the 35 instances. However, some of the instances are NOT reporting any data.
Which two areas can the engineer check to determine the cause of the issue? (Choose two.)

Question25: Which two actions can a Citrix Engineer use to provide Denial of Service (DoS) protection with the AppQoE feature? (Choose two.)

Question26: Scenario: A Citrix Engineer created the policies in the attached exhibit.
Click the Exhibit button to view the list of policies.

HTTP Request:
GET /resetpassword.htm HTTP/1.1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:64.0) Gecko/20100101 Firefox/64.0 Host: www.citrix.com Accept-Language: en-us Accept-Encoding: gzip, deflate Connection: Keep-Alive Which profile will be applied to the above HTTP request?

Question27: Which NetScaler Management and Analytics System (NMAS) feature will assist the Citrix Engineer in gathering the required data for issues with Endpoint Analysis?

Question28: Which two settings can be used when creating a Cache Content group? (Choose two.)

Question29: Scenario: A Citrix Engineer has configured NetScaler Management and Analytics System (NMAS) with the default settings. In this configuration, the total number of virtual servers is lower than the number of installed virtual server licenses.
Which type of virtual server will NOT be automatically licensed by the NMAS on discovered instances?

Question30: Scenario: A Citrix Engineer has configured a Denial-of-Service (DoS) protection on the NetScaler and found that client TCP connections are failing. After taking a packet trace, the engineer notices that the first packet was dropped and that the NetScaler terminated the connection due to DoS protection being enabled.
What step can the engineer take to resolve the client connection failure?

Question31: Which three items does Citrix Application Delivery Management (ADM) require when adding an instances? (Choose three.)

Question32: Scenario: A Citrix Engineer has migrated an application to NetScaler to secure it from application layer attacks. The engineer receives a complaint that the application is timing out while users are actively accessing the page. Those users are forced to reestablish the connection.
What can be the cause of this issue?

Question33: Scenario: A Citrix Engineer is asked to implement multi-factor authentication for Citrix Gateway.
The engineer creates the authentication policies and binds the policies to the appropriate bind points. The engineer creates a custom form using Notepad++ to format the page which will capture the user's credentials.
To which folder on the Citrix ADC will the engineer need to upload this form?

Question34: A Citrix Engineer needs to optimize the Cascading Style Sheets (CSS) content sent from the backend server before being forwarded to the client.
Which option can the engineer use to accomplish CSS optimization?

Question35: A Citrix Engineer has correctly installed and configured the NetScaler Web Logging (NSWL) client but has noticed that logs are NOT being updated.
What could be causing this issue?

Question36: A Citrix Engineer needs to implement a rate limiting policy to permit an average of one request in
40 ms using NetScaler.
Which Limit Identifier will meet this requirement?

Question37: Scenario: A Citrix Engineer creates a Responder policy to redirect users attempting to access an application protected with Citrix Web App Firewall. Instead of being redirected, users are seeing an `Access Denied' page.
This is happening because Citrix Web App Firewall is processed ___________. (Choose the correct option to complete the sentence.)

Question38: Which two protections ensure that the correct data is returned by the client? (Choose two.)

Question39: A Citrix Engineer needs to configure an application firewall profile to ensure that the images uploaded on the website are NOT malicious. The engineer needs to create a policy to filter the upload requests and ensure that they are in JPEG format. Which expression can the engineer use to fulfill this requirement?

Question40: Scenario: A Citrix Engineer discovers a security vulnerability in one of its websites. The engineer takes a header trace and checks the Application Firewall logs.
The following was found in part of the logs:
method=GET request = http://my.companysite.net/FFC/sc11.html msg=URL length (39) is greater than maximum allowed (20).cn1=707 cn2=402 cs1=owa_profile cs2=PPE0 cs3=kW49GcKbnwKByByi3 +jeNzfgWa80000 cs4=ALERT cs5=2015 Which type of Application Firewall security check can the engineer configure to block this type of attack?

Question41: A Citrix Engineer has configured SQL Injection security check to block all special characters.
Which two requests will be blocked after enabling this check? (Choose two.)

Question42: Which three options can be used to specify the destination of an HTTP Callout? (Choose three.)

Question43: Which protection ensures that links to sensitive pages can only be reached from within an application?

Question44: Scenario: A Citrix Engineer is monitoring the environment with Citrix Application Delivery Management (ADM). Management has asked for a report of high-risk traffic to protected internal websites.
Which dashboard can the engineer use to generate the requested report?

Question45: Which feature of Learning should a Citrix Engineer configure to direct Citrix Web App Firewall to learn from specific sessions?

Question46: Which meta-character can be used as a wildcard to match a single character in a given position?

Question47: How can a Citrix Engineer monitor the Citrix ADC appliances to check that all SSL certificates have a key strength of at least 2048 bits from the SSL Dashboard Settings?

Question48: Which report can a Citrix Engineer review to ensure that the Citrix ADC meets all PCI-DSS requirements.

Question49: The NetScaler Management and Analytics System (NMAS) needs to communicate with NetScaler instances on the Microsoft Azure and Amazon Web Services (AWS) clouds. Which configuration must a Citrix Engineer make to meet this requirement?

Question50: Scenario: A Citrix Engineer has configured Security Insight on NetScaler Management and Analytics System (NMAS) with Firmware version 12.0.41.16 to monitor the Application Firewall.
The NetScaler ADC is running version 12.0.51.24 using Enterprise License with Application Firewall only License. However, after enabling Security insight, the engineer is NOT able to see any data under security insight.
What is causing this issue?

Question51: How can a Citrix Engineer configure a specific LDAP attribute in the nFactor implementation?

Question52: A Citrix Engineer reviews the App Dashboard and notices that three of the monitored applications have an App Score of less than 50.
The engineer can interpret the App Score as a metric of application ___________. (Choose the correct option to complete the sentence.)

Question53: Scenario: A Citrix Engineer has configured Integrated Caching to improve application performance. Within hours, the Citrix ADC appliance has run out of memory.
Which Content Group setting can the engineer configure to show the caching process until a need is demonstrated?

Question54: Scenario: A Citrix Engineer manages Citrix Application Delivery Management (ADM) for a large holding company. Each division maintains its own ADC appliances. The engineer wants to make Citrix ADM features and benefits available to each group independently.
What can the engineer create for each division to achieve this?

Question55: Which variable will display the client's source IP address when added to an HTML Error Object page?

Question56: A Citrix Engineer needs to protect a website that contains sensitive data such as employee ID numbers and customer ID numbers.
Which security check can the engineer implement to protect the sensitive data?

Question57: Which Citrix Application Delivery Management (ADM) Analytics page allows a Citrix Engineer to monitor the metrics of the optimization techniques and congestion control strategies used in Citrix ADC appliances?

Question58: Scenario: A Citrix Engineer has configured an IP Reputation policy and Profile in Application Firewall. However, the engineer is NOT able to see any hits on the policy during testing. Which logs can the engineer check to ensure that IP Reputation is configured correctly?

Question59: Which is a single-digit rating system that indicates the criticalness of attacks on the application, regardless of whether or NOT the application is protected by a NetScaler appliance?

Question60: An attacker inserting a malicious code that compromises the trust relationship between users and a web application is an example of a (n) _____ attack. (Choose the correct option to complete the sentence.)

Question61: Which Front End Optimization technique causes the Citrix ADC to resize images before sending them to the client?

Question62: The NetScaler logging client server can be installed and configured to store the log for
___________.
(Choose the correct option to complete the sentence.)