1Y0-309 Citrix Access Gateway 8.0 Enterprise Edition Set 1

Is the bookmark feature on the portal page the same as the Internet Explorer Favorite feature?


Options are :

  • They are not the same because users can delete universal bookmarks configured by the administrator.
  • They are not the same. Bookmarks on the portal page can be used to bookmark not only URLs but also the CIFS file server.
  • They are the same. The Portal page bookmark can be used to launch applications, which is the same as Web Interface for Presentation Server.
  • They are exactly the same because both can be used to remember a URL

Answer : They are not the same. Bookmarks on the portal page can be used to bookmark not only URLs but also the CIFS file server.

1Y0-309 Citrix Access Gateway 8.0 Enterprise Edition Set 2

Which two policies constitute SmartAccess functionality on Access Gateway 8.0 Enterprise Edition? (Choose two.)


Options are :

  • Session
  • Authorization
  • Traffic
  • Pre-Authentication

Answer : Session Pre-Authentication

Scenario: A consultant is in charge of a new Access Gateway 8.0 Enterprise Edition implementation at a large customer site and must address the following security requirements: Requirements: 1)If APP1.EXE is running on the local machine, do not allow access to the VPN authentication page 2)If APP2.EXE is running on the local machine, allow access to the VPN authentication page after CMD.EXE is closed 3)If APP3.EXE is not found on the local machine, allow access to the VPN authentication page Which policy type must be used to configure these security requirements?


Options are :

  • Traffic
  • Authorization
  • Pre-Authentication
  • Authentication

Answer : Pre-Authentication

An administrator wants to limit the administrative privileges for new administrators who have been employed with the company for less than six months. What could an administrator do from the Configuration Utility in order to limit these administrators' privileges?


Options are :

  • Assign session policies
  • Assign authorization policies
  • Disable administrative features within those users' accounts
  • Configure command policies and permissions

Answer : Configure command policies and permissions

1Y0-200 Managing Citrix XenDesktop 7 Solutions Exam Set 1

Which three ways can an administrator configure or obtain an SSL certificate and key? (Choose three.)


Options are :

  • From a Secure Ticket Authority
  • From an authorized Certificate Authority
  • By generating a new SSL certificate and key on the Access Gateway appliance
  • By using an existing SSL certificate and key

Answer : From an authorized Certificate Authority By generating a new SSL certificate and key on the Access Gateway appliance By using an existing SSL certificate and key

Which setting should be enabled on a Web Interface server in order for SmartAccess to work in ICA proxy mode?


Options are :

  • . Gateway Direct
  • Translated
  • Alternate
  • Direct

Answer : . Gateway Direct

When creating a Web Interface site for use with Access Gateway 8.0 Enterprise Edition, which mode of access or authentication should be specified for the Web Interface site?


Options are :

  • SmartAccess Control
  • Advanced Access Control
  • Explicit authentication
  • Pass-through authentication

Answer : Advanced Access Control

1Y0-200 Managing Citrix XenDesktop 7 Solutions Exam Set 2

Scenario: Currently an administrator is using an administration audit policy that has been configured to display more information in the audit log. The IT Manager has requested that the administrator modifies the audit policy to just display potential issues that may result in an error or critical error. Which option(s) must the administrator check in the audit policy to meet this new requirement?


Options are :

  • Emergency, Alert, Critical, Error and Warning
  • Alert, Critical and Notice
  • Warning
  • Notice and Warning

Answer : Emergency, Alert, Critical, Error and Warning

When configuring a Web Interface site for SmartAccess, without the full VPN client OR with Access Gateway 8.0 Enterprise Edition replacing Secure Gateway proxy, which mode of access should be configured in the "Edit DMZ Settings" portion of the Access Management Console?


Options are :

  • Gateway Translated
  • Direct
  • Translated
  • Gateway Direct

Answer : Gateway Direct

How can the Secure Access Client be removed from a device?


Options are :

  • Right click the Secure Access Client icon in the system tray and choose the "Uninstall" menu option.
  • Double click the Secure Access Client from the Windows Task Manager.
  • Settings>Control Panel>Add/Remove Programs, and select "Citrix Access Gateway Enterprise Edition"
  • Programs>Citrix Access Gateway Enterprise Edition>Uninstall Secure Access Client

Answer : Settings>Control Panel>Add/Remove Programs, and select "Citrix Access Gateway Enterprise Edition"

1Y0-200 Managing Citrix XenDesktop 7 Solutions Exam Set 3

Scenario: A company purchased 800 user licenses for an Access Gateway appliance deployed in their environment. The company has a total of 2,400 users in the environment and the administrator wants to specify the number of users that should be allowed to log in to the environment through the Access Gateway appliance at any time. The administrator could modify the ______ setting in the Configuration Utility in order to specify the number of users that can log into the Access Gateway appliance. (Choose the correct option to complete the sentence.)


Options are :

  • Systems > Virtual Servers > Policies
  • SSL VPN > Global > Authentication
  • SSL VPN > Users
  • Systems > Connections > Authorization

Answer : SSL VPN > Global > Authentication

An administrator configuring Access Gateway 8.0 Enterprise Edition wants to use a private key type that is used by Access Gateway 8.0 Enterprise Edition for encryption services. Which private key type should the administrator select from the "Choose private key type" drop-down list in the SSL VPN "Certificate Wizard" to meet this requirement?


Options are :

  • RSA
  • DSA
  • 3DES
  • DER

Answer : RSA

Scenario: A company is upgrading its current access infrastructure. The Network Administrator has been instructed to configure Access Gateway 8.0 Enterprise Edition to replace Secure Gateway in the environment, so that authentication is disabled on the Access Gateway appliance, and Web Interface is configured in Direct Mode with authentication responsibilities. Which two settings should the administrator configure in order to meet these requirements? (Choose two.)


Options are :

  • Set the FQDN of the Web Interface site as the FQDN of the Access Gateway appliance.
  • Enable authentication on the Secure Ticket Authority.
  • Set the Web Interface site as the Access Gateway home page.
  • Enable ICA proxy on the Access Gateway appliance.

Answer : Set the Web Interface site as the Access Gateway home page. Enable ICA proxy on the Access Gateway appliance.

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Exam Set 1

Scenario: An administrator configuring Access Gateway 8.0 Enterprise Edition in an environment that consists of a double-hop DMZ deployment, wants connections from Presentation Server clients on the Internet to go through the first firewall in order to connect to the Access Gateway 8.0 Enterprise Edition appliance in the first DMZ. Which port should the administrator enable on the first firewall?


Options are :

  • 80
  • 443
  • 1494
  • 389

Answer : 443

The Network Administrator for an enterprise environment was recently fired, so the new administrator wants to reset the system's password. Which command should the administrator use at the command line interface to change the system password?


Options are :

  • set system user
  • set system
  • set system new user
  • set system user

Answer : set system user

In a dual-stage DMZ deployment, which protocol and port is used for communication from the Access Gateway in the first DMZ to the Access Gateway in the second DMZ, if the traffic is not secured?


Options are :

  • SSL on port 443
  • SOCKS on port 1080
  • ICA on port 1494
  • HTTP on port 80

Answer : SOCKS on port 1080

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Exam Set 2

Scenario: An administrator has created a few personal folder files (*.PST) on the system when accessing Outlook over the VPN session. The administrator wants to delete these *.PST files created after logging out of the VPN session. How must the administrator configure client side cleanup to meet the above requirements?


Options are :

  • Configure it to clean up cookies.
  • Configure it to clean up the address bar.
  • Configure it to clean up application data.
  • Configure it to clean up temporary files.

Answer : Configure it to clean up application data.

When configuring SmartAccess integration, an administrator must ensure that which listed policy or filter is set up correctly in order for the policy to be applied on Presentation Server?


Options are :

  • The policy name on the Access Gateway appliance must match the filter name that is bound to the policy that is being applied to the Presentation Server hosted application.
  • The policy name on the Access Gateway appliance must match the policy name on the Presentation Server.
  • The filter name that is bound to the Presentation Server policy must match the name of the SSL VPN virtual server.
  • The Presentation Server policy must be applied to one of the authenticating user groups.The Presentation Server policy must be applied to one of the authenticating user? groups

Answer : The policy name on the Access Gateway appliance must match the filter name that is bound to the policy that is being applied to the Presentation Server hosted application.

Secure Access Client needs root privileges to do which two things? (Choose two.)


Options are :

  • To be installed
  • To provide basic VPN tunneling functionality
  • For Endpoint Analysis checks that require administrative privileges
  • For upgrading or downgrading itself

Answer : To be installed For Endpoint Analysis checks that require administrative privileges

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Exam Set 3

An IT organization has a client certificate configured. The administrator did not enable the cleanup client certificate option. The administrator decided not to prompt a user with the Windows cleanup dialog box. Will the cleanup client certificate be installed in Internet Explorer after logout?


Options are :

  • Yes, client cleanup code will do it.
  • Yes, the user has a chance to click on client cleanup windows to cleanup the client certificate.
  • No, the SSL client certificate needs manual cleanup.
  • Yes, Windows Client cleanup does the cleanup work even though it is not configured

Answer : No, the SSL client certificate needs manual cleanup.

An administrator is concerned that the default Access Gateway password for an appliance in the first DMZ has been compromised, so the default password needs to be changed. The administrator should connect to the appliance to change the nsroot password through ______. (Choose the correct option to complete the sentence.)


Options are :

  • the Configuration Utility
  • a serial port
  • Telnet
  • SSH

Answer : a serial port

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Exam Set 4

In the Policy Precedence Model for Access Gateway 8.0 Enterprise Edition what is prioritized, evaluated and enforced?


Options are :

  • Profiles of different types
  • Profiles of the same type
  • Policies of different types
  • Policies of the same type

Answer : Policies of the same type

Which option must an administrator select for intranet IP to ensure that the mapped IP is used when the appliance runs out off intranet IPs to assign to new users?


Options are :

  • NOSPILLOVER
  • SPILLOVER
  • OFF
  • ON

Answer : SPILLOVER

Can a user apply themes using the Portal Administrator Tool to change the logo, banner, icon, font, color and layout settings of their portal page?


Options are :

  • No. The Portal Administrator Tool does not have this capability.
  • No. Only the administrator has the right to do so
  • Yes. The user can always do it without administrator permission.
  • Yes. The user can do it after the administrator enables it.

Answer : Yes. The user can do it after the administrator enables it.

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Test Set 1

What is true about double-source authentication?


Options are :

  • It uses two separate user names and passwords, one for the primary node and one for the secondary node.
  • It uses the same user name and two separate passwords for the primary and secondary nodes.
  • It uses two separate user names and the same password for the primary and secondary nodes.
  • It uses the same user name and password for both the primary and the secondary nodes.

Answer : It uses the same user name and two separate passwords for the primary and secondary nodes.

An administrator wants to configure an IP address that will be used by the Access Gateway appliance as a source IP address to connect to internal servers on the corporate network. Which IP type must be configured by the administrator?


Options are :

  • NetScaler IP
  • Global Server Load Balancing site IP
  • Virtual IP
  • Mapped IP

Answer : Mapped IP

Which interception mode must an administrator use when configuring intranet applications for an environment in which the Java Client will be used?


Options are :

  • Transparent
  • VPN
  • Proxy
  • Reverse

Answer : Proxy

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Test Set 2

Will the client cleanup feature clean any data before the SSL VPN session begins?


Options are :

  • Yes. Client cleanup cleans up data regularly during the SSL VPN session.
  • No. Client cleanup will not clean up any data before the SSL VPN session begins.
  • Yes. Access Gateway 8.0 Enterprise Edition kills existing connections, so all data will be lost
  • No. Client cleanup will not delete any Internet Explorer temporary files.

Answer : No. Client cleanup will not clean up any data before the SSL VPN session begins.

How can an administrator disable the SSL warning message?


Options are :

  • Select SSL VPN global settings > Security Settings Advanced > Client Security, enable SSL warning message
  • Select SSL VPN global settings > Client Experience Advanced > Client Options, deselect SSL warning message
  • Select SSL VPN global settings > Client Experience Advanced > General, deselect SSL warning message
  • The SSL warning message cannot be disabled in the Configuration Utility

Answer : The SSL warning message cannot be disabled in the Configuration Utility

Scenario: An administrator needs to configure an audit policy that will log major errors on the Access Gateway appliance as well as problems that might cause the Access Gateway appliance to function incorrectly, but which are not critical to its operation. Which two options need to be selected in the log level to configure the audit policy to meet these requirements? (Choose two.)


Options are :

  • Alert
  • Emergency
  • Notice
  • Warning

Answer : Alert Warning

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Test Set 3

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions