1Y0-309 Citrix Access Gateway 8.0 Enterprise Edition Set 2

An administrator just configured a client security check using this expression: CLIENT.OS(Windows XP Pro).SP == 2 -frequency 2 What does the "2 -frequency 2" portion of this expression indicate?


Options are :

  • To check for Service Pack 2 and run every 2 minutes
  • To check for two hotfixes and run every 2 minutes
  • To check for two hotfixes and run every 2 hours
  • To check for Service Pack 2 and run every 2 hours

Answer : To check for Service Pack 2 and run every 2 minutes

In which three areas can an administrator enable single sign-on for VPN users? (Choose three.)


Options are :

  • In each user account
  • In the SSL VPN global settings
  • Inside a traffic profile
  • Inside a session profile

Answer : In the SSL VPN global settings Inside a traffic profile Inside a session profile

An administrator wants to provide access to published applications that are hosted on Presentation Server only, without requiring the use of a VPN client. How can this functionality be implemented?


Options are :

  • Enable Session Reliability on Web Interface
  • Enable the ICA proxy feature
  • Enable SmartAccess with ICA proxy
  • Enable single sign-on

Answer : Enable the ICA proxy feature

1Y0-309 Citrix Access Gateway 8.0 Enterprise Edition Set 3

Which pre-authentication expression must be used if an administrator needs to indicate that Symantec version 7.5 or McAfee version 11 is running and Trend Micro version 8.0 is not running?


Options are :

  • (av_5_Symantec_7_5 || av_5_McAfeevirusscan_11) && CLIENT.APPLICATION.AV(Trend Micro).VERSION != 8.0
  • (av_5_Symantec_7_5 && av_5_McAfeevirusscan_11) || CLIENT.APPLICATION.AV(Trend Micro).VERSION != 8.0
  • av_5_Symantec_7_5 || av_5_McAfeevirusscan_11 && CLIENT.APPLICATION.AV(Trend Micro).VERSION != 8.0
  • av_5_Symantec_7_5 && av_5_McAfeevirusscan_11 || CLIENT.APPLICATION.AV(Trend Micro).VERSION != 8.0

Answer : (av_5_Symantec_7_5 || av_5_McAfeevirusscan_11) && CLIENT.APPLICATION.AV(Trend Micro).VERSION != 8.0

An administrator has just configured an intranet application in an Access Gateway 8.0 Enterprise Edition deployment. What must the administrator do to make it work?


Options are :

  • Bind it to a virtual server.
  • Bind it to a policy
  • Apply it to a profile.
  • Apply it to a farm.

Answer : Bind it to a virtual server.

Scenario: An administrator wants to ensure that whenever VPN users try to access corporate network resources and servers by name, the name of those resources and servers resolve to the IP addresses in the corporate network. What are two ways the administrator can configure settings to meet the needs of this environment? (Choose two.)


Options are :

  • Set split tunneling to OFF
  • Configure an intranet IP address and set split tunneling to OFF
  • Set split tunneling to ON and DNS to Remote
  • Configure an intranet application and set split tunneling to OFF

Answer : Set split tunneling to OFF Set split tunneling to ON and DNS to Remote

1Y0-200 Managing Citrix XenDesktop 7 Solutions Exam Set 1

What is responsible for performing the client side decompression for HTTP/Web response compression for the Access Gateway 8.0 Enterprise Edition appliance?


Options are :

  • Presentation Server client
  • Web browser
  • Java Client
  • JavaScript

Answer : Web browser

Which policy must be used to set the application timeout?


Options are :

  • Traffic
  • Authentication
  • Authorization
  • Session

Answer : Traffic

An IT organization has an internal portal page. Which Access Gateway 8.0 Enterprise Edition command should be used to load that internal portal page by default after a successful login?


Options are :

  • set vpn param -homepage "/vpns/internalportalpage.html"
  • set vpn param -homepage http://internalportalpage.company.com/
  • set vpn -homepage http://portalpage_internal.company.com/
  • set vpn -homepage "/vpns/internalportalpage.html"

Answer : set vpn param -homepage http://internalportalpage.company.com/

1Y0-200 Managing Citrix XenDesktop 7 Solutions Exam Set 2

The following configuration is set on the Access Gateway 8.0 Enterprise Edition appliance: >global default authorization ALLOW >Authorization policy "FSpol1" "FS.COMMAND == login && FS.USER == ALICE" DENY >Authorization policy "FSpol2" "(FS.COMMAND == put || FS.COMMAND == mkdir) && FS.SERVER == 10.10.2.10" DENY >Authorization policy "FSpol3" "FS.FILESIZE >1024" DENY >add aaa user Alice >add aaa user Bob >add aaa user Joe >bind aaa user Alice -policy FSpol1 >bind aaa user Bob -policy FSpol2 >bind aaa user Bob -policy FSpol3 Which of the following two statements can be accomplished? (Choose two.)


Options are :

  • Bob logged into the VPN successfully, logged into the File System server 10.10.2.10 and created a new directory
  • Alice logged into the VPN successfully and logged into the File System server 10.10.2.11
  • Bob logged into the VPN successfully, logged into File System server 10.10.2.11 and downloaded a file of size 500 Bytes
  • Joe logged into the VPN successfully and logged into the File System server 10.10.2.10

Answer : Bob logged into the VPN successfully, logged into File System server 10.10.2.11 and downloaded a file of size 500 Bytes Joe logged into the VPN successfully and logged into the File System server 10.10.2.10

What is responsible for performing the client side decompression for HTTP/Web response compression for the Access Gateway 8.0 Enterprise Edition appliance?


Options are :

  • Java Client
  • Presentation Server client
  • Web browser
  • JavaScript

Answer : Web browser

1Y0-200 Managing Citrix XenDesktop 7 Solutions Exam Set 3

How can an administrator disable the SSL warning message?


Options are :

  • Select SSL VPN global settings > Security Settings Advanced > Client Security, enable SSL warning message
  • he SSL warning message cannot be disabled in the Configuration Utility
  • Select SSL VPN global settings > Client Experience Advanced > General, deselect SSL warning message
  • Select SSL VPN global settings > Client Experience Advanced > Client Options, deselect SSL warning message

Answer : he SSL warning message cannot be disabled in the Configuration Utility

An IT organization has a client certificate configured. The administrator did not enable the cleanup client certificate option. The administrator decided not to prompt a user with the Windows cleanup dialog box. Will the cleanup client certificate be installed in Internet Explorer after logout?


Options are :

  • No, the SSL client certificate needs manual cleanup.
  • Yes, client cleanup code will do it.
  • Yes, Windows Client cleanup does the cleanup work even though it is not configured.
  • Yes, the user has a chance to click on client cleanup windows to cleanup the client certificate.

Answer : No, the SSL client certificate needs manual cleanup.

An administrator needs to provide users with access to the company's intranet through the VPN, while also providing them with access to printers on their local area network. Which option must the administrator turn on in order to meet this requirement?


Options are :

  • Compression
  • Single Sign-On
  • Split Tunneling
  • Transparent Interception

Answer : Split Tunneling

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Exam Set 1

In a dual-stage DMZ deployment, which protocol and port is used for communication from the Access Gateway in the first DMZ to the Access Gateway in the second DMZ, if the traffic is not secured?


Options are :

  • ICA on port 1494
  • HTTP on port 80
  • SSL on port 443
  • SOCKS on port 1080

Answer : SOCKS on port 1080

Scenario: An administrator needs to configure an audit policy that will log major errors on the Access Gateway appliance as well as problems that might cause the Access Gateway appliance to function incorrectly, but which are not critical to its operation. Which two options need to be selected in the log level to configure the audit policy to meet these requirements? (Choose two.)


Options are :

  • Warning
  • Notice
  • Emergency
  • Alert

Answer : Warning Alert

In company A, an administrator needs to map the users' local network drive 'Z:' to one of the intranet shared servers as soon as the users log in to the VPN successfully. What should the administrator configure to meet this requirement?


Options are :

  • A login script that will map the drives
  • A file system authorization policy that will map the drives
  • An intranet application that will map the drives
  • An authentication policy that will map the drives

Answer : A login script that will map the drives

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Exam Set 2

What must an administrator configure on an Access Gateway 8.0 Enterprise Edition appliance to allow intranet applications to initiate connections successfully back to VPN users?


Options are :

  • Mapped IP
  • Direct IP
  • Subnet IP
  • Intranet IP

Answer : Intranet IP

Under which two conditions does the Secure Access Client commit hara-kiri and download a new version of itself? (Choose two.)


Options are :

  • When it connects to a competitive VPN appliance and does not like it.
  • When it connects to an Access Gateway appliance that has a version that is greater than the client.
  • When it connects to an Access Gateway appliance that has the same version and if the administrator has configured a forced refresh timeout.
  • When it connects to an Access Gateway appliance that has a version that is less than the client.

Answer : When it connects to an Access Gateway appliance that has a version that is greater than the client. When it connects to an Access Gateway appliance that has a version that is less than the client.

An administrator configures a traffic policy with the following expression: REQ.HTTP.URL CONTAINS sapcip06 What will the traffic policy do when in use?


Options are :

  • Block HTTP requests that contain sapcip06 in the URL.
  • Filter the HTTP requests that contain sapcip06 in the URL.
  • Block HTTP traffic that contains sapcip06 in the HTTP response
  • Apply traffic profile attributes to the HTTP requests that contain sapcip06 in the URL.

Answer : Apply traffic profile attributes to the HTTP requests that contain sapcip06 in the URL.

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Exam Set 3

Scenario: An administrator has created a few personal folder files (*.PST) on the system when accessing Outlook over the VPN session. The administrator wants to delete these *.PST files created after logging out of the VPN session. How must the administrator configure client side cleanup to meet the above requirements?


Options are :

  • Configure it to clean up cookies.
  • Configure it to clean up application data.
  • Configure it to clean up the address bar.
  • Configure it to clean up temporary files.

Answer : Configure it to clean up application data.

Scenario: A company recently acquired two other companies. Users from these two companies have been using different forms of Access Gateway authentication. An administrator in the environment of the parent company has been instructed to reconfigure the parent company's Access Gateway infrastructure such that all the users in the environment can have the opportunity to authenticate to the same virtual server using different forms of authentication. If the users from the newly acquired companies are using RADIUS and TACACS authentications, which Access Gateway 8.0 Enterprise Edition authentication would allow these users to authenticate to the RADIUS server first, and if the server does not respond, then to the TACACS server?


Options are :

  • Cascading
  • Inherited
  • Local
  • Double-source

Answer : Cascading

How can users change the portal page setting?


Options are :

  • Click the "Properties" tab and change the settings.
  • Click the Portal tab and change the settings.
  • Click somewhere on the portal page and set the portal page to the Access Gateway 8.0 Enterprise Edition default page or the company's intranet portal page.
  • Users can customize the portal page with the permission of the administrator.

Answer : Users can customize the portal page with the permission of the administrator.

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Exam Set 4

The Policy Precedence Model for Access Gateway 8.0 Enterprise Edition is the priority level in which multiple ________________ are evaluated and enforced. (Complete the sentence with the correct phrase.)


Options are :

  • profiles of different types
  • policies of the same type
  • policies of different types
  • profiles of the same type

Answer : policies of the same type

In which two instances must an Access Gateway 8.0 Enterprise Edition policy name match the name of a filter that is bound to another policy? (Choose two.)


Options are :

  • When Access Gateway 8.0 Enterprise Edition is being configured for single sign-on integration with Web Interface server
  • When the other policy is being applied to a Presentation Server hosted application that is being accessed through the Access Gateway appliance
  • When the other policy is being applied to a Web Interface server that is performing authentication on behalf of the Access Gateway appliance
  • When Access Gateway 8.0 Enterprise Edition is being configured for SmartAccess integration with Presentation Server

Answer : When the other policy is being applied to a Presentation Server hosted application that is being accessed through the Access Gateway appliance When Access Gateway 8.0 Enterprise Edition is being configured for SmartAccess integration with Presentation Server

At which level can an administrator configure a single intranet IP address?


Options are :

  • Global
  • Group
  • User
  • Virtual server

Answer : User

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Test Set 1

Which two policies constitute SmartAccess functionality on Access Gateway 8.0 Enterprise Edition? (Choose two.)


Options are :

  • Traffic
  • Authorization
  • Session
  • Pre-Authentication

Answer : Session Pre-Authentication

CompanyA runs maintenance on ServerA every Friday between 9:00PM-11:00PM. The Network Administrator would like to deny VPN access to ServerA during this period only. Could Access Gateway 8.0 Enterprise Edition be configured to meet this requirement?


Options are :

  • Access Gateway 8.0 Enterprise Edition can be configured using Authorization policy based on ServerA's IP address.
  • Access Gateway 8.0 Enterprise Edition can be configured using Authorization policies based on date and time.
  • Access Gateway 8.0 Enterprise Edition can be configured using an Authentication policy based on date and time
  • Access Gateway 8.0 Enterprise Edition does not support this scenario.

Answer : Access Gateway 8.0 Enterprise Edition can be configured using Authorization policies based on date and time.

An administrator plans to deploy Access Gateway 8.0 Enterprise Edition and would like to display different portal pages to different groups and users. How can the administrator configure this functionality?


Options are :

  • Configure groups and users information on the company's LDAP server and allow Access Gateway 8.0 Enterprise Edition to group information from the LDAP servers.
  • Configure all users and groups on the Access Gateway appliance and give them administrative privileges.
  • Configure all users and groups locally on the Access Gateway appliance.
  • Create different session policies for each group or user and specify a unique homepage.

Answer : Create different session policies for each group or user and specify a unique homepage.

1Y0-200 Managing Citrix XenDesktop 7 Solutions Practice Test Set 2

The Policy Precedence Model for Access Gateway 8.0 Enterprise Edition evaluates which type(s) of policy priorities?


Options are :

  • Different types
  • Authentication and authorization types
  • Same type
  • Pre-authentication types only

Answer : Same type

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions