1Y0-A13無料問題集「Citrix Implementing Citrix Access Gateway 9.0, Enterprise Edition」

質問 1

Scenario: The following policies are configured in an environment in order to provide remote access through Access Gateway 9.0, Enterprise Edition:

（A）An updated Employee.cer validator file must be put on the C drive for next use.
The administrator in the environment needs to use pre-authentication policies and a logon script for this deployment. Which two policies can the administrator implement using pre-authentication end point analysis alone? (Choose two.)

（B）The keylogger.exe process must be killed before a user can log on.

（C）D

（D）B

（E）The Employee.cer validator file must be deleted after successful logon.

（F）C

（G）All the users must have a validator file, Employee.cer, on the C drive NOT older than 7 days before they can attempt to login.

（H）A

正解：B、G 解答を投票する

質問 2

DRAG DROP Scenario: An organization has deployed Access Gateway 9.0, Enterprise Edition, as depicted in the diagram given below. Office and lab workstations are in VLANs 2 and 3 respectively. The uplink router has two virtual interfaces with VLAN 2 and VLAN 3 bound to each of the interfaces. Access Gateway is deployed in the diagram below. Office Desktop and Lab Desktop are in VLANs 2 and 3 respectively. The uplink router has two virtual interfaces, VLAN 2 and VLAN 3 bound to each of them. Configure the member interfaces appropriately in the graphical user interface by dragging and dropping them in the appropriate locations in the screenshot.

正解：

質問 3

An administrator should disable split tunneling when __________. (Choose the correct phrase to complete the sentence.)

（A）Specific IP ranges/applications should NOT traverse the Access Gateway

（B）All DNS requests must use the local domain DNS servers

（C）Only specified IP ranges/applications must traverse the Access Gateway

（D）All traffic must go through the established VPN tunnel

正解：D 解答を投票する

質問 4

Scenario: A system administrator has been asked to change the way users connect to the Access Gateway appliance. All users must now connect through the Access Gateway appliance clientlessly. Currently there are three Access Gateway virtual servers configured. In which two ways can the administrator configure Access Gateway 9.0, Enterprise Edition to meet the needs of the users in this environment? (Choose two.)

（A）Create a new session policy for client experience, set Clientless Access to "On"; bind this policy at the global level

（B）Create a new session policy for client experience, set Clientless Access to "Off"

（C）Enable clientless mode in the global settings

（D）Open each Access Gateway node and uncheck the "agent" box

（E）Create a new traffic policy for client experience, set Clientless Access to "On"; bind this policy to all three virtual servers

正解：A、C 解答を投票する

質問 5

Scenario: A consultant of a new Access Gateway 9.0, Enterprise Edition deployment at a customer site was given the following information and IP addresses to use when configuring the Access Gateway appliance: Internal Citrix XenApp server 5.0 IP address: 192.168.100.12 Time Zone to be used: Eastern Standard Time (EST) IP addresses to be used when configuring the Access Gateway 9.0, Enterprise Edition deployment NSIP: 10.165.30.45 MIP: 10.165.30.60 VIP: 12.15.30.62 Which two options should be configured on the Access Gateway appliance in order to communicate with the Citrix XenApp server? (Choose two.)

（A）Virtual Server in the 192.168.100.x subnet

（B）Subnet IP in the 192.168.100.x subnet

（C）Intranet IP in the 192.168.100.x subnet

（D）Static Route to the 192.168.100.x subnet

正解：B、D 解答を投票する

質問 6

DRAG DROP
Arrange the steps required to configure DNS settings along with monitors for a particular user in the correct order.

正解：

質問 7

Scenario: The following configuration is set on an Access Gateway appliance:
By default access to all the internal resources is allowed
Session profile "SesProf1" has client security check for Symantec Antivirus running and is
configured with quarantine group "Quar"
Session policy "SesPol1" is configured to use "SesProf1"
"SesPol1" is bound to Access Gateway virtual server
Intranet IP addresses in group "Quar" are bound to 10.217.2.1, 10.217.2.2 subnet
An authorization policy in group "Quar" allows access to resource "Res1"
The policy expression for "SesPol1" is ns_true
UserA is running Symantec Antivirus on a laptop and tries to log into the Access Gateway virtual
server.
UserB is NOT running Symantec Antivirus but still tries to log in to the Access Gateway virtual
server.
What will be the expected behavior for each of these users?

（A）UserA and UserB will be able to successfully log into the virtual server and will get assigned intranet IP addresses from the "Quar" group and will only have access to "Res1".

（B）UserB will log in successfully through the virtual server and will have full access to all the internal resources; however, UserA will fail the login.

（C）UserA will log in successfully through the virtual server and will have full access to all the internal resources; however, UserB will fail the login.

（D）UserA will be able to successfully log into the virtual server and will have access to all the internal resources. UserB will also be able to log into the virtual server successfully but will fall into the "Quar" group and will only have access to "Res1".

正解：D 解答を投票する

質問 8

An administrator for Access Gateway 9.0, Enterprise Edition suspects that some users in the environment are misusing the remote access granted to them by accessing and downloading some restricted intranet web resources.What should the administrator check first on the Access Gateway appliance in order to investigate these users' remote access behavior?

（A）Statistic counters

（B）Network traces

（C）Client side debug trace files

（D）Audit logs

正解：D 解答を投票する

質問 9

Scenario: A group of students need access to an online examination for only one hour. The group must be prompted periodically about the logout time during the last three minutes of their one hour session, and the session must time out exactly after one hour. Which setting should the administrator enable when configuring Access Gateway to provide access to these students?

（A）Configure a session profile with a client idle time out warning value of three minutes and client idle time out time of one hour

（B）Kill all the sessions pertaining to the students exactly after one hour

（C）Specify the login and logout time so that the students' connections can time out exactly after one hour

（D）Configure a session profile with a session time out warning value of three minutes and session time out time of one hour

（E）Configure a session profile with a forced time out warning value of three minutes and forced time out time of one hour

正解：E 解答を投票する

質問 10

An administrator has enabled split tunneling for an environment. What must the administrator do to ensure that the plugin on user devices intercepts intranet traffic only and routes other traffic directly to the appropriate servers?

（A）Change the routing table on the client devices to tunnel intranet traffic to the intranet

（B）Define an intranet application

（C）Assign intranet IP addresses to resources that users are accessing through the Access Gateway appliance

（D）Set split tunneling to OFF

正解：B 解答を投票する

1Y0-A13 無料問題集「Citrix Implementing Citrix Access Gateway 9.0, Enterprise Edition」

弊社を連絡する

関連リンク

トップ試験