Citrix 1Y0-A13 問題集

質問 1：
Scenario: A network administrator needs to configure access to published resources in a Citrix XenApp farm through Access Gateway. The administrator will implement Access Gateway as a replacement for the current Secure Gateway deployment, which does NOT have SmartAccess. Which three steps must the administrator take for this scenario? (Choose three.)
A. Set ICA Proxy to ON
B. Set Single Sign-on Domain
C. Set the Access Gateway home page to the Web Interface URL
D. Configure the Secure Ticket Authority server
E. Configure split tunneling
正解：A,B,D

質問 2：
Scenario: A system administrator created a new virtual server, "admin.widget.com", on an Access Gateway appliance. Only system administrators will be connecting to this virtual server. These system administrators require a full SSL VPN tunnel when connecting. Other users connect to another virtual server, "users.widget.com", which runs on the same Access Gateway appliance. Any user connecting through "users.widget.com" currently connects clientlessly. Which action must the administrator take to give the system administrators full VPN access?
A. Create a session policy, set Clientless Access to Off in the profile associated with the policy and apply the policy to users.widget.com
B. Edit the virtual server corresponding to admin.widget.com and enable the Citrix Access Gateway Plugin for ActiveX
C. Create a session policy, select Citrix Access Gateway Plugin for Windows as the "Windows PluginType" in the profile associated with the policy and apply the policy to admin.widget.com
D. Create a session policy, set Clientless Access to Off in the profile associated with the policy and apply the policy to admin.widget.com
正解：C

質問 3：
Scenario: An administrator wants to ensure that users can still access internal Outlook Web Access even if they do not pass a post authentication scan. Users who do not pass a post authentication scan must be given limited access.Which option should the administrator select in the Access Gateway wizard in order to meet the requirements of this scenario?
A. Use Web Interface pass through
B. Allow users to logon using a web browser and clientless access
C. Turn off the Citrix Access Gateway Plugin for Windows
D. Use Access Gateway Plugin only
正解：B

質問 4：
Scenario: CompanyA has two Access Gateway virtual servers to provide employees and partners with remote access to internal resources using LDAP authentication. The security team at CompanyA has mandated that every employee connecting to the corporate network must pass a pre-authentication check that identifies his or her client device as a corporate device. The scans will include Symantec Antivirus version 10 and some registry checks.The administrator in this environment should bind the pre-authentication policy at the __________. (Choose the correct phrase to complete the sentence.)
A. Employee corporate access virtual server level
B. Partner access virtual server level
C. Global level
D. User level
正解：A

質問 5：
When configuring a Web Interface XenApp Services site for SmartAccess, what should the administrator type as the address in the Advanced Access Control Service URL field in the Managed Access Method screen?
A. The fully qualified domain name of the Access Gateway virtual server
B. The IP address of the MIP
C. The IP address of the Access Gateway appliance
D. The fully qualified domain name of the Access Gateway appliance
正解：A

質問 6：
Which policy should a senior administrator configure in order to grant a junior administrator readonly access on an Access Gateway appliance?
A. Traffic
B. Session
C. Authorization
D. Command
正解：D

質問 7：
Scenario: Access Gateway 9.0, Enterprise Edition is deployed in an environment where packet loss is prevalent. The administrator in the environment has been instructed to log all the users' requests to HTTP resources in a reliable manner so that all the audit logs generated will be logged and preserved for a very long period of time.Which logging option will preserve audit logs for a very long period of time?
A. Use a syslog server running on the Access Gateway for logging
B. Use the auditserver running on the Access Gateway for logging
C. Use a syslog server running on a remote system with at least 100 GB of disk space
D. Use the auditserver running on a remote system with at least 10 GB of disk space
正解：D

質問 8：
Scenario: A network administrator is planning the remote access infrastructure for an Access Gateway 9.0, Enterprise Edition environment. In this environment, employees, vendors and customers will need to use different methods of authentication. The administrator would like to ensure that each authentication is hosted on a separate server. Which authentication method must the administrator implement when configuring this environment?
A. Cascading
B. Double-source
C. Client-Based
D. Server-Based
正解：A

質問 9：
Scenario: Dual-source authentication is configured on the Access Gateway 9.0, Enterprise Edition appliance. The appropriate group extraction configuration is configured on both the primary and secondary authentication servers, and a user named "User1" exists on both authentication servers. How will groups be extracted for "User1"?
A. The groups from the primary authentication server will be extracted and matched to the group names configured on the secondary authentication server by the administrator.
B. Only the groups from the primary authentication server will be extracted and matched to the group names configured on the secondary authentication server.
C. Only the groups in the secondary authentication server will be extracted and matched to the group names configured on the primary authentication server.
D. The applicable groups from both the primary and secondary authentication servers will be extracted and matched to the group names configured on the appliance.
正解：D