1Y0-440 Exam Dumps : Architecting a Citrix Networking Solution

Scenario: A Citrix Architect has met with a team of Workspacelab members for a design discussion. They have captured the following requirements for the Citrix ADC design project:

• Multi-factor authentication must be configured for the Citrix Gateway virtual server.
• The Citrix Gateway virtual server is integrated with the Citrix Virtual Apps and Desktops environment.
• Load balancing must be configured for the StoreFront server.
• Authentication must be deployed for the users from the workspacelab.com and vendorlab.com domains.
• The logon page must have the workspacelab logo on it.
• Certificate verification must be performed to identify and extract the username.
• The client certificate must have UserPrincipalName as a subject.
• All the managed workstations for the workspacelab users must have the client identification certificate installed on them.
• The workspacelab users connecting from the internal network should be authenticated using LDAP.
• The workspacelab users connecting from the external network should be authenticated using LDAP and RADIUS.
• The vendorlab users should be authenticated using Active Directory Federation Service.
• The user credentials must NOT be shared between workspacelab and vendorlab.
• Single Sign-on must be performed between StoreFront and Citrix Gateway.
• A domain drop down list must be provided if the user connects to the Citrix Gateway virtual server externally.
• The domain of the user connecting externally must be identified using the domain selected from the domain drop down list.

Which authentication policy must the architect execute first to meet the design requirements?

Which IP address should be bound to VLAN 11?

Scenario: Based on a discussion between a Citrix Architect and team of Workspacelab has been created across three (3) sites.

They captured the following requirements during the design discussion held for NetScaler design projects:

• All three (3) Workspacelab sites (DC, NDR, and DR) will have similar NetScaler configuration and design.
• Both external and internal NetScaler MPX appliances will have Global Server Load balancing (GSLB) configured and deployed in Active/Passive mode.
• GSLB should resolve both A and AAA DNS queries.
• In the GSLB deployment, the NDR site will act as backup for the DC site. whereas the DR site will act as backup for the NDR site.
• When the external NetScaler replies to DNS traffic coming in through Cisco Firepower IPS, the replies should be sent back through the same path.
• On the internal NetScaler, both front-end VIP and back-end SNIP will be part of the same subnet.
• USIP is configured on the DMZ NetScaler appliances.
• The external NetScaler will act default gateway for back-end servers.
• All three (3) sites (DC, NDR, and DR) will have two (2) links to the Internet from different service providers configured in Active/Standby mode.

Which design decision must the architect make to meet the design requirements above?