26
1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam Preparation Guide 2.0 October 22, 2018 Contributors & Marks Preparation Exam Overview 1

1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

  • Upload
    others

  • View
    25

  • Download
    0

Embed Size (px)

Citation preview

Page 1: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

1Y0-340

1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization

Exam Preparation Guide 2.0

October 22, 2018

Co

ntr

ibu

tors

& M

arks

Pre

par

atio

nEx

am O

verv

iew

1

Page 2: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Disclaimer

This exam preparation guide is designed to provide candidates with necessary information about the 1Y0-340 exam, including study resources and ways to interpret the exam objectives to better enable candidates to assess the types of questions that may be asked during the exam. Please be aware that the content of this guide in no way ensures a passing score on the certification exam.

2

Co

ntr

ibu

tors

& M

arks

Pre

par

atio

nEx

am O

verv

iew

Page 3: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Table of Contents

Exam OverviewNumber of Items 4Passing Score 4Time Limit 4Intended Audience 4Registration and Administration 4Retake Policies 5

Preparing for the ExamRecommended Knowledge and Skills 6Recommended Product Experience 6Recommended Training 7Unauthorized Preparation Materials 7Section Titles and Weights 8Interpretation of Objectives 9Sections, Objectives and References 10Appendix: Practice 22

Contributors & MarksPrep Guide Author 25Subject Matter Experts (SMEs) 25Notice 26Marks 26

3

Co

ntr

ibu

tors

& M

arks

Pre

par

atio

nEx

am O

verv

iew

Page 4: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Exam OverviewNumber of Items

The 1Y0-340 exam is a 62-question exam written in English. Some of the itemson this exam will not be scored and thus will not affect your final result in anyway. The unscored items are included in this exam solely for research purposes.

Passing Score

The passing score for this exam is 62%.

Time Limit

Intended Audience

The 1Y0-340 exam was developed for candidates who have demonstrated the minimum requisite knowledge and skills required for a Citrix networking professional who can deploy and/or manage Citrix Web App Firewall to secure application access in a Citrix ADC 12 environment, as well as Citrix Application Delivery Management to administer a Citrix ADC environment or optimize Citrix ADC-managed application delivery traffic.

The tasks tested in this exam will represent those skills, which are deemed as advanced topics such as Security, Management, and Optimization

Primary Audience:• Network Administrators• Network Engineers• Network Architects• Citrix Administrators• Systems Engineers /Systems Administrators

Registration and Administration

This exam is administered at Pearson VUE testing centers worldwide. To learn more about the rules and process of taking an exam, please visit http://training.citrix.com/exams.

Worldwide, visit the Pearson VUE website (http://www.pearsonvue.com/citrix) to locate a testing center in your area and register for an exam. You may also register in person at any Pearson VUE testing center. If you reside in the United States or Canada, you may also register by calling 1-800-931-4084.

Note: A $7 USD surcharge will be added to phone registrations. 4

Type of Candidate Time Limits* Notes

Native English speakers 90 minutes

Non-native English speakers that take the exam in countries where English is a foreign language

90 minutes

+30 minutes (time extension)

Time extension granted automatically

Non-native English speakers that take the exam in countries where English is NOT a foreign language

90 minutes

+30 minutes(time extension)

Must request time extension from Citrix. Submit your request here: Time Extension Request

Exam

Ove

rvie

wC

on

trib

uto

rs &

Mar

ksP

rep

arat

ion

The time limit for this exam is 90 minutes. The total seat time is 90 + 35 minutes.

The total seat time includes times allotted for the NDA and surveys.

Page 5: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

5

Co

ntr

ibu

tors

& M

arks

Pre

par

atio

nEx

am O

verv

iew

Exam

Ove

rvie

w

Retake Policy

Candidates must wait 24 hours from their original appointment time before they can register to retake an exam. After a second attempt, and any attempt thereafter, the candidate must wait 14 calendar days to retake the exam.

Breach of this policy can result in sanctions up to and including a ban from taking Citrix exams and/or decertification.

For more information about our policies, including the Citrix Exam Retake Policy and the Candidate Conduct Policy, please visit http://training.citrix.com/exams

Page 6: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Prepping for the Exam

Recommended Knowledge and Skills

Candidates should have knowledge of the following prior to taking this exam:

o Identify common web attacks and vulnerabilities.o Understand how to utilize the adaptive learning engine.o Configure Citrix Web App Firewall to protect web applications.o Utilize Citrix ADC Secure Insight to monitor, manage and report on application

services security.o Troubleshoot Citrix Web App Firewall.o Manage multiple Citrix ADC platforms centrally.o Orchestrate configuration changes.o Report on transactions passing through the Citrix ADC environment.o Visualize infrastructure and plan expansion.

6

Co

ntr

ibu

tors

& M

arks

Pre

par

atio

nEx

am O

verv

iew

Pre

par

atio

n

Recommended Product Experience

We recommend that candidates have at least six months of experience with the following topics in a Citrix ADC 12 solution:

o Citrix Web App Firewall Overviewo Citrix Web App Firewall Profiles and Policieso Regular Expressiono Attacks and Protectionso Monitoring and Troubleshootingo Security and Filteringo Citrix Application Delivery Management: Introduction and Configurationo Managing and Monitoring Citrix ADC Instanceso Managing Citrix ADC Configurationso Citrix ADC Web Loggingo Integrated Cachingo Front-End Optimizationo Tuning and Optimizations

Page 7: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Recommended Training

Citrix Education recommends that candidates have hands-on experience with Citrix NetScaler 11 and above, prior to taking this exam. One of the best ways to do this is by taking a formal Citrix training course. The following course provides training on Citrix ADC 12 Essentials and Citrix ADC Traffic Management solutions.

• CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization

As with all Citrix exams, it is recommended that candidates get hands-on experience by working directly with products covered on the exam.

7

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Unauthorized Preparation Materials

Citrix Education monitors exam results to ensure that candidates are not using unauthorized materials to prepare for exams. If it is determined that a candidate used unauthorized materials to prepare for an exam, the candidate’s score will be invalidated and his or her certification will be revoked.

When looking for materials in addition to authorized Citrix training to prepare for certification, Citrix Education recommends that you visit http://www.certguard.com to ensure that a site is indeed legitimate. This site flags websites that are acting as brain dumps, which have unauthorized materials.

Page 8: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Section Titles and Weights

8

Section Weight

Section 1: Citrix Web App Firewall Overview8%

Section 2: Citrix Web App Firewall Profiles and Policies6%

Section 3: Regular Expression5%

Section 4: Attacks and Protections21%

Section 5: Monitoring and Troubleshooting8%

Section 6: Security and Filtering6%

Section 7: Citrix Application Delivery Management: Introduction and Configuration 8%

Section 8: Managing and Monitoring Citrix ADC Instances11%

Section 9: Managing Citrix ADC Configurations5%

Section 10: Citrix ADC Web Logging3%

Section 11: Integrated Caching6%

Section 12: Front-End Optimization5%

Section 13: Tuning and Optimizations6%

TOTAL 100%

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

The section weights included in this guide are intended to help you in understanding how much of the exam is devoted to the topics listed. In fact, the percentages directly map to the number of questions on the exam. For example, if an exam has 60 questions, and Section 1 is weighted at 50%, then 30 of the questions on the exam will relate to Section 1 (60*50% = 30).

Please be warned that section weights are NOT used to calculate your score. Scoring is far more complicated as exam questions may be given different weights based on their overall importance. Because some questions may have different point values assigned to them, section weights and exam scores do not always have a one-to-one correlation.

For more information on how scoring works in Citrix exams read the blog The Scoring Secrets for Citrix Exams - Divulged.

Page 9: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Interpretation of Objectives

Candidates should refer to the objectives and examples listed in this guide in order to determine which topics will be on the exam, as well as examples of the topics that could be tested.

For example, if the objective reads “Configure monitors” and one of the examples reads, “determine when to use which type of monitor,” exam-takers could expect to see:

• A question that requires determining which type of monitor to configure…o Which type of monitor should a Citrix Administrator configure…

• …based on given requirement(s)o …to validate that a specific text string is returned in a web server

response?

Note: The examples listed in the “Sections, Objectives, Examples and References” section of this guide do NOT encompass all potential topics that could be tested. The examples are only provided as guidance.

The objectives and examples for this exam were developed by Exam Project Managers and Subject Matter Experts (SMEs) based on identified tasks that related to Citrix ADC12 in enterprise environments.

The number of questions written for each objective relates directly to the importance of that objective and is proportional to how frequently that task is performed.

9

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Page 10: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Objective Number

Objective References

Section 1: Citrix Web App Firewall Overview

1.01 Identify common web application attacks.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1, 4)

http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections.html

http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections/buffer-over-flow-check.html

1.02 Determine the Functionality of Citrix Web App Firewall, given a scenario.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)

http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections/buffer-over-flow-check.html

http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections/html-sql-injection-check.html

http://docs.citrix.com/en-us/netscaler/12/application-firewall/top-level-protections/cookie-consistency-check.html

http://docs.citrix.com/en-us/netscaler/12/application-firewall/dataleak-prevention/creditcard-check.html

http://docs.citrix.com/en-us/netscaler/12/application-firewall/DeploymentGuide.html

1.03 Understand the audit for PCI-DSS compliance.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1)

http://docs.citrix.com/en-us/netscaler/12/application-firewall/stats-and-reports.html

https://www.citrix.com/products/netscaler-appfirewall/platforms.html

Sections, Objectives and References• Citrix Product Documentation: http://docs.citrix.com• Citrix Support: http://www.citrix.com/support• Citrix Blogs: http://blogs.citrix.com/

10

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Page 11: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Objective Number

Objective References

11

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

2.02 Determine how to configure Citrix Web App Firewall Policies.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-2)

http://docs.citrix.com/en-us/netscaler/12/appexpert/policies-and-expressions/ns-pi-tut-exmp-classic-pol-wrapper-con.html

http://docs.citrix.com/en-us/netscaler/12/application-firewall/policies/firewall-policies/configuring_policies.html

http://docs.citrix.com/en-us/netscaler/12/application-firewall/policies/firewall-policies/binding_policies.html

http://docs.citrix.com/en-us/netscaler/12/appexpert/policies-and-expressions/ns-pi-tut-exmp-classic-pol-wrapper-con.html

2.03 Determine how to analyze application firewall settings.CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-2)

Section 3: Regular Expression

3.01

Identify PCRE metacharacters.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-3)

3.02Determine how to apply regular expressions for Citrix ADC.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-3)

Section 2: Citrix Web App Firewall Profiles and Policies

2.01Determine how to create (or implement) Citrix Web App Firewall profiles.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-2)

https://www.citrix.com/blogs/2011/11/23/netscaler-application-firewall-profiles-basic-vs-advanced-check-it-out/

https://support.citrix.com/article/CTX130546

Page 12: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

12

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Section 4: Attacks and Protections

4.01Determine how to configure security checks to meet given requirements.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)

4.02 Identify various attacks and protections.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)

https://support.citrix.com/article/CTX131488

https://docs.citrix.com/en-us/netscaler/11-1/application-firewall/form-protections/form-field-consistency-check.html

http://docs.citrix.com/en-us/netscaler/11-1/application-firewall/form-protections/cross-site-request-forgery-check.html

4.03Determine how to configure the generation of simple and generalized rules based on given requirements.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)

https://docs.citrix.com/en-us/netscaler/12-1/ns-gen-appsec-wrapper-10-con/appfw-wrapper-con-10/appfw-profiles-con/appfw-profiles-learning-tsk.html

4.04 Determine learned rules per security check.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)

https://support.citrix.com/article/CTX138858

https://support.citrix.com/article/CTX219267

4.05 Determine how to deploy, skip and edit learned rules.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)

https://docs.citrix.com/en-us/netscaler/10-1/ns-gen-appsec-wrapper-10-con/appfw-wrapper-con-10/appfw-profiles-con/appfw-profiles-learning-tsk.html

Objective Number

Objective References

Page 13: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Objective Number

Objective References

13

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Section 5: Monitoring and Troubleshooting

5.01 Determine how Citrix Web App Firewall interacts with applications in a given environment.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization(Module-5)

https://support.citrix.com/article/CTX131488

5.02 Determine how to Implement logging and monitoring.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization(Module-5)

https://docs.citrix.com/en-us/netscaler/11-1/application-firewall/logs.html

http://docs.citrix.com/en-us/netscaler-mas/11-1/security-insight.html

http://docs.citrix.com/en-us/netscaler-mas/11-1/security-insight.html#par_richtext_841a

5.03 Identify troubleshooting methods for Citrix Web App Firewall.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization(Module-5)

http://docs.citrix.com/en-us/netscaler/12/application-firewall.html

http://docs.citrix.com/en-us/netscaler/12/application-firewall/debugging-troubleshooting/miscellaneous.html

Page 14: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

14

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Section 6: Security and Filtering

6.01 Determine how to implement IP reputation.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)

http://docs.citrix.com/zh-cn/netscaler/12/reputation/ip-reputation.html

http://docs.citrix.com/zh-cn/netscaler/12/reputation.html

6.02 Determine how to implement IP rate-limiting.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)

http://docs.citrix.com/en-us/netscaler/12/appexpert/rate-limiting.html

http://docs.citrix.com/en-us/netscaler/12/appexpert/rate-limiting/rate-limiting-for-traffic-domains.html

http://docs.citrix.com/en-us/netscaler/12/appexpert/action-analytics/configuring-selector.html

http://docs.citrix.com/en-us/netscaler/12/appexpert/rate-limiting/rate-based-policies-examples.html

6.03 Determine how to Implement AppQoE.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)

http://docs.citrix.com/en-us/netscaler/12/appexpert/appqoe/appqoe-actions.html

6.04 Determine how to implement HTTP Callout.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)

http://docs.citrix.com/en-us/netscaler/12/appexpert/http-callout/configuring-http-callouts.html

http://docs.citrix.com/en-us/netscaler/12/appexpert/http-callout/caching-http-callout-responses.html

Objective Number

Objective References

Page 15: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Objective Number

Objective References

Section 7: Citrix Application Delivery Management: Introduction and Configuration

7.01Determine how to perform the initial configuration of Citrix Application Delivery Management.

http://docs.citrix.com/en-us/netscaler-mas/12.html

https://docs.citrix.com/en-us/netscaler-mas/12/setting-up-netscaler-mas/configure-system-settings-for-optimal-netscaler-mas-performance.html

7.02Determine how to deploy Citrix Application Delivery Management based on a given scenario.

http://docs.citrix.com/en-us/netscaler-mas/12/deploy-netscaler-mas.html

http://docs.citrix.com/en-us/netscaler-mas/12/deploy-netscaler-mas/ha-deployment.html

https://docs.citrix.com/en-us/netscaler-mas/12/setting-up-netscaler-mas/configure-system-settings-for-optimal-netscaler-mas-performance.html

7.03Determine how to create additional instances of Citrix Application Delivery Management.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)

http://docs.citrix.com/en-us/netscaler-mas/12/deploy-netscaler-mas/how-to-migrate-netscaler-mas-single-server-to-ha.html

15

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Page 16: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Objective Number

Objective References

16

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Section 8: Managing and Monitoring Citrix ADC Instances

8.01Determine how to manage multiple instances in a single Citrix ApplicationDelivery Management deployment with Inventory Management.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1 and 2)

http://docs.citrix.com/en-us/netscaler-mas/12/instance-management/how-to-backup-and-restore-using-mas.html

http://docs.citrix.com/en-us/netscaler-mas/12/setting-up-netscaler-mas/adding-an-instance.html

8.02Determine how to manage and monitor the aspects of Authentication, Authorization, and Logging with User Management.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1 and 2)

http://docs.citrix.com/en-us/netscaler-mas/12/authentication-how-to-articles/how-to-extract-authentication-server-group-in-mas.html

http://docs.citrix.com/en-us/netscaler-mas/12/authentication-how-to-articles/how-to-enable-fallback-local-authentication.html

http://docs.citrix.com/en-us/netscaler-mas/12/authentication-and-rbac/role-based-access-control.html

http://docs.citrix.com/en-us/netscaler-mas/12/stylebooks.html

http://docs.citrix.com/en-us/netscaler-mas/12/authentication-and-rbac/role-based-access-control/rbac-configuring-access-policies.html

http://docs.citrix.com/en-us/netscaler-mas/12/analytics/HDX-Insight.html

http://docs.citrix.com/en-us/netscaler/12/aaa-tm/multi-factor-nfactor-authentication.html

https://support.citrix.com/article/CTX200342

http://docs.citrix.com/en-us/netscaler-mas/12/multi-tenancy-in-netscaler-mas.html

http://docs.citrix.com/en-us/netscaler-mas/12/authentication-and-rbac/role-based-access-control.html

Page 17: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

17

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Section 9: Managing Citrix ADC Configurations

9.01 Determine how to create, manage, and configure StyleBooks.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-3)

http://docs.citrix.com/en-us/netscaler-mas/12/stylebooks/how-to-create-your-own-stylebooks.html

http://docs.citrix.com/en-us/netscaler-mas/12/stylebooks.html

Objective Number

Objective References

8.03Identify what data is captured and utilized with Analytics and Automation.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1, 2 and Lab Guide)

http://docs.citrix.com/en-us/netscaler-mas/12/application-analytics-and-management.html

http://docs.citrix.com/en-us/netscaler-mas/12/analytics/mas-gateway-insight.html

http://docs.citrix.com/en-us/netscaler-mas/12/analytics/HDX-Insight.html

http://docs.citrix.com/en-us/netscaler-mas/12/analytics/ssl-insight.html

http://docs.citrix.com/en-us/netscaler-mas/12/configuration-management/configuration-jobs-record-and-play.html

https://docs.citrix.com/en-us/netscaler-mas/12/application-analytics-and-management/application-security-analytics.html

8.04Determine how to configure and install SSL Certificates on Citrix Application Delivery Management.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1 and 2)

http://docs.citrix.com/en-us/netscaler-mas/12/certificate-management.html

Page 18: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

18

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Section 10: Citrix ADC Web Logging

10.01 Determine how to install and configure Citrix ADC Web Logging.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)

http://docs.citrix.com/en-us/netscaler/12/system/web-server-logging.html

http://docs.citrix.com/en-us/netscaler/11/system/web-server-logging/configuring-nswl-client.html

10.02 Determine how to troubleshoot issues using Citrix ADC Web Logging.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-4)

http://docs.citrix.com/en-us/netscaler/12/system/web-server-logging/configuring-nswl-client.html

http://docs.citrix.com/en-us/netscaler/12/system/web-server-logging/installing-netscaler-web-logging-client.html

9.02Determine how to utilize Citrix Application Delivery Management recommendations to assist in resource delivery.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-1)

http://docs.citrix.com/en-us/netscaler-mas/12/application-analytics-and-management.html

http://docs.citrix.com/en-us/netscaler-mas/12/authentication-how-to-articles/how-to-cascade-external-authentication-servers.html

http://docs.citrix.com/en-us/netscaler-mas/12/setting-up-netscaler-mas/add-netscaler-vpx-instances-deployed-in-cloud-to-netscaler-mas.html

http://docs.citrix.com/en-us/netscaler-mas/12/netscaler-mas-licensing.html

http://docs.citrix.com/en-us/netscaler-mas/12/system-requirements.html#par_anchortitle_6496

Objective Number

Objective References

Page 19: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

19

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

11.01 Determine when to use static or dynamic content requests.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-5)

http://docs.citrix.com/en-us/netscaler/12/optimization/integrated-caching/how-integrated-caching-works.html

http://docs.citrix.com/en-us/netscaler/12/optimization/integrated-caching/configuring-selectors-basic-content-groups/about-content-groups.html

11.02 Determine how to configure cache policies.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-5)

https://support.citrix.com/article/CTX124553

http://docs.citrix.com/en-us/netscaler/12/optimization/integrated-caching/configuring-policies-caching-invalidation.html

11.03 Determine which content group settings to configure based on a given scenario.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-3 and 5)

http://docs.citrix.com/en-us/netscaler/12/optimization/integrated-caching/improving-cache-performance.html

https://developer-docs.citrix.com/projects/netscaler-command-reference/en/12.0/cache/cache-object/cache-object/#show-cache-object

Objective Number

Objective References

Section 11: Integrated Caching

Page 20: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

20

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

12.01 Determine how content is currently handled by browsers based on a given environment.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)

http://docs.citrix.com/en-us/netscaler/12/optimization/front-end-optimization.html

12.02 Determine how to utilize front-end optimizations based on a given scenario.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-6)

http://docs.citrix.com/ja-jp/netscaler/12/optimization/front-end-optimization.html

http://docs.citrix.com/ko-kr/netscaler/12/optimization/front-end-optimization/front-end-optimization-samples.html

Objective Number

Objective References

Section 12: Front-End Optimization

Page 21: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

13.03 Determine how to Tune HTTP and TCP behaviors in Connection Profiles.

http://docs.citrix.com/en-us/netscaler/12/system/tcp-configurations.html

http://docs.citrix.com/en-us/netscaler/12/system/TCP_Congestion_Control_and_Optimization_General.html

13.04Determine how to utilize HTTP DoS protection deployment guidelines to meet the needs of a given environment.

http://docs.citrix.com/en-us/netscaler/12/security/http-denial-of-service-protection/ns-syn-dos-protection-con.html

http://docs.citrix.com/en-us/netscaler/12/security/http-denial-of-service-protection/ns-httpdosp-tune-clnt-dtct-js-chlng-res-rate-con.html

http://docs.citrix.com/en-us/netscaler/12/security/http-denial-of-service-protection/ns-httpdosp-tune-clnt-dtct-js-chlng-res-rate-con.html

Section 13: Tuning and Optimizations

13.01Determine how the Citrix ADC system uses HTTP connections based on a given description.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-7)

http://docs.citrix.com/en-us/netscaler/12/system/http-configurations/configuring-http2.html

13.02 Determine how to configure Surge Protection and Priority Queuing.

CNS-320 Citrix ADC Advanced Topics – Security, Management, and Optimization (Module-7)

http://docs.citrix.com/en-us/netscaler/12/security/surge-protection.html

http://docs.citrix.com/en-us/netscaler/12/security/priority-queuing.html

http://docs.citrix.com/en-us/netscaler/12/security/surge-protection/ns-sp-set-thresholdssp-tsk.html

Objective Number

Objective References

21

Page 22: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Appendix: Practice

Introduction

Exam-takers should refer to the objectives listed in the “Sections, Objectives, Examples and References” section of this guide in order to determine which topics will be on the exam and examples of topics for each objective.

For example, if the objective reads, "Troubleshoot high availability" and one of the examples reads, “determine how to resolve a given issue”, exam-takers could expect to see:

A scenario describing an issue with high availability -Scenario: A Citrix Administrator is attempting to configure high availability for a Citrix ADC MPX pair. Each Citrix ADC appliance resides in a different subnet. The administrator noticed that network connectivity between the appliances was lost once the high availability pair was established.

A question that requires determining how to resolve the given issue -What must the administrator enable to correct this issue?

The objectives for this exam were developed by Exam Project Managers and Subject matter experts based on identified tasks that relate to installing, configuring and/or operating Citrix ADC 12 in enterprise environments.

22

Sample Question 1

A Citrix Engineer needs to create an Citrix Web App Firewall Profile.

Which statement is applicable when using Signatures for creating an Citrix Web App Firewall Profile?

A. No Signatures are bound to the profile.B. No Custom Signatures can be used.C. Only external format Signatures can be used.D. The Default Signatures are bound to the profile.

Correct Answer: A

Objective: Determine how to analyze application firewall settings.

Source: CNS-320 Course, Module-4

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Page 23: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Appendix: Practice

Sample Question 2

A Citrix Engineer has enabled transform action in SQL injection check.

What would the following parameter be transformed into?

Citrix; OR '1' ='1

A. Citrix\ OR "1"="1B. Citrix OR "1"="1C. Citrix OR "1"=/1D. Citrix/ OR "1"="1

Correct Answer: B

Objective: Determine how to configure the generation of simple and generalized rules based on given requirements.

Source: CNS-320 Course, Module-4

23

Sample Question 3

Which option matches the following regular expression?

r.n 10\.10\.0\..

A. run 10.100.10.99B. run 10.10.0.9C. RUN 10.10.0.9D. r.n 10.10.10.99

Correct Answer: B

Objective: Determine how to apply regular expressions for Citrix ADC.

Source: CNS-320 Course, Module-4

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Page 24: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Appendix: Practice

Sample Question 4

Which logging does an engineer need to enable as a pre-requisite to geolocation-based logging?

A. CEF (Common Even Format)B. SyslogC. AuditD. AppFlow

Correct Answer: A

Objective: Determine how to implement traffic compression in a Citrix ADC environment

Source:

CNS-320 Course, Module-5

Citrix Docshttps://docs.citrix.com/en-us/netscaler/11-1/application-firewall/logs.html

24

Co

ntr

ibu

tors

& M

arks

Exam

Ove

rvie

wP

rep

arat

ion

Page 25: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Contributors & Marks

Author

Premkumar Mekara

25

Co

ntr

ibu

tors

&

Mar

ksP

rep

arat

ion

Exam

Ove

rvie

w

Subject Matter Experts

Akhilesh Kumar Pandey

Aman Sharma

Anton Mayers

Arnd Kagelmacher

Dave Gunn

Ian Gutierrez

Jessica Biesel

Jesse Wilson

Jo Harder

Jorge Luis

Justin Weldon

Khalaf Haddad

Lemay Marquinez

Liz Jimenez

Marcelo Oguma de Souza

Markus Heinrich

Matthew R Jones

Parveen Kumar

Paul Blitz

Puneet Seth

Rashmi Kolipura Nagaraj

Ravindra G Hunashimarad

Shruti V Dhamale

Rick Bloss

Sam Jacobs

Tim O’Brien

Tony Zhang

Victor Fuenmayor

Co

ntr

ibu

tors

& M

arks

Page 26: 1Y0-340 Citrix ADC Advanced Topics: Security, Management ... Prep Guides/340/1Y0-340_… · 1Y0-340 1Y0-340 Citrix ADC Advanced Topics: Security, Management, and Optimization Exam

Notice

Citrix® Systems, Inc. (Citrix) makes no representations or warranties with respect to the content or use of this publication. Citrix specifically disclaims any expressed or implied warranties, merchantability, or fitness for any particular purpose. Citrix reserves the right to make any changes in specifications and other information contained in this publication without prior notice and without obligation to notify any person or entity of such revisions or changes.

© Copyright 2017 Citrix Systems, Inc.

All Rights Reserved. No part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or information storage and retrieval systems, for any purpose other than the purchaser’s personal use, without express written permission of:

Citrix Systems, Inc. 851 W. Cypress Creek Road Ft. Lauderdale, FL 33309 http://www.citrix.com

26

Co

ntr

ibu

tors

&

Mar

ksP

rep

arat

ion

Exam

Ove

rvie

wC

on

trib

uto

rs &

Mar

ks

Marks

The following marks are service marks, trademarks, or registered trademarks of their respective owners in the United States or other countries:

Mark Owner

Citrix®, Citrix ADC®, HDX Insight™, Citrix Application Delivery Management™, Citrix ADC MPX™, Citrix ADC SDX™, Citrix ADC VPX™, TriScale Clustering™

Citrix Systems, Inc.

Active Directory®, Microsoft®, SQL Server®, SQL Express™, Windows®, Windows Server®, Windows Server 2008™, Windows Server 2008 R2™, Windows Server 2012™, Windows Server 2012 R2™, Windows 7™, Windows 8™, Windows 10™

Microsoft Corporation