Scenario: A Citrix Architect needs to implement XenDesktop in an environment. The XenDesktop design requires enabling TLS encryption between components to ensure Payment Card Industry (PCI) compliance. A PCI audit determines that TLS must be used for communication with the Virtual Delivery Agent (VDA) machines.
Which three tasks should the architect perform to enable TLS on VDA machines? (Choose three.)
To enable TLS on VDA machines, the Citrix Architect needs to perform three specific tasks. First, running a Citrix-provided PowerShell script on the VDA machine image to enable TLS ensures that the necessary configurations are applied directly to the VDAs. Second, enabling TLS for Delivery Groups on the Delivery Controller affects the communication protocols used between the Delivery Controller and the VDAs, ensuring they align with TLS requirements. Finally, deploying certificates to the VDA machines is critical for establishing the secure communication channels mandated by PCI compliance and TLS. Therefore, the appropriate tasks are running the PowerShell script on the VDA, enabling TLS for Delivery Groups, and deploying certificates to the VDA machines.
A, B, E https://docs.citrix.com/en-us/xenapp-and-xendesktop/7-15-ltsr/secure/tls.html
Apologies. It is A, B, F enable TLS on DDC, enable TLS on VDA. Deploy certificates to VDA
Its A,C,F https://www.carlstalhood.com/virtual-delivery-agent-vda-cr/
only enable TLS on VDA, but not deploy cert. cert only deployed on DDC.
A,C,E https://docs.citrix.com/en-us/xenapp-and-xendesktop/7-15-ltsr/secure/tls.html
do it this way E->A->B https://support.citrix.com/article/CTX220062
A B F E is wrong (you have to do when securing XML with SF)