Exam 1Y0-402 All QuestionsBrowse all questions from this exam
Go to Exam
Question 76

Scenario: A Citrix Architect is designing a new XenApp and XenDesktop Service environment. During discussions about the Access Layer design, the architect gathers the following requirements:

✑ Minimize management overhead where possible.

✑ Multi-factor authentication should be used for all user access to the XenApp and XenDesktop environment.

✑ Users should receive different Citrix policy settings depending on whether their connection is external to the internal network.

Which deployment option should the architect recommend for the design?

    Correct Answer: B

    The deployment option of NetScaler Gateway on-premises with Workspace in Cloud is the best fit. It minimizes management overhead by leveraging cloud services for the Workspace, while using an on-premises NetScaler Gateway allows for multi-factor authentication. Additionally, policies can be tailored based on whether the user's connection is internal or external, which the Gateway accommodates.

Discussion
maurizio_n91Option: B

B is the best answer because you need to minimize management over possible. D is worng because Citrix Gateway service on citrix cloud doesn't support two factor authentication: https://docs.citrix.com/en-us/citrix-gateway-service/faq.html I had enabled Multi-Factor or two factor authentication on-premises using VPX. Can I enable this on cloud too? The VPX provided with XenApp or XenDesktop service must be used for HDX proxy only (based on EULA) and not for authentication. Authentication on cloud is done using on-premises AD via a cloud connector or using Azure Active Directory.

keplerOption: C

D is apparently wrong. On Prem Storefront CANNOT co-exist with Cloud Gateway service

kepler

B is more likely the answer since they require minimal management where possible (cloud SF service is possible here), and separate Citrix policies for internal and external users. Cloud gateway service does not differentiate internal vs external, so On-Prem Gateway is needed here.

d0bermannnOption: B

B. NetScaler Gateway on-premises with Workspace in Cloud