Scenario: A Citrix Administrator created an SSL virtual server using only the following commands:
The SSL virtual server is currently in a DOWN state.
What could be the reason the SSL virtual server is in a down state?
1Y0-204 Exam QuestionsBrowse all questions from this exam
1Y0-204 Exam - Question 72
Show AnswerHide Answer
Correct Answer: D
The SSL virtual server is in a DOWN state because an SSL virtual server requires an SSL certificate to be bound to it to function correctly. Without this certificate, the server cannot establish secure connections and will remain in a DOWN state. The SSL port number does not necessarily need to be port 443; it can be set to any port as specified by the administrator. Additionally, the disabled SSLv3 setting does not affect the server's ability to come UP. Therefore, the reason for the DOWN state is the lack of an SSL certificate bound to the virtual server.
Discussion
4 commentsb233f0aOption: C
May 18, 2023There is a misleading typo on the "add lb vserver sslserver SSL 10.102.29.133.444". If there were a ; before 444 then this would bind to port 444. But there is a dot, so the vserver is being created with an invalid IP address which would result in the vserver failing to be created, so everything else fails as a result. Therefore C is the correct answer in my opinion.
mhmt
Dec 18, 2020should be C
ayushwithu
Jan 22, 2021No. By default it use port 443 when you choose SSL.
melv_mad
Feb 17, 2021In Line 1 the SSL is bound to Port 444. So C should be correct.
Ar4
Mar 29, 2021But anyway even if in Line 1 i will be 443, Vserver will be down because it must have a certificate bind.
Ar4
Mar 29, 2021But anyway even if in Line 1 i will be 443, Vserver will be down because it must have a certificate bind.
melv_mad
Feb 17, 2021In Line 1 the SSL is bound to Port 444. So C should be correct.
Ar4
Mar 29, 2021But anyway even if in Line 1 i will be 443, Vserver will be down because it must have a certificate bind.
Ar4
Mar 29, 2021But anyway even if in Line 1 i will be 443, Vserver will be down because it must have a certificate bind.
OllyThompson
Jul 7, 2021Answer is D - front end and back end ports can be different for a normal SSL vServer and services, but it always needs a certificate bind to show as UP
Opurt666
Sep 14, 2021No, it’s D. An SSL vServer can be configured to listen on any port, but will never show as UP if there’s no certificate bound. Port 443 is just the default for SSL, not a requirement.
examencitrixOption: D
Nov 23, 2023D. The SSL Certificate is NOT bound to the virtual server. the configuration provided in the scenario is missing a critical step: binding an SSL certificate
Another_soul96
Sep 21, 2024The correct answer is D. The SSL Certificate is NOT bound to the virtual server. Here's the reasoning for this choice: The scenario mentions creating an SSL virtual server and binding services to it, along with setting certain SSL parameters. However, it doesn't mention binding an SSL certificate to the virtual server. In order for SSL/TLS to function correctly, an SSL certificate must be bound to the virtual server to facilitate encrypted communications. Without this certificate bound, the virtual server cannot handle SSL traffic correctly, which would likely result in the server being reported as DOWN. The other options (A, B, and C) are not directly supported by the information provided in the scenario. There's no mention of issues related to the network, SSLv3, or incorrect port configuration that would directly cause the virtual server to be DOWN.