Exam 1Y0-203 All QuestionsBrowse all questions from this exam
Go to Exam
Question 45

Scenario: A Citrix Administrator needs to secure XML traffic to an existing XenDesktop environment. The Microsoft Internet Information Services (IIS) is NOT installed on the Delivery Controller with the IP address 10.110.4.10.

The organization mandates that a public certificate authority (CA) server should be used for securing all communication traffic.

After successfully testing the changes, the administrator will make the necessary changes within StoreFront.

Which two steps should the administrator take to make the necessary changes? (Choose two.)

    Correct Answer: D, E

    To secure XML traffic in a Citrix XenDesktop environment without Microsoft IIS on the Delivery Controller, you need to request a certificate from a public certificate authority (CA) and then bind it to the appropriate port. Requesting a certificate from a public CA ensures that all communication is secured and trusted. Binding the certificate using the 'netsh http add sslcert' command ensures that SSL is configured correctly on the specified port (443 in this case). This combination aligns with the organization's mandate for using a public CA and secures the traffic appropriately.

Discussion
majkelOptions: DE

I am saying D and E are correct A wrong - never seen such comman B wrong this registry value already exists by default C wrong we do not create Domain certificates

DolfOptions: DE

D and E You need to request the certificate from Public CA and then bind it. https://docs.microsoft.com/en-us/dotnet/framework/wcf/feature-details/how-to-configure-a-port-with-an-ssl-certificate

msysumOptions: BE

Sorry I meant E as a second choice

msysumOptions: BD

Not sure I agree with A as a choice, that command sets the listening port the netsh command binds the port so I would say D as the second choice rather than A