1Y0-231 Exam QuestionsBrowse all questions from this exam
Go to Exam

1Y0-231 Exam - Question 62

Scenario: A Citrix Administrator is configuring a new authentication, authorization, and auditing (AAA) virtual server, and the status is DOWN. The administrator makes the below configurations: add lb vserver lb_vsrv_www HTTP 10.107.149.229 80 -persistenceType NONE -cltTimeout 180 -authn401 ON -authnVsName SAML_SP bind lb vserver lb_vsrv_www_ssl Red_srv bind lb vserver Ib_vsrv_www_ssl Blue_srv add authentication vserver SAML_SP SSL 10.107.149.230 443 -AuthenticationDomain citrix.lab

What should the administrator bind to the virtual server SAML_SP to complete the installation and change the status to UP?

Show Answer
Correct Answer: AD

An authentication virtual server must be of type SSL and must have an SSL certificate-key pair bound to it. Without an SSL certificate, the authentication virtual server cannot process SSL requests from clients, resulting in the server status being DOWN. Therefore, binding an SSL certificate to the virtual server SAML_SP is necessary to complete the installation and change the status to UP.

Discussion

6 comments
Sign in to comment
Vik84Option: D
Nov 22, 2022

Correct is D

4f6bb17Option: A
Feb 2, 2024

A AAA-vServer is fixed to use SSL and will show as DOWN, as long as there is no certificate bound. The config of the AAA-vServer can be empty but will show UP once a certificate is bound.

bgeorgiev4Option: B
Nov 21, 2022

According to: https://support.citrix.com/article/CTX108960/probable-reasons-for-the-status-of-a-virtual-server-being-marked-as-down-on-netscaler Correct answer is B a service: "A service provides the connections between the NetScaler appliance and the back end servers. Each virtual server must have atleast one service bound to it"

NilsonSouza
Feb 14, 2023

No, this ctx is for a Load balancing vs and not aaa vs..

sailorsoulOption: A
Nov 21, 2022

voting A.

Vik84
Nov 22, 2022

It is not A, because port use from the command is 80, not 443.

NilsonSouza
Feb 14, 2023

Not A because it's http 80 vserver Only https needs a SSL Certificate

Tlab97271Option: D
Mar 17, 2023

I think D 1. Create LDAP Authentication Action specifying the target LDAP server. This could be a vServer on Citrix ADC if you are Load-Balancing LDAP in your environment. 2. Create the Authentication Policy and bind the Authentication Policy

MarkodukOption: A
Nov 14, 2023

https://docs.netscaler.com/en-us/citrix-adc/current-release/aaa-tm/entities-of-authentication-authorization-auditing/authentication-virtual-server.html The correct answer is A. An SSL certificate. According to the documentation1, an authentication virtual server must be of type SSL and have an SSL certificate-key pair bound to it. Without an SSL certificate, the authentication virtual server cannot process the SSL requests from the clients and the status will be DOWN. Therefore, the administrator should bind an SSL certificate to the virtual server SAML_SP to complete the installation and change the status to UP.