Citrix Access Control Administration — Question 101

A Citrix Administrator needs to confirm that all client certificates presented to the authentication virtual server are valid until at least the year 2025.

Which expression can the administrator use to meet this requirement?

Answer options

• A. CLIENT.SSL.CLIENT_CERT.VALID_NOT_AFTER.EQ(GMT2025)
• B. CLIENT.SSL.ORIGIN_SERVER_CERT.VALID_NOT_AFTER.EQ(GMT2025)
• C. CLIENT.SSL.CLIENT_CERT.YEAR_TO_EXPIRE.EQ(GMT2025)
• D. CLIENT.SSL.ORIGIN_SERVER_CERT.EQ(GMT2025)

Correct answer: A

Explanation

The correct answer, A, checks if the validity of the client certificate ends after the specified date, ensuring it is valid until at least 2025. Option B incorrectly addresses the origin server certificate instead of the client certificate. Option C evaluates the years until expiration rather than confirming validity against a specific date. Option D also incorrectly references the origin server certificate, which is not relevant to the requirement.