Citrix Endpoint Management Administration — Question 19

Scenario: A Citrix Engineer configures Citrix Web App Firewall to protect an application. Upon reviewing the log files, the engineer notices a pattern of forceful browsing toward the configuration page for the application. To protect against this, the engineer enforces Start URL and enables Enforce URL Closure.
What is the effect of enforcing Start URL and enabling Enforce URL Closure on the application?

Answer options

• A. Access to the path /config.aspx is unblocked when a user clicks a referring link elsewhere on the website.
• B. Non-administrative users are blocked from the path /config.aspx. Administrative users are permitted to the path /config.aspx.
• C. External users are blocked from the path /config.aspx. Internal users are permitted to the path /config.aspx.
• D. Access to the path /config.aspx is blocked.

Correct answer: A

Explanation

Enforcing Start URL allows users to access certain paths only through specified entry points, thus preventing unauthorized or forceful access to sensitive areas like /config.aspx. Therefore, option A is correct as it allows access from within the site while blocking direct attempts. The other options imply restrictions or permissions that do not align with the effects of Start URL and Enforce URL Closure.