Architecting a Citrix Networking Solution — Question 22

Scenario: The following NetScaler environment requirements were discussed during a design meeting between a Citrix Architect and the Workspacelab team:
All traffic should be secured, and any traffic coming into HTTP should be redirected to HTTPS.
Single Sign-on should be created for Microsoft Outlook web access (OWA).
NetScaler should recognize Uniform Resource Identifier (URI) and close the session to NetScaler when users hit the Logoff button in Microsoft Outlook web access.
Users should be able to authenticate using user principal name (UPN).
The Layer 7 monitor should be configured to monitor the Microsoft Outlook web access servers and the monitor probes must be sent on SSL.
Which method can the architect use to redirect the user accessing https://mail.citrix.com to https://mail.citrix.com?

Answer options

• A. add responder action act redirect “https://mail.citrix.com” –responseStatusCode 302 add responder policy pol HTTP.REQ.IS_VALID act
• B. add lb server test SSL 10.107.149.243.80 –persistenceType NONE –cltTimeout 180 –redirectFromPort 80 –httpsRedirectUrl https://mail.citrix.com
• C. add lb server test SSL 10.107.149.243.443 –persistenceType NONE –cltTimeout 180 –redirectFromPort 80 –httpsRedirectUrl https://mail.citrix.com
• D. add responder action act redirect “\https://\ + HTTP REQ.HOSTNAME.HTTP_URL_SAFE + HTTP.REQ.URL_PATH_AND_QUERY.HTTP_URL_SAFE\n\n” –responseStatusCode 302 add responder policy pol HTTP.REQ.IS_VALID act

Correct answer: C

Explanation

The correct answer, C, specifies the use of the SSL port 443 for redirection, which is appropriate for secure connections. Options A and D incorrectly redirect to the same URL without ensuring the HTTPS protocol, and option B incorrectly uses port 80 instead of 443, which does not align with secure traffic requirements.