Scenario: A Citrix Architect needs to deploy SAML integration between NetScaler (Identity…

Question

Scenario: A Citrix Architect needs to deploy SAML integration between NetScaler (Identity Provider) and ShareFile (Service Provider). The design requirements for SAML setup are as follows:
NetScaler must be deployed as the Identity Provider (IDP).
ShareFile server must be deployed as the SAML Service Provider (SP).
The users in domain workspacelab.com must be able to perform Single Sign-on to ShareFile after authenticating at the NetScaler.
The User ID must be UserPrincipalName.
The User ID and Password must be evaluated by NetScaler against the Active Directory servers SFO-ADS-001 and SFO-ADS-002.
After successful authentication, NetScaler creates a SAML Assertion and passes it back to ShareFile.
Single Sign-on must be performed.
SHA 1 algorithm must be utilized.
The verification environment details are as follows:

Accepted Answer

Correct answer: C. C. add authentication samIIdPProfile SAMI-IDP –samISPCertName Cert_1 –samIIdPCertName Cert_2 –assertionConsimerServiceURL https://sharefile.workspacelab.com/saml/acs” –samIIssuerName auth.workspacelab.com –signatureAlg RSA-SHA1-digestMethod SHA1 –encryptAssertion ON –serviceProviderID sharefile.workspacelab.com — Option C correctly specifies the use of the SHA1 algorithm for both signature and digest methods, which aligns with the design requirements. It also includes the correct assertion consumer service URL and issuer name. Other options either incorrectly set the signature algorithm to RSA-SHA256, use the wrong issuer name, or do not specify the correct encryption settings.

Architecting a Citrix Networking Solution — Question 6

Answer options

Correct answer: C

Explanation