To fix domain session cookie resolution issues during AAA authentication, which DNS configuration is recommended?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Master Citrix ADC13 with Citrix Gateway 1Y0-231 Test. Use flashcards and multiple choice questions with hints. Prepare thoroughly for your exam!

Multiple Choice

To fix domain session cookie resolution issues during AAA authentication, which DNS configuration is recommended?

Explanation:
Domain session cookie resolution during AAA authentication is resolved by ensuring the resources involved are addressed by domain-based names that the client can consistently use. The recommended approach is to configure DNS so that the authentication and traffic management virtual servers are assigned fully qualified domain names (FQDNs) that exist in the domain. When the browser receives a cookie during AAA and those cookies are scoped to the same domain name the client is visiting, the cookie is sent back to the correct virtual server on subsequent requests, preserving the session and avoiding cross-domain cookie issues. This works better than simply giving the NetScaler an FQDN on the domain, because the cookie’s domain scope typically depends on the exact host name the user accessed and the corresponding DNS name mapping for the authentication and TM virtual servers. DNS changes that try to influence cookie behavior by tweaking cookie timeouts or by naming the cookie itself aren’t applicable, so those options don’t address the resolution problem.

Domain session cookie resolution during AAA authentication is resolved by ensuring the resources involved are addressed by domain-based names that the client can consistently use. The recommended approach is to configure DNS so that the authentication and traffic management virtual servers are assigned fully qualified domain names (FQDNs) that exist in the domain. When the browser receives a cookie during AAA and those cookies are scoped to the same domain name the client is visiting, the cookie is sent back to the correct virtual server on subsequent requests, preserving the session and avoiding cross-domain cookie issues.

This works better than simply giving the NetScaler an FQDN on the domain, because the cookie’s domain scope typically depends on the exact host name the user accessed and the corresponding DNS name mapping for the authentication and TM virtual servers. DNS changes that try to influence cookie behavior by tweaking cookie timeouts or by naming the cookie itself aren’t applicable, so those options don’t address the resolution problem.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy