Citrix 1Y0-204 - CCA-V Citrix Virtual Apps and Desktops 7 Administration exam

Without a bound SSL certificate, the SSL virtual server cannot establish secure connections and will be in a DOWN state.

According to the Citrix documentation, “To enable SSL offloading for a virtual server, you must bind an SSL certificate to the virtual server.”

The image you sent shows the configuration commands for setting up an SSL virtual server and services. However, there is no command to bind an SSL certificate to the virtual server.

Therefore, the correct answer is D. The SSL Certificate is NOT bound to the virtual server.

https://docs.citrix.com/en-us/citrix-adc/13/ssl/ssl-offload-howto.html

Citrix documentation explains that to secure traffic between internal components (StoreFront ↔ Delivery Controllers), the administrator should enable HTTPS communication using internal domain-issued SSL certificates.

Why Domain SSL Certificates are correct:

Domain-issued certificates are trusted automatically by all domain-joined machines.

They cost nothing because they are issued by the company’s internal Certificate Authority (CA).

They secure communication between:

StoreFront servers

Delivery Controllers

They protect internal usernames, passwords, STA tickets, and XML communication without requiring public certification.

Thus, deploying:

✔ A domain SSL certificate on StoreFront

✔ A domain SSL certificate on Delivery Controllers

provides full internal encryption at minimal cost and minimal administrative effort.

Why the other options are incorrect:

Third-party SSL certificates (A and B) cost money, require external verification, and provide no additional benefit for internal-only communication.

Citrix documentation recommends third-party certificates only when externally exposed components (e.g., Citrix Gateway) must be trusted on unmanaged devices.

Documentation References

StoreFront Security Configuration → HTTPS and Certificate Requirements

Delivery Controller XML/HTTPS Configuration Guide

Citrix Virtual Apps and Desktops Security Hardening Guide