DumpsBox
Home/citrix/Free Citrix 1Y0-312 Actual Exam Questions/Question 3
← Back to Exam

Free Citrix 1Y0-312 Actual Exam Questions - Question 3 Discussion

Question No. 3
Scenario: There are two domains in an organization: Domain A and Domain B. A Citrix Engineer
configured
SAML
authentication
for
Domain
A,
without
implementing
Citrix
Federated
Authentication Service (FAS).
While launching the Citrix apps, the Single Sign-on will
.
Select one option, then reveal solution.
US
KK
Kevin K.
2026-02-21

It’s A because SAML configured only for Domain A means users there get SSO, but Domain B users don’t since no federated service is set up to handle their authentication.

0
AX
Andrew X.
2026-02-19

I think A is the way to go here. Since SAML is only set up for Domain A and there’s no FAS, users in Domain A can use SSO, but Domain B users won’t have that capability. Without FAS, you can’t bridge authentication across domains, so Domain B is out of luck.

0
VN
Vikas N.
2026-02-19

Since SAML is configured only for Domain A and there’s no FAS, users from Domain A should be able to get single sign-on working within their own domain. Domain B users won’t have SSO because without FAS, cross-domain authentication isn’t supported. So, the SSO works for Domain A users but not for Domain B users, which matches option A.

0
AM
Adeel M.
2026-02-19

A/D? If no FAS, Domain B definitely no SSO, but Domain A might also fail.

0
ZJ
Zain J.
2026-02-12

Option A feels right since Domain A has SAML set up, so their users should get SSO, but Domain B users won’t because no FAS means no cross-domain token exchange.

0
RT
Rizwan T.
2026-02-01

Maybe D, because without FAS, even Domain A users might not get true single sign-on since the system can’t issue delegated credentials properly. So, SSO might not work for anyone here.

0
TN
Tom N.
2026-01-30

Probably A. Since SAML is only set up for Domain A, users there get SSO. Without FAS, Domain B users won’t have that seamless sign-on, so it likely won’t work for them.

0
SR
Sam R.
2026-01-28

I’m thinking about what the question says regarding FAS. Since FAS isn’t implemented, cross-domain SAML authentication likely won’t work. That rules out C because users from Domain B probably can’t use SSO without FAS. Also, since only Domain A has SAML configured, Domain B users won’t have SSO. So, between A and D, it makes more sense that SSO works for Domain A users but not Domain B. Does the question imply that Domain B users get any alternative auth or just no SSO at all?

0
AX
Ali X.
2026-01-19

Makes sense that SSO works only for Domain A since SAML is set there; Domain B users lack the setup and no FAS means no cross-domain support. So, A fits best here.

0
WD
Will D.
2026-01-17

Option A makes sense since only Domain A has SAML configured. Without FAS, Domain B users won’t get SSO because they’re outside that setup. So, SSO works just for Domain A users here.

0
WD
Will D.
2026-01-17

It’s A here. Since SAML was only set up for Domain A and without FAS, the single sign-on won’t work for Domain B users because they’re in a different domain without the right config. B and C don’t make sense because Domain B wasn’t set up at all. D is too harsh since Domain A is correctly configured, so their users should get SSO working just fine. The main trap is thinking SSO would magically work for both domains without FAS or proper setup across both.

0