(2023) MCPA-Level-1 Exam Dumps, Practice Test Questions BUNDLE PACK
MuleSoft Certified Platform Architect Certification MCPA-Level-1 Sample Questions Reliable
MuleSoft MCPA - Level 1: MuleSoft Certified Platform Architect - Level 1 Exam Certified Professional salary
The average salary of a MuleSoft MCPA - Level 1: MuleSoft Certified Platform Architect - Level 1 Exam Certified Expert in:
- Europe - 70,500 EURO
- India. - 14,00,327 INR
- United State - 100,200 USD
- England - 75,000 POUND
NEW QUESTION 37
What API policy would be LEAST LIKELY used when designing an Experience API that is intended to work with a consumer mobile phone or tablet application?
- A. IPwhitellst
- B. OAuth 2.0 access token enforcement
- C. Client ID enforcement
- D. JSON threat protection
Answer: A
Explanation:
Correct answer: IP whitelist
*****************************************
>> OAuth 2.0 access token and Client ID enforcement policies are VERY common to apply on Experience APIs as API consumers need to register and access the APIs using one of these mechanisms
>> JSON threat protection is also VERY common policy to apply on Experience APIs to prevent bad or suspicious payloads hitting the API implementations.
>> IP whitelisting policy is usually very common in Process and System APIs to only whitelist the IP range inside the local VPC. But also applied occassionally on some experience APIs where the End User/ API Consumers are FIXED.
>> When we know the API consumers upfront who are going to access certain Experience APIs, then we can request for static IPs from such consumers and whitelist them to prevent anyone else hitting the API.
However, the experience API given in the question/ scenario is intended to work with a consumer mobile phone or tablet application. Which means, there is no way we can know all possible IPs that are to be whitelisted as mobile phones and tablets can so many in number and any device in the city/state/country/globe.
So, It is very LEAST LIKELY to apply IP Whitelisting on such Experience APIs whose consumers are typically Mobile Phones or Tablets.
NEW QUESTION 38
An API implementation is updated. When must the RAML definition of the API also be updated?
- A. When the API implementation changes the structure of the request or response messages
- B. When the API implementation changes from interacting with a legacy backend system deployed on-premises to a modern, cloud-based (SaaS) system
- C. When the API implementation is optimized to improve its average response time
- D. When the API implementation is migrated from an older to a newer version of the Mule runtime
Answer: C
NEW QUESTION 39
An organization uses various cloud-based SaaS systems and multiple on-premises systems. The on-premises systems are an important part of the organization's application network and can only be accessed from within the organization's intranet.
What is the best way to configure and use Anypoint Platform to support integrations with both the cloud-based SaaS systems and on-premises systems?
A) Use CloudHub-deployed Mule runtimes in an Anypoint VPC managed by Anypoint Platform Private Cloud Edition control plane
B) Use CloudHub-deployed Mule runtimes in the shared worker cloud managed by the MuleSoft-hosted Anypoint Platform control plane
C) Use an on-premises installation of Mule runtimes that are completely isolated with NO external network access, managed by the Anypoint Platform Private Cloud Edition control plane
D) Use a combination of Cloud Hub-deployed and manually provisioned on-premises Mule runtimes managed by the MuleSoft-hosted Anypoint Platform control plane
- A. Option C
- B. Option B
- C. Option D
- D. Option A
Answer: B
NEW QUESTION 40
What Anypoint Connectors support transactions?
- A. Database, 3MS, HTTP
- B. Database, VM, File
- C. Database, JMS, VM, SFTP
- D. Database, JMS, VM
Answer: D
NEW QUESTION 41
What best explains the use of auto-discovery in API implementations?
- A. It enables Anypoint Exchange to discover assets and makes them available for reuse
- B. It enables Anypoint Studio to discover API definitions configured in Anypoint Platform
- C. It makes API Manager aware of API implementations and hence enables it to enforce policies
- D. It enables Anypoint Analytics to gain insight into the usage of APIs
Answer: B
NEW QUESTION 42
What is the most performant out-of-the-box solution in Anypoint Platform to track transaction state in an asynchronously executing long-running process implemented as a Mule application deployed to multiple CloudHub workers?
- A. java.util.WeakHashMap
- B. File-based storage
- C. Persistent Object Store
- D. Redis distributed cache
Answer: C
Explanation:
Correct answer: Persistent Object Store
*****************************************
>> Redis distributed cache is performant but NOT out-of-the-box solution in Anypoint Platform
>> File-storage is neither performant nor out-of-the-box solution in Anypoint Platform
>> java.util.WeakHashMap needs a completely custom implementation of cache from scratch using Java code and is limited to the JVM where it is running. Which means the state in the cache is not worker aware when running on multiple workers. This type of cache is local to the worker. So, this is neither out-of-the-box nor worker-aware among multiple workers on cloudhub. https://www.baeldung.com/java-weakhashmap
>> Persistent Object Store is an out-of-the-box solution provided by Anypoint Platform which is performant as well as worker aware among multiple workers running on CloudHub. https://docs.mulesoft.com/object-store/ So, Persistent Object Store is the right answer.
NEW QUESTION 43
An API has been updated in Anypoint exchange by its API producer from version 3.1.1 to 3.2.0 following accepted semantic versioning practices and the changes have been communicated via the APIs public portal. The API endpoint does NOT change in the new version. How should the developer of an API client respond to this change?
- A. The API producer should be requested to run the old version in parallel with the new one
- B. The API client code only needs to be changed if it needs to take advantage of the new features
- C. The API producer should be contacted to understand the change to existing functionality
- D. The API clients need to update the code on their side and need to do full regression
Answer: B
NEW QUESTION 44
What API policy would be LEAST LIKELY used when designing an Experience API that is intended to work with a consumer mobile phone or tablet application?
- A. IPwhitellst
- B. OAuth 2.0 access token enforcement
- C. Client ID enforcement
- D. JSON threat protection
Answer: D
NEW QUESTION 45
Refer to the exhibit.
what is true when using customer-hosted Mule runtimes with the MuleSoft-hosted Anypoint Platform control plane (hybrid deployment)?
- A. The MuleSoft-hosted Shared Load Balancer can be used to load balance API invocations to the Mule runtimes
- B. API implementations can run successfully in customer-hosted Mule runtimes, even when they are unable to communicate with the control plane
- C. Anypoint Runtime Manager automatically ensures HA in the control plane by creating a new Mule runtime instance in case of a node failure
- D. Anypoint Runtime Manager initiates a network connection to a Mule runtime in order to deploy Mule applications
Answer: C
NEW QUESTION 46
Refer to the exhibit.
What is the best way to decompose one end-to-end business process into a collaboration of Experience, Process, and System APIs?
A) Handle customizations for the end-user application at the Process API level rather than the Experience API level
B) Allow System APIs to return data that is NOT currently required by the identified Process or Experience APIs
C) Always use a tiered approach by creating exactly one API for each of the 3 layers (Experience, Process and System APIs)
D) Use a Process API to orchestrate calls to multiple System APIs, but NOT to other Process APIs
- A. Option D
- B. Option A
- C. Option C
- D. Option B
Answer: C
NEW QUESTION 47
A new upstream API Is being designed to offer an SLA of 500 ms median and 800 ms maximum (99th percentile) response time. The corresponding API implementation needs to sequentially invoke 3 downstream APIs of very similar complexity.
The first of these downstream APIs offers the following SLA for its response time: median: 100 ms, 80th percentile: 500 ms, 95th percentile: 1000 ms.
If possible, how can a timeout be set in the upstream API for the invocation of the first downstream API to meet the new upstream API's desired SLA?
- A. Do not set a timeout; the Invocation of this API Is mandatory and so we must wait until it responds
- B. No timeout is possible to meet the upstream API's desired SLA; a different SLA must be negotiated with the first downstream API or invoke an alternative API
- C. Set a timeout of 50 ms; this times out more invocations of that API but gives additional room for retries
- D. Set a timeout of 100 ms; that leaves 400 ms for the other two downstream APIs to complete
Answer: D
NEW QUESTION 48
An organization has created an API-led architecture that uses various API layers to integrate mobile clients with a backend system. The backend system consists of a number of specialized components and can be accessed via a REST API. The process and experience APIs share the same bounded-context model that is different from the backend data model. What additional canonical models, bounded-context models, or anti-corruption layers are best added to this architecture to help process data consumed from the backend system?
- A. Create a canonical model that combines the backend and API-led models to simplify and unify data models, and minimize data transformations.
- B. Create an anti-corruption layer for every API to perform transformation for every data model to match each other, and let data simply travel between APIs to avoid the complexity and overhead of building canonical models
- C. Create a bounded-context model for every layer and overlap them when the boundary contexts overlap, letting API developers know about the differences between upstream and downstream data models
- D. Create a bounded-context model for the system layer to closely match the backend data model, and add an anti-corruption layer to let the different bounded contexts cooperate across the system and process layers
Answer: D
Explanation:
Correct answer: Create a bounded-context model for the system layer to closely match the backend data model, and add an anti-corruption layer to let the different bounded contexts cooperate across the system and process layers
*****************************************
>> Canonical models are not an option here as the organization has already put in efforts and created bounded-context models for Experience and Process APIs.
>> Anti-corruption layers for ALL APIs is unnecessary and invalid because it is mentioned that experience and process APIs share same bounded-context model. It is just the System layer APIs that need to choose their approach now.
>> So, having an anti-corruption layer just between the process and system layers will work well. Also to speed up the approach, system APIs can mimic the backend system data model.
NEW QUESTION 49
Which of the following best fits the definition of API-led connectivity?
- A. API-led connectivity is a 3-layered architecture covering Experience, Process and System layers
- B. API-led connectivity is a technology which enabled us to implement Experience, Process and System layer based APIs
- C. API-led connectivity is not just an architecture or technology but also a way to organize people and processes for efficient IT delivery in the organization
Answer: C
Explanation:
Correct answer: API-led connectivity is not just an architecture or technology but also a way to organize people and processes for efficient IT delivery in the organization.
*****************************************
Reference:
NEW QUESTION 50
Refer to the exhibit.
What is a valid API in the sense of API-led connectivity and application networks?
A) Java RMI over TCP
B) Java RMI over TCP
C) CORBA over HOP
D) XML over UDP
- A. Option C
- B. Option B
- C. Option D
- D. Option A
Answer: B
NEW QUESTION 51
What API policy would LEAST likely be applied to a Process API?
- A. Custom circuit breaker
- B. Client ID enforcement
- C. JSON threat protection
- D. Rate limiting
Answer: C
NEW QUESTION 52
In an organization, the InfoSec team is investigating Anypoint Platform related data traffic.
- A. From where does most of the data available to Anypoint Platform for monitoring and alerting originate?
- B. From various components of Anypoint Platform, such as the Shared Load Balancer, VPC, and Mule runtimes
- C. From the Mule runtime irrespective of the deployment model
- D. From the Mule runtime or the API implementation, depending on the deployment model
- E. From the Mule runtime or the API Manager, depending on the type of data
Answer: D
NEW QUESTION 53
An organization uses various cloud-based SaaS systems and multiple on-premises systems. The on-premises systems are an important part of the organization's application network and can only be accessed from within the organization's intranet.
What is the best way to configure and use Anypoint Platform to support integrations with both the cloud-based SaaS systems and on-premises systems?
- A. Use an on-premises installation of Mule runtimes that are completely isolated with NO external network access, managed by the Anypoint Platform Private Cloud Edition control plane.
- B. Use CloudHub-deployed Mule runtimes in the shared worker cloud managed by the MuleSoft-hosted Anypoint Platform con
- C. Use CloudHub-deployed Mule runtimes in an Anypoint VPC managed by Anypoint Platform Private Cloud Edition control pl
- D. Use a combination of CloudHub-deployed and manually provisioned on-premises Mule runtimes managed by the MuleSoft Platform control plane.
Answer: B
Explanation:
Explanation/Reference:
NEW QUESTION 54
Which of the following sequence is correct?
- A. API Consumer requests access to API >> API Client implementes logic to call an API >> API routes the request to >> API Implementation
- B. API Consumer implementes logic to call an API >> API Client requests access to API >> API Implementation routes the request to >> API
- C. API Client implementes logic to call an API >> API Consumer requests access to API >> API routes the request to >> API Implementation
- D. API Client implementes logic to call an API >> API Consumer requests access to API >> API Implementation routes the request to >> API
Answer: A
Explanation:
Correct answer: API Consumer requests access to API >> API Client implementes logic to call an API >> API routes the request to >> API Implementation
*****************************************
>> API consumer does not implement any logic to invoke APIs. It is just a role. So, the option stating "API Consumer implementes logic to call an API" is INVALID.
>> API Implementation does not route any requests. It is a final piece of logic where functionality of target systems is exposed. So, the requests should be routed to the API implementation by some other entity. So, the options stating "API Implementation routes the request to >> API" is INVALID
>> The statements in one of the options are correct but sequence is wrong. The sequence is given as "API Client implementes logic to call an API >> API Consumer requests access to API >> API routes the request to >> API Implementation". Here, the statements in the options are VALID but sequence is WRONG.
>> Right option and sequence is the one where API consumer first requests access to API on Anypoint Exchange and obtains client credentials. API client then writes logic to call an API by using the access client credentials requested by API consumer and the requests will be routed to API implementation via the API which is managed by API Manager.
NEW QUESTION 55
......
Prepare for the Actual MuleSoft Certified Platform Architect MCPA-Level-1 Exam Practice Materials Collection: https://pass4sure.practicedump.com/MCPA-Level-1-exam-questions.html