Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. MuleSoft
  3. MuleSoft Certified Platform Architect - Level 1 MAINTENANCE

MuleSoft Certified Platform Architect - Level 1 MAINTENANCE MuleSoft Certified Platform Architect - Level 1 MAINTENANCE Exam Questions in PDF

Free MuleSoft MuleSoft Certified Platform Architect - Level 1 MAINTENANCE Dumps Questions (page: 3)

MuleSoft Certified Platform Architect - Level 1 MAINTENANCE PDF — 80 Questions

What is a key requirement when using an external Identity Provider for Client Management in Anypoint Platform?

  1. Single sign-on is required to sign in to Anypoint Platform
  2. The application network must include System APIs that interact with the Identity Provider
  3. To invoke OAuth 2.0-protected APIs managed by Anypoint Platform, API clients must submit access tokens issued by that same Identity Provider
  4. APIs managed by Anypoint Platform must be protected by SAML 2.0 policies

Answer(s): C

Explanation:

https://www.folkstalk.com/2019/11/mulesoft-integration-and-platform.html

Correct Answer: To invoke OAuth 2.0-protected APIs managed by Anypoint Platform, API clients must submit access tokens issued by that same Identity Provider *****************************************
>> It is NOT necessary that single sign-on is required to sign in to Anypoint Platform because we are using an external Identity Provider for Client Management >> It is NOT necessary that all APIs managed by Anypoint Platform must be protected by SAML 2.0 policies because we are using an external Identity Provider for Client Management >> Not TRUE that the application network must include System APIs that interact with the Identity Provider because we are using an external Identity Provider for Client Management Only TRUE statement in the given options is - "To invoke OAuth 2.0-protected APIs managed by Anypoint Platform, API clients must submit access tokens issued by that same Identity Provider"


Reference:

https://docs.mulesoft.com/api-manager/2.x/external-oauth-2.0-token-validation-policy https://blogs.mulesoft.com/dev/api-dev/api-security-ways-to-authenticate-and-authorize/



The responses to some HTTP requests can be cached depending on the HTTP verb used in the request. According to the HTTP specification, for what HTTP verbs is this safe to do?

  1. PUT, POST, DELETE
  2. GET, HEAD, POST
  3. GET, PUT, OPTIONS
  4. GET, OPTIONS, HEAD

Answer(s): D

Explanation:

Correct Answer: GET, OPTIONS, HEAD


Reference:

http://restcookbook.com/HTTP%20Methods/idempotency/



What is the most performant out-of-the-box solution in Anypoint Platform to track transaction state in an asynchronously executing long-running process implemented as a Mule application deployed to multiple CloudHub workers?

  1. Redis distributed cache
  2. java.util.WeakHashMap
  3. Persistent Object Store
  4. File-based storage

Answer(s): C

Explanation:

Correct Answer: Persistent Object Store
*****************************************
>> Redis distributed cache is performant but NOT out-of-the-box solution in Anypoint Platform >> File-storage is neither performant nor out-of-the-box solution in Anypoint Platform >> java.util.WeakHashMap needs a completely custom implementation of cache from scratch using Java code and is limited to the JVM where it is running. Which means the state in the cache is not worker aware when running on multiple workers. This type of cache is local to the worker. So, this is neither out-of-the-box nor worker-aware among multiple workers on cloudhub.
https://www.baeldung.com/java-weakhashmap
>> Persistent Object Store is an out-of-the-box solution provided by Anypoint Platform which is performant as well as worker aware among multiple workers running on CloudHub.
https://docs.mulesoft.com/object-store/
So, Persistent Object Store is the right answer.



How can the application of a rate limiting API policy be accurately reflected in the RAML definition of an API?

  1. By refining the resource definitions by adding a description of the rate limiting policy behavior
  2. By refining the request definitions by adding a remaining Requests query parameter with description, type, and example
  3. By refining the response definitions by adding the out-of-the-box Anypoint Platform rate-limit- enforcement securityScheme with description, type, and example
  4. By refining the response definitions by adding the x-ratelimit-* response headers with description, type, and example

Answer(s): D

Explanation:

Correct Answer: By refining the response definitions by adding the x-ratelimit-* response headers with description, type, and example
*****************************************




Reference:

https://docs.mulesoft.com/api-manager/2.x/rate-limiting-and-throttling#response-headers https://docs.mulesoft.com/api-manager/2.x/rate-limiting-and-throttling-sla-based- policies#response-headers



An organization has several APIs that accept JSON data over HTTP POST. The APIs are all publicly available and are associated with several mobile applications and web applications. The organization does NOT want to use any authentication or compliance policies for these APIs, but at the same time, is worried that some bad actor could send payloads that could somehow compromise the applications or servers running the API implementations.
What out-of-the-box Anypoint Platform policy can address exposure to this threat?

  1. Shut out bad actors by using HTTPS mutual authentication for all API invocations
  2. Apply an IP blacklist policy to all APIs; the blacklist will Include all bad actors
  3. Apply a Header injection and removal policy that detects the malicious data before it is used
  4. Apply a JSON threat protection policy to all APIs to detect potential threat vectors

Answer(s): D

Explanation:

Correct Answer: Apply a JSON threat protection policy to all APIs to detect potential threat vectors
*****************************************
>> Usually, if the APIs are designed and developed for specific consumers (known consumers/customers) then we would IP Whitelist the same to ensure that traffic only comes from them.
>> However, as this scenario states that the APIs are publicly available and being used by so many mobile and web applications, it is NOT possible to identify and blacklist all possible bad actors.

>> So, JSON threat protection policy is the best chance to prevent any bad JSON payloads from such bad actors.



Viewing page 3 of 17

Share your comments for MuleSoft MuleSoft Certified Platform Architect - Level 1 MAINTENANCE exam with other users:

S
Sanjay
8/14/2023 8:07:00 AM

good content

INDIA
B
Blessious Phiri
8/12/2023 2:19:00 PM

so challenging

Anonymous
P
PAYAL
10/17/2023 7:14:00 AM

17 should be d ,for morequery its scale out

Anonymous
K
Karthik
10/12/2023 10:51:00 AM

nice question

Anonymous
G
Godmode
5/7/2023 10:52:00 AM

yes.

NETHERLANDS
B
Bhuddhiman
7/30/2023 1:18:00 AM

good mateial

Anonymous
K
KJ
11/17/2023 3:50:00 PM

good practice exam

Anonymous
S
sowm
10/29/2023 2:44:00 PM

impressivre qustion

Anonymous
C
CW
7/6/2023 7:06:00 PM

questions seem helpful

Anonymous
L
luke
9/26/2023 10:52:00 AM

good content

Anonymous
Z
zazza
6/16/2023 9:08:00 AM

question 21 answer is alerts

ITALY
A
Abwoch Peter
7/4/2023 3:08:00 AM

am preparing for exam

Anonymous
M
mohamed
9/12/2023 5:26:00 AM

good one thanks

EGYPT
M
Mfc
10/23/2023 3:35:00 PM

only got thru 5 questions, need more to evaluate

Anonymous
W
Whizzle
7/24/2023 6:19:00 AM

q26 should be b

Anonymous
S
sarra
1/17/2024 3:44:00 AM

the aaa triad in information security is authentication, accounting and authorisation so the answer should be d 1, 3 and 5.

UNITED KINGDOM
D
DBS
5/14/2023 12:56:00 PM

need to attend this

UNITED STATES
D
Da_costa
8/1/2023 5:28:00 PM

these are free brain dumps i understand, how can one get free pdf

Anonymous
V
vikas
10/28/2023 6:57:00 AM

provide access

EUROPEAN UNION
A
Abdullah
9/29/2023 2:06:00 AM

good morning

Anonymous
R
Raj
6/26/2023 3:12:00 PM

please upload the ncp-mci 6.5 dumps, really need to practice this one. thanks guys

Anonymous
M
Miguel
10/5/2023 12:21:00 PM

question 16: https://help.salesforce.com/s/articleview?id=sf.care_console_overview.htm&type=5

SPAIN
H
Hiren Ladva
7/8/2023 10:34:00 PM

yes i m prepared exam

Anonymous
O
oliverjames
10/24/2023 5:37:00 AM

my experience was great with this site as i studied for the ms-900 from here and got 900/1000 on the test. my main focus was on the tutorials which were provided and practice questions. thanks!

GERMANY
B
Bhuddhiman
7/20/2023 11:52:00 AM

great course

UNITED STATES
A
Anuj
1/14/2024 4:07:00 PM

very good question

Anonymous
S
Saravana Kumar TS
12/8/2023 9:49:00 AM

question: 93 which statement is true regarding the result? sales contain 6 columns and values contain 7 columns so c is not right answer.

INDIA
L
Lue
3/30/2023 11:43:00 PM

highly recommend just passed my exam.

CANADA
D
DC
1/7/2024 10:17:00 AM

great practice! thanks

UNITED STATES
A
Anonymus
11/9/2023 5:41:00 AM

anyone who wrote this exam recently?

SOUTH AFRICA
K
Khalid Javid
11/17/2023 3:46:00 PM

kindly share the dump

Anonymous
N
Na
8/9/2023 8:39:00 AM

could you please upload cfe fraud prevention and deterrence questions? it will be very much helpful.

Anonymous
S
shime
10/23/2023 10:03:00 AM

this is really very very helpful for mcd level 1

ETHIOPIA
V
Vnu
6/3/2023 2:39:00 AM

very helpful!

Anonymous
AI Tutor 👋 I’m here to help!