• Home
  • Blogs
  • Get instant access to MCPA-Level-1 Practice Tests 2021 Free Updated Today! [Q15-Q40]

Get instant access to MCPA-Level-1 Practice Tests 2021 Free Updated Today! [Q15-Q40]

Share

Get instant access to MCPA-Level-1 Practice Tests 2021 Free Updated Today!

Welcome to download the newest PassLeader MCPA-Level-1 PDF dumps ( 60  Q&As)

NEW QUESTION 15
An Order API must be designed that contains significant amounts of integration logic and involves the invocation of the Product API.
The power relationship between Order API and Product API is one of "Customer/Supplier", because the Product API is used heavily throughout the organization and is developed by a dedicated development team located in the office of the CTO.
What strategy should be used to deal with the API data model of the Product API within the Order API?

  • A. Start an organization-wide data modeling initiative that will result in an Enterprise Data Model that will then be used in both the Product API and the Order API
  • B. Implement an anti-corruption layer in the Order API that transforms the Product API data model into internal data types of the Order API
  • C. Work with the API data types of the Product API directly when implementing the integration logic of the Order API such that the Order API uses the same (unchanged) data types as the Product API
  • D. Convince the development team of the Product API to adopt the API data model of the Order API such that the integration logic of the Order API can work with one consistent internal data model

Answer: C

 

NEW QUESTION 16
What best describes the Fully Qualified Domain Names (FQDNs), also known as DNS entries, created when a Mule application is deployed to the CloudHub Shared Worker Cloud?

  • A. The FQDNs are determined by the application name, but can be modified by an administrator after deployment
  • B. A fixed number of FQDNs are created, IRRESPECTIVE of the environment and VPC design
  • C. The FQDNs are determined by both the application name and the Anypoint Platform organization
  • D. The FQDNs are determined by the application name chosen, IRRESPECTIVE of the region

Answer: B

 

NEW QUESTION 17
What is true about API implementations when dealing with legal regulations that require all data processing to be performed within a certain jurisdiction (such as in the USA or the EU)?

  • A. They must ensure ALL data is encrypted both in transit and at rest
  • B. They must use a Jurisdiction-local external messaging system such as Active MQ rather than Anypoint MQ
  • C. They must te deployed to Anypoint Platform runtime planes that are managed by Anypoint Platform control planes, with both planes in the same Jurisdiction
  • D. They must avoid using the Object Store as it depends on services deployed ONLY to the US East region

Answer: D

 

NEW QUESTION 18
An organization uses various cloud-based SaaS systems and multiple on-premises systems. The on-premises systems are an important part of the organization's application network and can only be accessed from within the organization's intranet.
What is the best way to configure and use Anypoint Platform to support integrations with both the cloud-based SaaS systems and on-premises systems?

  • A. Use CloudHub-deployed Mule runtimes in an Anypoint VPC managed by Anypoint Platform Private Cloud Edition control pl
  • B. Use CloudHub-deployed Mule runtimes in the shared worker cloud managed by the MuleSoft-hosted Anypoint Platform con
  • C. Use a combination of CloudHub-deployed and manually provisioned on-premises Mule runtimes managed by the MuleSoft Platform control plane.
  • D. Use an on-premises installation of Mule runtimes that are completely isolated with NO external network access, managed by the Anypoint Platform Private Cloud Edition control plane.

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 19
The responses to some HTTP requests can be cached depending on the HTTP verb used in the request.
According to the HTTP specification, for what HTTP verbs is this safe to do?

  • A. GET, OPTIONS, HEAD
  • B. GET, PUT, OPTIONS
  • C. PUT, POST, DELETE
  • D. GET, HEAD, POST

Answer: A

Explanation:
Explanation/Reference: http://restcookbook.com/HTTP%20Methods/idempotency/

 

NEW QUESTION 20
Refer to the exhibit.

An organization is running a Mule standalone runtime and has configured Active Directory as the Anypoint Platform external Identity Provider. The organization does not have budget for other system components.
What policy should be applied to all instances of APIs in the organization to most effectively restrict access to a specific group of internal users?

  • A. Apply an OAuth 2.0 access token enforcement policy; the internal Active Directory will be configured as the OAuth server.
  • B. Apply a client ID enforcement policy; the specific group of users will configure their client applications to use their specific client credentials.
  • C. Apply an IP whitelist policy; only the specific users' workstations will be in the whitelist.
  • D. Apply a basic authentication - LDAP policy; the internal Active Directory will be configured as the LDAP source for authenticating users.

Answer: D

 

NEW QUESTION 21
The responses to some HTTP requests can be cached depending on the HTTP verb used in the request.
According to the HTTP specification, for what HTTP verbs is this safe to do?

  • A. GET, OPTIONS, HEAD
  • B. GET, PUT, OPTIONS
  • C. PUT, POST, DELETE
  • D. GET, HEAD, POST

Answer: C

 

NEW QUESTION 22
Refer to the exhibit. An organization needs to enable access to their customer data from both a mobile app and a web application, which each need access to common fields as well as certain unique fields.
The data is available partially in a database and partially in a 3rd-party CRM system.
What APIs should be created to best fit these design requirements?

A) A Process API that contains the data required by both the web and mobile apps, allowing these applications to invoke it directly and access the data they need thereby providing the flexibility to add more fields in the future without needing API changes

B) One set of APIs (Experience API, Process API, and System API) for the web app, and another set for the mobile app

C) Separate Experience APIs for the mobile and web app, but a common Process API that invokes separate System APIs created for the database and CRM system

D) A common Experience API used by both the web and mobile apps, but separate Process APIs for the web and mobile apps that interact with the database and the CRM System

  • A. Option D
  • B. Option C
  • C. Option A
  • D. Option B

Answer: B

 

NEW QUESTION 23
What is true about automating interactions with Anypoint Platform using tools such as Anypoint Platform REST APIs, Anypoint CLI, or the Mule Maven plugin?

  • A. API policies can be applied to the Anypoint Platform APIs so that ONLY certain LOBs have access to specific functions.
  • B. Anypoint Platform APIs can ONLY automate interactions with CloudHub, while the Mule Maven plugin is required for deployment to customer-hosted Mule runtimes
  • C. Access to Anypoint Platform APIs and Anypoint CLI can be controlled separately through the roles and permissions in Anypoint Platform, so that specific users can get access to Anypoint CLI while others get access to the platform APIs.
  • D. By default, the Anypoint CLI and Mule Maven plugin are NOT included in the Mule runtime, so are NOT available to be used by deployed Mule applications.

Answer: D

 

NEW QUESTION 24
How can the application of a rate limiting API policy be accurately reflected in the RAML definition of an API?

  • A. By refining the resource definitions by adding a description of the rate limiting policy behavior
  • B. By refining the response definitions by adding the out-of-the-box Anypoint Platform rate-limit-enforcement securityScheme with description, type, and example
  • C. By refining the request definitions by adding a remaining Requests query parameter with description, type, and example
  • D. By refining the response definitions by adding the x-ratelimit-* response headers with description, type, and example

Answer: D

 

NEW QUESTION 25
Refer to the exhibit.

What is the best way to decompose one end-to-end business process into a collaboration of Experience, Process, and System APIs?
A) Handle customizations for the end-user application at the Process API level rather than the Experience API level

B) Allow System APIs to return data that is NOT currently required by the identified Process or Experience APIs

C) Always use a tiered approach by creating exactly one API for each of the 3 layers (Experience, Process and System APIs)

D) Use a Process API to orchestrate calls to multiple System APIs, but NOT to other Process APIs

  • A. Option D
  • B. Option B
  • C. Option A
  • D. Option C

Answer: B

 

NEW QUESTION 26
What Mule application can have API policies applied by Anypoint Platform to the endpoint exposed by that Mule application?

  • A. A Mule application that accepts JSON requests over TCP but is NOT required to provide a response.
  • B. A Mule application that accepts gRPC requests over HTTP/2
  • C. A Mule application that accepts requests over HTTP/1x.
  • D. A Mule application that accepts JSON requests over WebSocket.

Answer: B

Explanation:
Explanation/Reference:

 

NEW QUESTION 27
What API policy would be LEAST LIKELY used when designing an Experience API that is intended to work with a consumer mobile phone or tablet application?

  • A. Client ID enforcement
  • B. IPwhitellst
  • C. JSON threat protection
  • D. OAuth 2.0 access token enforcement

Answer: D

 

NEW QUESTION 28
What do the API invocation metrics provided by Anypoint Platform provide?

  • A. ROI metrics from APIs that can be directly shared with business users
  • B. Data on past API invocations to help identify anomalies and usage patterns across various APIs
  • C. Measurements of the effectiveness of the application network based on the level of reuse
  • D. Proactive identification of likely future policy violations that exceed a given threat threshold

Answer: C

Explanation:
Explanation/Reference: https://usermanual.wiki/Document/APAAppNetstudentManual02may2018.991784750.pdf

 

NEW QUESTION 29
What is a key requirement when using an external Identity Provider for Client Management in Anypoint Platform?

  • A. The application network must include System APIs that interact with the Identity Provider
  • B. Single sign-on is required to sign in to Anypoint Platform
  • C. APIs managed by Anypoint Platform must be protected by SAML 2.0 policies
  • D. To invoke OAuth 2.0-protected APIs managed by Anypoint Platform, API clients must submit access tokens issued by that same Identity Provider

Answer: D

Explanation:
Explanation/Reference: https://www.folkstalk.com/2019/11/mulesoft-integration-and-platform.html

 

NEW QUESTION 30
What is true about the technology architecture of Anypoint VPCs?

  • A. Traffic between Mule applications deployed to an Anypoint VPC and on-premises systems can stay within a private network
  • B. Each CloudHub environment requires a separate Anypoint VPC
  • C. The private IP address range of an Anypoint VPC is automatically chosen by CloudHub
  • D. VPC peering can be used to link the underlying AWS VPC to an on-premises (non AWS) private network

Answer: A

Explanation:
Explanation
https://docs.mulesoft.com/runtime-manager/vpc-connectivity-methods-concept

 

NEW QUESTION 31
Refer to the exhibit. An organization needs to enable access to their customer data from both a mobile app and a web application, which each need access to common fields as well as certain unique fields.
The data is available partially in a database and partially in a 3rd-party CRM system.
What APIs should be created to best fit these design requirements?

A) A Process API that contains the data required by both the web and mobile apps, allowing these applications to invoke it directly and access the data they need thereby providing the flexibility to add more fields in the future without needing API changes

B) One set of APIs (Experience API, Process API, and System API) for the web app, and another set for the mobile app

C) Separate Experience APIs for the mobile and web app, but a common Process API that invokes separate System APIs created for the database and CRM system

D) A common Experience API used by both the web and mobile apps, but separate Process APIs for the web and mobile apps that interact with the database and the CRM System

  • A. Option D
  • B. Option C
  • C. Option A
  • D. Option B

Answer: B

 

NEW QUESTION 32
What Mule application can have API policies applied by Anypoint Platform to the endpoint exposed by that Mule application?
A) A Mule application that accepts requests over HTTP/1.x

B) A Mule application that accepts JSON requests over TCP but is NOT required to provide a response

C) A Mute application that accepts JSON requests over WebSocket

D) A Mule application that accepts gRPC requests over HTTP/2

  • A. Option D
  • B. Option B
  • C. Option A
  • D. Option C

Answer: B

 

NEW QUESTION 33
An API implementation is deployed on a single worker on CloudHub and invoked by external API clients (outside of CloudHub). How can an alert be set up that is guaranteed to trigger AS SOON AS that API implementation stops responding to API invocations?

  • A. Implement a heartbeat/health check within the API and invoke it from outside the Anypoint Platform and alert when the heartbeat does not respond
  • B. Create an alert for when the API receives no requests within a specified time period
  • C. Configure a "worker not responding" alert in Anypoint Runtime Manager
  • D. Handle API invocation exceptions within the calling API client and raise an alert from that API client when the API Is unavailable

Answer: D

 

NEW QUESTION 34
Refer to the exhibit.

what is true when using customer-hosted Mule runtimes with the MuleSoft-hosted Anypoint Platform control plane (hybrid deployment)?

  • A. Anypoint Runtime Manager initiates a network connection to a Mule runtime in order to deploy Mule applications
  • B. Anypoint Runtime Manager automatically ensures HA in the control plane by creating a new Mule runtime instance in case of a node failure
  • C. The MuleSoft-hosted Shared Load Balancer can be used to load balance API invocations to the Mule runtimes
  • D. API implementations can run successfully in customer-hosted Mule runtimes, even when they are unable to communicate with the control plane

Answer: B

 

NEW QUESTION 35
When could the API data model of a System API reasonably mimic the data model exposed by the corresponding backend system, with minimal improvements over the backend system's data model?

  • A. When the System API can be assigned to a bounded context with a corresponding data model
  • B. When a pragmatic approach with only limited isolation from the backend system is deemed appropriate
  • C. When the corresponding backend system is expected to be replaced in the near future
  • D. When there is an existing Enterprise Data Model widely used across the organization

Answer: B

 

NEW QUESTION 36
What should be ensured before sharing an API through a public Anypoint Exchange portal?

  • A. The API should be secured using one of the supported authentication/authorization mechanisms to ensure that data is not compromised
  • B. The API should be functional with at least an initial implementation deployed and accessible for users to interact with
  • C. The users needing access to the API should be added to the appropriate role in Anypoint Platform
  • D. The visibility level of the API instances of that API that need to be publicly accessible should be set to public visibility

Answer: A

 

NEW QUESTION 37
An organization makes a strategic decision to move towards an IT operating model that emphasizes consumption of reusable IT assets using modern APIs (as defined by MuleSoft).
What best describes each modern API in relation to this new IT operating model?

  • A. Each modern API must be easy to consume, so should avoid complex authentication mechanisms such as SAML or JWT D
  • B. Each modern API has its own software development lifecycle, which reduces the need for documentation and automation
  • C. Each modem API must be treated like a product and designed for a particular target audience (for instance, mobile app developers)
  • D. Each modern API must be REST and HTTP based

Answer: C

 

NEW QUESTION 38
A System API is designed to retrieve data from a backend system that has scalability challenges. What API policy can best safeguard the backend system?

  • A. Client ID enforcement
  • B. SLA-based rate limiting
  • C. Auth 2 token enforcement
  • D. IPwhitelist

Answer: B

Explanation:
Explanation
https://dzone.com/articles/how-to-secure-apis

 

NEW QUESTION 39
The responses to some HTTP requests can be cached depending on the HTTP verb used in the request.
According to the HTTP specification, for what HTTP verbs is this safe to do?

  • A. GET, OPTIONS, HEAD
  • B. GET, PUT, OPTIONS
  • C. PUT, POST, DELETE
  • D. GET, HEAD, POST

Answer: A

Explanation:
Explanation
http://restcookbook.com/HTTP%20Methods/idempotency/

 

NEW QUESTION 40
......

Sep-2021 Latest ActualTestsQuiz MCPA-Level-1 Exam Dumps with PDF and Exam Engine: https://www.actualtestsquiz.com/MCPA-Level-1-test-torrent.html

Related Blogs

more
MuleSoft MCPA-Level-1 Certification Practice Exam

ActualTestsQuiz offers best test Quiz materials to help all candidates pass exams and obtain certification successfully all over the world. If you are eager to obtain a certification, we will be your best select.

Latest Update

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 ACTUALTESTSQUIZ.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor. Privacy Policy