• Home
  • Articles
  • MCPA-Level-1 Free Certification Exam Material from ExamsLabs with 97 Questions [Q28-Q52]

MCPA-Level-1 Free Certification Exam Material from ExamsLabs with 97 Questions [Q28-Q52]

Share

MCPA-Level-1 Free Certification Exam Material from ExamsLabs with 97 Questions

Use Real MCPA-Level-1 - 100% Cover Real Exam Questions


MuleSoft MCPA-Level-1 (MuleSoft Certified Platform Architect - Level 1) certification exam is a highly sought-after certification for IT professionals who want to showcase their expertise in designing and building integration solutions using MuleSoft's Anypoint Platform. The MCPA-Level-1 certification exam is designed to test the candidate's knowledge and skills in designing, building, and managing MuleSoft integrations, APIs, and microservices.

 

NEW QUESTION # 28
Refer to the exhibit.

What is a valid API in the sense of API-led connectivity and application networks?
A) Java RMI over TCP

B) Java RMI over TCP

C) CORBA over HOP

D) XML over UDP

  • A. Option B
  • B. Option D
  • C. Option A
  • D. Option C

Answer: B


NEW QUESTION # 29
A set of tests must be performed prior to deploying API implementations to a staging environment. Due to data security and access restrictions, untested APIs cannot be granted access to the backend systems, so instead mocked data must be used for these tests. The amount of available mocked data and its contents is sufficient to entirely test the API implementations with no active connections to the backend systems. What type of tests should be used to incorporate this mocked data?

  • A. Integration tests
  • B. Functional tests (Blackbox)
  • C. Unit tests (Whitebox)
  • D. Performance tests

Answer: C

Explanation:
Correct answer: Unit tests (Whitebox)
*****************************************
Reference:
As per general IT testing practice and MuleSoft recommended practice, Integration and Performance tests should be done on full end to end setup for right evaluation. Which means all end systems should be connected while doing the tests. So, these options are OUT and we are left with Unit Tests and Functional Tests.
As per attached reference documentation from MuleSoft:
Unit Tests - are limited to the code that can be realistically exercised without the need to run it inside Mule itself. So good candidates are Small pieces of modular code, Sub Flows, Custom transformers, Custom components, Custom expression evaluators etc.
Functional Tests - are those that most extensively exercise your application configuration. In these tests, you have the freedom and tools for simulating happy and unhappy paths. You also have the possibility to create stubs for target services and make them success or fail to easily simulate happy and unhappy paths respectively.
As the scenario in the question demands for API implementation to be tested before deployment to Staging and also clearly indicates that there is enough/ sufficient amount of mock data to test the various components of API implementations with no active connections to the backend systems, Unit Tests are the one to be used to incorporate this mocked data.


NEW QUESTION # 30
An organization is deploying their new implementation of the OrderStatus System API to multiple workers in CloudHub. This API fronts the organization's on-premises Order Management System, which is accessed by the API implementation over an IPsec tunnel.
What type of error typically does NOT result in a service outage of the OrderStatus System API?

  • A. The AWS region goes offline with a major network failure to the relevant AWS data centers
  • B. The Order Management System is Inaccessible due to a network outage in the organization's on-premises data center
  • C. A CloudHub worker fails with an out-of-memory exception
  • D. API Manager has an extended outage during the initial deployment of the API implementation

Answer: C

Explanation:
Correct answer: A CloudHub worker fails with an out-of-memory exception.
*****************************************
>> An AWS Region itself going down will definitely result in an outage as it does not matter how many workers are assigned to the Mule App as all of those in that region will go down. This is a complete downtime and outage.
>> Extended outage of API manager during initial deployment of API implementation will of course cause issues in proper application startup itself as the API Autodiscovery might fail or API policy templates and polices may not be downloaded to embed at the time of applicaiton startup etc... there are many reasons that could cause issues.
>> A network outage onpremises would of course cause the Order Management System not accessible and it does not matter how many workers are assigned to the app they all will fail and cause outage for sure.
The only option that does NOT result in a service outage is if a cloudhub worker fails with an out-of-memory exception. Even if a worker fails and goes down, there are still other workers to handle the requests and keep the API UP and Running. So, this is the right answer.


NEW QUESTION # 31
In which layer of API-led connectivity, does the business logic orchestration reside?

  • A. System Layer
  • B. Process Layer
  • C. Experience Layer

Answer: B

Explanation:
Correct answer: Process Layer
*****************************************
>> Experience layer is dedicated for enrichment of end user experience. This layer is to meet the needs of different API clients/ consumers.
>> System layer is dedicated to APIs which are modular in nature and implement/ expose various individual functionalities of backend systems
>> Process layer is the place where simple or complex business orchestration logic is written by invoking one or many System layer modular APIs So, Process Layer is the right answer.


NEW QUESTION # 32
What Anypoint Connectors support transactions?

  • A. Database, 3MS, HTTP
  • B. Database, VM, File
  • C. Database, JMS, VM
  • D. Database, JMS, VM, SFTP

Answer: C


NEW QUESTION # 33
An API implementation is updated. When must the RAML definition of the API also be updated?

  • A. When the API implementation changes the structure of the request or response messages
  • B. When the API implementation is optimized to improve its average response time
  • C. When the API implementation changes from interacting with a legacy backend system deployed on-premises to a modern, cloud-based (SaaS) system
  • D. When the API implementation is migrated from an older to a newer version of the Mule runtime

Answer: B


NEW QUESTION # 34
An API experiences a high rate of client requests (TPS) vwth small message paytoads. How can usage limits be imposed on the API based on the type of client application?

  • A. Use a rate limiting policy and a client ID enforcement policy, each configured by the client application type
  • B. Use a spike control policy that limits the number of requests for each client application type
  • C. Use an SLA-based rate limiting policy and assign a client application to a matching SLA tier based on its type
  • D. Use a cross-origin resource sharing (CORS) policy to limit resource sharing between client applications, configured by the client application type

Answer: C

Explanation:
Correct answer: Use an SLA-based rate limiting policy and assign a client application to a matching SLA tier based on its type.
*****************************************
>> SLA tiers will come into play whenever any limits to be imposed on APIs based on client type


NEW QUESTION # 35
What is typically NOT a function of the APIs created within the framework called API-led connectivity?

  • A. They can compose data from various sources and combine them with orchestration logic to create higher level value.
  • B. They allow for innovation at the user Interface level by consuming the underlying assets without being aware of how data Is being extracted from backend systems.
  • C. They reduce the dependency on the underlying backend systems by helping unlock data from backend systems In a reusable and consumable way.
  • D. They provide an additional layer of resilience on top of the underlying backend system, thereby insulating clients from extended failure of these systems.

Answer: D

Explanation:
Correct answer: They provide an additional layer of resilience on top of the underlying backend system, thereby insulating clients from extended failure of these systems.
*****************************************
In API-led connectivity,
>> Experience APIs - allow for innovation at the user interface level by consuming the underlying assets without being aware of how data is being extracted from backend systems.
>> Process APIs - compose data from various sources and combine them with orchestration logic to create higher level value
>> System APIs - reduce the dependency on the underlying backend systems by helping unlock data from backend systems in a reusable and consumable way.
However, they NEVER promise that they provide an additional layer of resilience on top of the underlying backend system, thereby insulating clients from extended failure of these systems.
https://dzone.com/articles/api-led-connectivity-with-mule


NEW QUESTION # 36
An API experiences a high rate of client requests (TPS) vwth small message paytoads. How can usage limits be imposed on the API based on the type of client application?

  • A. Use a rate limiting policy and a client ID enforcement policy, each configured by the client application type
  • B. Use a spike control policy that limits the number of requests for each client application type
  • C. Use an SLA-based rate limiting policy and assign a client application to a matching SLA tier based on its type
  • D. Use a cross-origin resource sharing (CORS) policy to limit resource sharing between client applications, configured by the client application type

Answer: C


NEW QUESTION # 37
A System API is designed to retrieve data from a backend system that has scalability challenges. What API policy can best safeguard the backend system?

  • A. Client ID enforcement
  • B. Auth 2 token enforcement
  • C. IPwhitelist
  • D. SLA-based rate limiting

Answer: D

Explanation:
Explanation
https://dzone.com/articles/how-to-secure-apis


NEW QUESTION # 38
What API policy would LEAST likely be applied to a Process API?

  • A. Rate limiting
  • B. Client ID enforcement
  • C. JSON threat protection
  • D. Custom circuit breaker

Answer: C


NEW QUESTION # 39
The implementation of a Process API must change.
What is a valid approach that minimizes the impact of this change on API clients?

  • A. Implement required changes to the Process API implementation so that whenever possible, the Process API's RAML definition remains unchanged
  • B. Postpone changes until API consumers acknowledge they are ready to migrate to a new Process API or API version
  • C. Update the RAML definition of the current Process API and notify API client developers by sending them links to the updated RAML definition
  • D. Implement the Process API changes in a new API implementation, and have the old API implementation return an HTTP status code 301 - Moved Permanently to inform API clients they should be calling the new API implementation

Answer: C


NEW QUESTION # 40
The implementation of a Process API must change.
What is a valid approach that minimizes the impact of this change on API clients?

  • A. Implement the Process API changes in a new API implementation, and have the old API implementation return an HTTP status code 301 - Moved Permanently to inform API clients they should be calling the new API implementation
  • B. Implement required changes to the Process API implementation so that whenever possible, the Process API's RAML definition remains unchanged
  • C. Update the RAML definition of the current Process API and notify API client developers by sending them links to the updated RAML definition
  • D. Postpone changes until API consumers acknowledge they are ready to migrate to a new Process API or API version

Answer: A


NEW QUESTION # 41
Refer to the exhibit.

Three business processes need to be implemented, and the implementations need to communicate with several different SaaS applications.
These processes are owned by separate (siloed) LOBs and are mainly independent of each other, but do share a few business entities. Each LOB has one development team and their own budget In this organizational context, what is the most effective approach to choose the API data models for the APIs that will implement these business processes with minimal redundancy of the data models?
A) Build several Bounded Context Data Models that align with coherent parts of the business processes and the definitions of associated business entities

B) Build distinct data models for each API to follow established micro-services and Agile API-centric practices

C) Build all API data models using XML schema to drive consistency and reuse across the organization

D) Build one centralized Canonical Data Model (Enterprise Data Model) that unifies all the data types from all three business processes, ensuring the data model is consistent and non-redundant

  • A. Option B
  • B. Option D
  • C. Option A
  • D. Option C

Answer: A


NEW QUESTION # 42
What is true about the technology architecture of Anypoint VPCs?

  • A. VPC peering can be used to link the underlying AWS VPC to an on-premises (non AWS) private network
  • B. The private IP address range of an Anypoint VPC is automatically chosen by CloudHub
  • C. Traffic between Mule applications deployed to an Anypoint VPC and on-premises systems can stay within a private network
  • D. Each CloudHub environment requires a separate Anypoint VPC

Answer: B


NEW QUESTION # 43
When must an API implementation be deployed to an Anypoint VPC?

  • A. When the API Implementation must invoke publicly exposed services that are deployed outside of CloudHub in a customer- managed AWS instance
  • B. When the API Implementation must write to a persistent Object Store
  • C. When the API implementation must be deployed to a production AWS VPC using the Mule Maven plugin
  • D. When the API implementation must be accessible within a subnet of a restricted customer-hosted network that does not allow public access

Answer: D


NEW QUESTION # 44
Refer to the exhibit.

what is true when using customer-hosted Mule runtimes with the MuleSoft-hosted Anypoint Platform control plane (hybrid deployment)?

  • A. Anypoint Runtime Manager automatically ensures HA in the control plane by creating a new Mule runtime instance in case of a node failure
  • B. Anypoint Runtime Manager initiates a network connection to a Mule runtime in order to deploy Mule applications
  • C. API implementations can run successfully in customer-hosted Mule runtimes, even when they are unable to communicate with the control plane
  • D. The MuleSoft-hosted Shared Load Balancer can be used to load balance API invocations to the Mule runtimes

Answer: C

Explanation:
Correct answer: API implementations can run successfully in customer-hosted Mule runtimes, even when they are unable to communicate with the control plane.
*****************************************
>> We CANNOT use Shared Load balancer to load balance APIs on customer hosted runtimes

>> For Hybrid deployment models, the on-premises are first connected to Runtime Manager using Runtime Manager agent. So, the connection is initiated first from On-premises to Runtime Manager. Then all control can be done from Runtime Manager.
>> Anypoint Runtime Manager CANNOT ensure automatic HA. Clusters/Server Groups etc should be configured before hand.
Only TRUE statement in the given choices is, API implementations can run successfully in customer-hosted Mule runtimes, even when they are unable to communicate with the control plane. There are several references below to justify this statement.
References:
https://docs.mulesoft.com/runtime-manager/deployment-strategies#hybrid-deployments
https://help.mulesoft.com/s/article/On-Premise-Runtimes-Disconnected-From-US-Control-Plane-June-18th-2018
https://help.mulesoft.com/s/article/Runtime-Manager-cannot-manage-On-Prem-Applications-and-Servers-from-US-Control-Plane-June-25th-2019
https://help.mulesoft.com/s/article/On-premise-Runtimes-Appear-Disconnected-in-Runtime-Manager-May-29th-2018



NEW QUESTION # 45
An organization makes a strategic decision to move towards an IT operating model that emphasizes consumption of reusable IT assets using modern APIs (as defined by MuleSoft).
What best describes each modern API in relation to this new IT operating model?

  • A. Each modern API must be treated like a product and designed for a particular target audience (for instance, mobile app developers)
  • B. Each modern API must be REST and HTTP based.
  • C. Each modern API has its own software development lifecycle, which reduces the need for documentation and automation.
  • D. Each modern API must be easy to consume, so should avoid complex authentication mechanisms such as SAML or JWT.

Answer: A


NEW QUESTION # 46
Refer to the exhibit.

A RAML definition has been proposed for a new Promotions Process API, and has been published to Anypoint Exchange.
The Marketing Department, who will be an important consumer of the Promotions API, has important requirements and expectations that must be met.
What is the most effective way to use Anypoint Platform features to involve the Marketing Department in this early API design phase?
A) Ask the Marketing Department to interact with a mocking implementation of the API using the automatically generated API Console

B) Organize a design workshop with the DBAs of the Marketing Department in which the database schema of the Marketing IT systems is translated into RAML

C) Use Anypoint Studio to Implement the API as a Mule application, then deploy that API implementation to CloudHub and ask the Marketing Department to interact with it

D) Export an integration test suite from API designer and have the Marketing Department execute the tests In that suite to ensure they pass

  • A. Option A
  • B. Option D
  • C. Option B
  • D. Option C

Answer: A

Explanation:
Correct answer: Ask the Marketing Department to interact with a mocking implementation of the API using the automatically generated API Console.
*****************************************
As per MuleSoft's IT Operating Model:
>> API consumers need NOT wait until the full API implementation is ready.
>> NO technical test-suites needs to be shared with end users to interact with APIs.
>> Anypoint Platform offers a mocking capability on all the published API specifications to Anypoint Exchange which also will be rich in documentation covering all details of API functionalities and working nature.
>> No needs of arranging days of workshops with end users for feedback.
API consumers can use Anypoint Exchange features on the platform and interact with the API using its mocking feature. The feedback can be shared quickly on the same to incorporate any changes.


NEW QUESTION # 47
What is true about automating interactions with Anypoint Platform using tools such as Anypoint Platform REST APIs, Anypoint CU, or the Mule Maven plugin?

  • A. By default, the Anypoint CLI and Mule Maven plugin are NOT included in the Mule runtime, so are NOT available to be used by deployed Mule applications
  • B. API policies can be applied to the Anypoint Platform APIs so that ONLY certain LOBs have access to specific functions
  • C. Access to Anypoint Platform APIs and Anypoint CU can be controlled separately through the roles and permissions in Anypoint Platform, so that specific users can get access to Anypoint CLI white others get access to the platform APIs
  • D. Anypoint Platform APIs can ONLY automate interactions with CloudHub, while the Mule Maven plugin is required for deployment to customer-hosted Mule runtimes

Answer: A

Explanation:
Correct answer: By default, the Anypoint CLI and Mule Maven plugin are NOT included in the Mule runtime, so are NOT available to be used by deployed Mule applications
*****************************************
>> We CANNOT apply API policies to the Anypoint Platform APIs like we can do on our custom written API instances. So, option suggesting this is FALSE.
>> Anypoint Platform APIs can be used for automating interactions with both CloudHub and customer-hosted Mule runtimes. Not JUST the CloudHub. So, option opposing this is FALSE.
>> Mule Maven plugin is NOT mandatory for deployment to customer-hosted Mule runtimes. It just helps your CI/CD to have smoother automation. But not a compulsory requirement to deploy. So, option opposing this is FALSE.
>> We DO NOT have any such special roles and permissions on the platform to separately control access for some users to have Anypoint CLI and others to have Anypoint Platform APIs. With proper general roles/permissions (API Owner, Cloudhub Admin etc..), one can use any of the options (Anypoint CLI or Platform APIs). So, option suggesting this is FALSE.
Only TRUE statement given in the choices is that - Anypoint CLI and Mule Maven plugin are NOT included in the Mule runtime, so are NOT available to be used by deployed Mule applications.
Maven is part of Studio or you can use other Maven installation for development.
CLI is convenience only. It is one of many ways how to install app to the runtime.
These are definitely NOT part of anything except your process of deployment or automation.


NEW QUESTION # 48
What is typically NOT a function of the APIs created within the framework called API-led connectivity?

  • A. They can compose data from various sources and combine them with orchestration logic to create higher level value.
  • B. They allow for innovation at the user Interface level by consuming the underlying assets without being aware of how data Is being extracted from backend systems.
  • C. They reduce the dependency on the underlying backend systems by helping unlock data from backend systems In a reusable and consumable way.
  • D. They provide an additional layer of resilience on top of the underlying backend system, thereby insulating clients from extended failure of these systems.

Answer: D

Explanation:
Explanation
https://dzone.com/articles/api-led-connectivity-with-mule


NEW QUESTION # 49
An Anypoint Platform organization has been configured with an external identity provider (IdP) for identity management and client management. What credentials or token must be provided to Anypoint CLI to execute commands against the Anypoint Platform APIs?

  • A. An OAuth 2.0 token generated using the credentials provided by the IdP for client management
  • B. An OAuth 2.0 token generated using the credentials provided by the IdP for identity management
  • C. The credentials provided by the IdP for identity management
  • D. The credentials provided by the IdP for client management

Answer: C

Explanation:
Correct answer: The credentials provided by the IdP for identity management
*****************************************
Reference:
>> There is no support for OAuth 2.0 tokens from client/identity providers to authenticate via Anypoint CLI. Only possible tokens are "bearer tokens" that too only generated using Anypoint Organization/Environment Client Id and Secret from https://anypoint.mulesoft.com/accounts/login. Not the client credentials of client provider. So, OAuth 2.0 is not possible. More over, the token is mainly for API Manager purposes and not associated with a user. You can NOT use it to call most APIs (for example Cloudhub and etc) as per this Mulesoft Knowledge article.
>> The other option allowed by Anypoint CLI is to use client credentials. It is possible to use client credentials of a client provider but requires setting up Connected Apps in client management but such details are not given in the scenario explained in the question.
>> So only option left is to use user credentials from identify provider


NEW QUESTION # 50
What is a key requirement when using an external Identity Provider for Client Management in Anypoint Platform?

  • A. APIs managed by Anypoint Platform must be protected by SAML 2.0 policies
  • B. To invoke OAuth 2.0-protected APIs managed by Anypoint Platform, API clients must submit access tokens issued by that same Identity Provider
  • C. Single sign-on is required to sign in to Anypoint Platform
  • D. The application network must include System APIs that interact with the Identity Provider

Answer: B

Explanation:
Explanation
https://www.folkstalk.com/2019/11/mulesoft-integration-and-platform.html


NEW QUESTION # 51
When must an API implementation be deployed to an Anypoint VPC?

  • A. When the API Implementation must write to a persistent Object Store
  • B. When the API Implementation must invoke publicly exposed services that are deployed outside of CloudHub in a customer- managed AWS instance
  • C. When the API implementation must be accessible within a subnet of a restricted customer-hosted network that does not allow public access
  • D. When the API implementation must be deployed to a production AWS VPC using the Mule Maven plugin

Answer: B


NEW QUESTION # 52
......

Dumps Brief Outline Of The MCPA-Level-1 Exam: https://www.examslabs.com/MuleSoft/MuleSoft-Certified-Platform-Architect/best-MCPA-Level-1-exam-dumps.html

Related Articles

more
Go To MCPA-Level-1 Questions