• Home
  • Articles
  • Ultimate Guide to the MCD-Level-2 - Latest Dec 22, 2023 Edition Available Now [Q37-Q53]

Ultimate Guide to the MCD-Level-2 - Latest Dec 22, 2023 Edition Available Now [Q37-Q53]

Share

Ultimate Guide to the MCD-Level-2 - Latest Dec 22, 2023 Edition Available Now

2023 Updated Verified Pass MCD-Level-2 Exam - Real Questions and Answers

NEW QUESTION # 37
An order processing system is composed of multiple Mule application responsible for warehouse, sales and shipping. Each application communication using Anypoint MQ. Each message must be correlated against the original order ID for observability and tracing.
How should a developer propagate the order ID as the correlation ID across each message?

  • A. Set a custom Anypoint MQ user property to propagate the order ID and set the correlation ID in the receiving applications.
  • B. Use the default correlation ID, Anypoint MQ will sutomatically propagate it.
  • C. Use the underlying HTTP request of Anypoint MQ to set the 'X-CORRELATION_ID' header to the order ID
  • D. Wrap all Anypoint MQ Publish operations within a With CorrelationID scope from the Tracing module, setting the correlation ID to the order ID

Answer: D

Explanation:
Explanation
To propagate the order ID as the correlation ID across each message using Anypoint MQ, the developer should wrap all Anypoint MQ Publish operations within a With CorrelationID scope from the Tracing module, setting the correlation ID to the order ID. The With CorrelationID scope allows setting a custom correlation ID for any event that occurs within it. The Tracing module also enables distributed tracing across different Mule applications and services using Anypoint Monitoring. References:
https://docs.mulesoft.com/tracing-module/1.0/tracing-module-reference#with-correlation-id-scope
https://docs.mulesoft.com/tracing-module/1.0/tracing-module-concepts


NEW QUESTION # 38
An API has been developed and deployed to CloudHub Among the policies applied to this API is an allowlist of IP addresses. A developer wants to run a test in Anypoint Studio and does not want any policies applied because their workstation is not included in the allowlist.
What must the developer do in order to run this test locally without the policies applied?

  • A. Pass in the runtime parameter ''-Danpow.platform.gatekeeper=disabled''
  • B. Run the test as-s, with no changes because the Studio runtime will not attempt to connect to API Manager
  • C. Deactivate the API in API Manager so the Autodiscovery element will not find the application when it runs in Studio
  • D. Create a properties file specifically for local development and set the API instance ID to a value that is not used in API Manager

Answer: D

Explanation:
Explanation
To run a test locally without the policies applied, the developer should create a properties file specifically for local development and set the API instance ID to a value that is not used in API Manager. This way, the developer can use different configuration properties for different environments and avoid triggering API autodiscovery when running tests locally. API autodiscovery is a mechanism that associates an API implementation with its corresponding API specification and policies in API Manager based on its API instance ID. By setting this ID to a value that does not exist in API Manager, the developer can prevent API autodiscovery from finding and applying any policies to the local test. References:
https://docs.mulesoft.com/api-manager/2.x/api-auto-discovery-new-concept#configuring-api-autodiscovery
https://docs.mulesoft.com/mule-runtime/4.3/configuring-properties


NEW QUESTION # 39
The flow is invoicing a target API. The API's protocol is HTTPS. The TLS configuration in the HTTP Request Configuration global element is set to None. A web client submits a request to
http:localhost:8081/vehicles.

If the certificate of the target API is signed by a certificate authority (CA), what is true about the HTTP Request operation when the flow executes?

  • A. The HTTP Request operation will always fail regardless of the CA
  • B. The HTTP Request operation will succeed if the CA'S certificate is present in the JRE's default keystore
  • C. The HTTP Request operation will always succeed regardless of the CA
  • D. The HTTP Request operation will succeed if the CA's certificate is present in the JRE's default truststore.

Answer: D

Explanation:
Explanation
The HTTP Request operation will use the default truststore of the JRE to validate the certificate of the target API. If the CA's certificate is present in the truststore, the operation will succeed. Otherwise, it will fail with a handshake exception. References: https://docs.mulesoft.com/mule-runtime/4.3/tls-configuration#tls-default


NEW QUESTION # 40
A Mule application deployed to multiple Cloudhub 2.0 replicas needs to temporarily persist large files over
10MB between flow executions, and routinely needs to query whether the file data exists on separate executions.
How can this be achieved?

  • A. Store the key and full contents of the file in an Object Store
  • B. Store the key and full contents of the file, caching the filename and location between requests
  • C. Use an in-memory Object Store
  • D. Store the contents of the file on separate storage, and store the key and location of the file Object using Object Store v2

Answer: D

Explanation:
Explanation
To temporarily persist large files over 10MB between flow executions, and routinely query whether the file data exists on separate executions, the developer should store the contents of the file on separate storage, and store the key and location of the file object using Object Store v2. This way, the developer can avoid storing large files in memory or exceeding the size limit of Object Store v2 (10MB per object). The developer can also use Object Store v2 operations to query, retrieve, or delete the file object by its key. References:
https://docs.mulesoft.com/object-store/osv2-faq#can-i-store-files-in-object-store-v2


NEW QUESTION # 41
Refer to the exhibit.

Based on the code snippet, schema,json file, and payload below, what is the outcome of the given code snippet when a request is sent with the payload?

  • A. The Mule flow will execute successfully with status code 200, and the response will be the JSON sent in request
  • B. The Mule flow will throw the exception 'JSON:SCHEMA_NOT_HONOURED
  • C. The Mule flow will execute successfully with status code 204
  • D. The Mule flow will execute successfully with status code 200m and a response will display the message
    '' Age in years which must equal to or greater than zero.''

Answer: B

Explanation:
Explanation
Based on the code snippet, schema.json file, and payload below, the outcome of the given code snippet when a request is sent with the payload is that the Mule flow will throw the exception
'JSON:SCHEMA_NOT_HONOURED'. This is because the payload does not conform to the schema.json file, which specifies that age must be a number greater than or equal to zero. The payload has age as a string with a negative value, which violates the schema. Therefore, the validate-schema operation throws an error with type
'JSON:SCHEMA_NOT_HONOURED'. References:
https://docs.mulesoft.com/json-module/1.1/json-validate-schema


NEW QUESTION # 42
A scatter-gather router is configured with four routes:Route A, B, C and D.
Route C false.

  • A. Error,errorMessage,payload.failures['2']
  • B. Payload ['2']
  • C. Error,errorMesage.payload.results ['2']
  • D. Payload failures['2']

Answer: A

Explanation:
Explanation
The result of accessing route C failure is Error,errorMessage,payload.failures['2']. This is because a scatter-gather router returns an aggregated message that contains an array of results from each route and an array of failures from each route. The failures array contains error objects with information about each failed route execution. To access route C failure, which is the third route (index 2), the developer needs to use Error.errorMessage.payload.failures['2'] expression. References:
https://docs.mulesoft.com/mule-runtime/4.3/scatter-gather-reference#scatter-gather-output


NEW QUESTION # 43
Which command is used to convert a JKS keystore to PKCS12?

  • A. Keytool-importkeystore -srckeystore keystore jks-srcstoretype PKCS12 -destkeystore keystore.p12
    -deststoretype JKS
  • B. Keytool-importkeystore -srckeystore keystore p12-srcstoretype PKCS12 -destkeystore keystore.jks
    -deststoretype JKS
  • C. Keytool-importkeystore -srckeystore keystore p12-srcstoretype JKS -destkeystore keystore.p12
    -deststoretype PKCS12
  • D. Keytool-importkeystore -srckeystore keystore jks-srcstoretype JKS -destkeystore keystore.p13
    -deststoretype PKCS12

Answer: C

Explanation:
Explanation
To convert a JKS keystore to PKCS12, the developer needs to use the keytool-importkeystore command with the following options: -srckeystore keystore.jks -srcstoretype JKS -destkeystore keystore.p12 -deststoretype PKCS12. This command imports all entries from a source JKS keystore (keystore.jks) into a destination PKCS12 keystore (keystore.p12). References:
https://docs.oracle.com/en/java/javase/11/tools/keytool.html#GUID-5990A2E4-78E3-47B7-AE75-6D182625954


NEW QUESTION # 44
Refer to the exhibit.

A Mule application pom.xml configures the Maven Resources plugin to exclude parsing binary files in the project's src/main/resources/certs directory.
Which configuration of this plugin achieves a successful build?

  • A.
  • B.
  • C.
  • D.

Answer: C

Explanation:
Explanation
To configure the Maven Resources plugin to exclude parsing binary files in the project's src/main/resources/certs directory, option C should be used. This option specifies that any files with .cer or .jks extensions under the certs directory should be excluded from filtering. Filtering is a process of replacing placeholders with actual values in resource files during the build process. Binary files should not be filtered because they may become corrupted or unusable. References:
https://maven.apache.org/plugins/maven-resources-plugin/examples/filter.html
https://maven.apache.org/plugins/maven-resources-plugin/examples/include-exclude.html


NEW QUESTION # 45
Refer to the exhibit.

A developer generates the base scaffolding for an API in Anypoint Studio.
Which HTTP status code is returned while testing using the API Kit console if no values are entered in client-secret?

  • A. HTTP status code:500
  • B. HTTP status code:403
  • C. HTTP status code:400
  • D. HTTP status code:200

Answer: B

Explanation:
Explanation
Based on the code snippet and schema.json file below, when testing using the API Kit console if no values are entered in client-secret, HTTP status code 403 (FORBIDDEN) is returned. This is because client-secret is defined as a required header parameter in schema.json file, which means that it must be present in every request. If no values are entered in client-secret, then it is equivalent to omitting this header parameter, which violates the schema and causes APIKit Router to return HTTP status code 403. References:
https://docs.mulesoft.com/apikit/4.x/apikit-4-headers


NEW QUESTION # 46
Which statement is true about using mutual TLS to secure an application?

  • A. Mutual TLS requires a hardware security module to be used
  • B. Mutual TLS increases the encryption strength versus server-side TLS alone
  • C. Mutual TLS ensures only authorized end users are allowed to access an endpoint
  • D. Mutual TLS authenticates the identity of the server before the identity of the client

Answer: D

Explanation:
Explanation
Mutual TLS (mTLS) is an extension of TLS that requires both parties (client and server) to present their certificates to each other during the handshake process. This way, both parties can verify each other's identity and establish a secure connection. The authentication of the server happens before the authentication of the client, as the server sends its certificate first and then requests the client's certificate. References:
https://docs.mulesoft.com/mule-runtime/4.3/tls-configuration#mutual-authentication


NEW QUESTION # 47
When a client and server are exchanging messages during the mTLS handshake, what is being agreed on during the cipher suite exchange?

  • A. A protocol
  • B. The Public key format
  • C. An encryption algorithm
  • D. The TLS version

Answer: C

Explanation:
Explanation
A cipher suite is a set of cryptographic algorithms that are used to secure the communication between a client and a server. A cipher suite consists of four components: a key exchange algorithm, an authentication algorithm, an encryption algorithm, and a message authentication code (MAC) algorithm. During the cipher suite exchange, the client and the server agree on which encryption algorithm to use for encrypting and decrypting the data. References: https://docs.mulesoft.com/mule-runtime/4.3/tls-configuration#cipher-suites


NEW QUESTION # 48
A Mule application for processing orders must log the order ID for every log message output.
What is a best practice to enrich every log message with the order ID?

  • A. Create a custom XML SDK component to wrap the logger processor and automatically add the order ID within the connector
  • B. Set a flow variable and edit the log4/2.xml file to output the variable as part of the message pattern
  • C. Use flow variables within every logger processor to log the order ID
  • D. Use the Tracing module to set logging variables with a Mapped Diagnostic Context

Answer: D

Explanation:
Explanation
To enrich every log message with the order ID, the developer should use the Tracing module to set logging variables with a Mapped Diagnostic Context (MDC). The Tracing module allows adding custom key-value pairs to log messages using MDC variables. The developer can use Set Logging Variables operation to set the order ID as an MDC variable and then use it in any logger processor within the same thread or event.
References: https://docs.mulesoft.com/tracing-module/1.0/tracing-module-reference#set-logging-variables


NEW QUESTION # 49
Which configurations are required for HTTP Listener to enable mTLS authentication?

  • A. Set an appropriate truststore configuration and reconnection strategy for the listener
  • B. Set an appropriate reconnection strategy and use persistent connections for the listener
  • C. Set an appropriate keystore and truststore configuration for the listener
  • D. Set an appropriate keystore configuration and use persistent connections for the listener

Answer: C

Explanation:
Explanation
To enable mTLS authentication for HTTP Listener, the developer needs to set an appropriate keystore and truststore configuration for the listener. The keystore contains the certificate and private key of the Mule application that are used to prove its identity to clients. The truststore contains the certificates of trusted clients that are allowed to access the Mule application. References:
https://docs.mulesoft.com/mule-runtime/4.3/tls-configuration#mutual-authentication


NEW QUESTION # 50
A Mule application need to invoice an API hosted by an external system to initiate a process. The external API takes anywhere between one minute and 24 hours to compute its process.
Which implementation should be used to get response data from the external API after it completes processing?

  • A. Use an HTTP Connector inside Async scope to invoice the API and wait for a response
  • B. Expose an HTTP callback API in Mule and register it with the external system
  • C. Use an HTTP Connector to invoke the API and wait for a response
  • D. Use a Scheduler to check for a response every minute

Answer: B

Explanation:
Explanation
To get response data from the external API after it completes processing, the developer should expose an HTTP callback API in Mule and register it with the external system. This way, the external API can invoke the callback API with the response data when it is ready, instead of making the Mule application wait for a long time or poll for a response repeatedly. References:
https://docs.mulesoft.com/mule-runtime/4.3/http-listener-ref#callback


NEW QUESTION # 51
What is the MuleSoft recommended method to encrypt sensitive property data?

  • A. The encryption key should be identical for all environments and the sensitive data should be different for each environment
  • B. The encryption key should be different for each environment and the sensitive data should be the same for all environments
  • C. The encryption key and sensitive data should be different for each environment
  • D. The encryption key should be identical for all environments

Answer: C

Explanation:
Explanation
The MuleSoft recommended method to encrypt sensitive property data is to use the Secure Properties Tool that comes with Anypoint Studio. This tool allows encrypting properties files with a secret key and then decrypting them at runtime using the same key. The encryption key and sensitive data should be different for each environment to ensure security and avoid accidental exposure of sensitive data. References:
https://docs.mulesoft.com/mule-runtime/4.3/secure-configuration-properties


NEW QUESTION # 52
A company has been using CI/CD. Its developers use Maven to handle build and deployment activities.
What is the correct sequence of activities that takes place during the Maven build and deployment?

  • A. Validation, initialize, compile, test, package, install verify, deploy
  • B. Validate, initialize, compile, package, test, install, verify, verify, deploy
  • C. Validate, initialize, compile, test package, verify, install, deploy
  • D. Initialize, validate, compute, test, package, verify, install, deploy

Answer: C

Explanation:
Explanation
The correct sequence of activities that takes place during the Maven build and deployment is validate, initialize, compile, test package, verify, install, deploy. These are Maven lifecycle phases that define a sequence of goals to execute during a build process. Each phase represents a stage in the build lifecycle and can have zero or more goals bound to it. References:
https://maven.apache.org/guides/introduction/introduction-to-the-lifecycle.html


NEW QUESTION # 53
......

Dumps Moneyack Guarantee - MCD-Level-2 Dumps Approved Dumps: https://www.examslabs.com/MuleSoft/MuleSoft-Certified-Developer/best-MCD-Level-2-exam-dumps.html

Related Articles

more
Go To MCD-Level-2 Questions