Free MCPA-Level-1 Exam Braindumps

A System API is designed to retrieve data from a backend system that has scalability challenges. What API policy can best safeguard the backend system?

1. A. IPwhitelist
2. B. SLA-based rate limiting
3. C. Auth 2 token enforcement
4. D. Client ID enforcement

Correct Answer: B

Correct Answer
SLA-based rate limiting
*****************************************
>> Client Id enforement policy is a "Compliance" related NFR and does not help in maintaining the "Quality of Service (QoS)". It CANNOT and NOT meant for protecting the backend systems from scalability challenges.
>> IP Whitelisting and OAuth 2.0 token enforcement are "Security" related NFRs and again does not help in maintaining the "Quality of Service (QoS)". They CANNOT and are NOT meant for protecting the backend systems from scalability challenges.
Rate Limiting, Rate Limiting-SLA, Throttling, Spike Control are the policies that are "Quality of Service (QOS)" related NFRs and are meant to help in protecting the backend systems from getting overloaded.
https://dzone.com/articles/how-to-secure-apis

An organization wants MuleSoft-hosted runtime plane features (such as HTTP load balancing, zero downtime, and horizontal and vertical scaling) in its Azure environment. What runtime plane minimizes the organization's effort to achieve these features?

1. A. Anypoint Runtime Fabric
2. B. Anypoint Platform for Pivotal Cloud Foundry
3. C. CloudHub
4. D. A hybrid combination of customer-hosted and MuleSoft-hosted Mule runtimes

Correct Answer: A

Correct Answer
Anypoint Runtime Fabric
*****************************************
>> When a customer is already having an Azure environment, It is not at all an ideal approach to go with hybrid model having some Mule Runtimes hosted on Azure and some on MuleSoft. This is unnecessary and useless.
>> CloudHub is a Mulesoft-hosted Runtime plane and is on AWS. We cannot customize to point CloudHub to customer's Azure environment.
>> Anypoint Platform for Pivotal Cloud Foundry is specifically for infrastructure provided by Pivotal Cloud Foundry
>> Anypoint Runtime Fabric is right answer as it is a container service that automates the deployment and orchestration of Mule applications and API gateways. Runtime Fabric runs within a customer-managed infrastructure on AWS, Azure, virtual machines (VMs), and bare-metal servers.
-Some of the capabilities of Anypoint Runtime Fabric include:
-Isolation between applications by running a separate Mule runtime per application.
-Ability to run multiple versions of Mule runtime on the same set of resources.
-Scaling applications across multiple replicas.
-Automated application fail-over.
-Application management with Anypoint Runtime Manager.

An Anypoint Platform organization has been configured with an external identity provider (IdP) for identity
management and client management. What credentials or token must be provided to Anypoint CLI to execute commands against the Anypoint Platform APIs?

1. A. The credentials provided by the IdP for identity management
2. B. The credentials provided by the IdP for client management
3. C. An OAuth 2.0 token generated using the credentials provided by the IdP for client management
4. D. An OAuth 2.0 token generated using the credentials provided by the IdP for identity management

Correct Answer: A

Correct Answer
The credentials provided by the IdP for identity management
*****************************************

What is true about the technology architecture of Anypoint VPCs?

1. A. The private IP address range of an Anypoint VPC is automatically chosen by CloudHub
2. B. Traffic between Mule applications deployed to an Anypoint VPC and on-premises systems can staywithin a private network
3. C. Each CloudHub environment requires a separate Anypoint VPC
4. D. VPC peering can be used to link the underlying AWS VPC to an on-premises (non AWS) private network

Correct Answer: B
Correct Answer
Traffic between Mule applications deployed to an Anypoint VPC and on-premises systems can stay within a private network
*****************************************
>> The private IP address range of an Anypoint VPC is NOT automatically chosen by CloudHub. It is chosen by us at the time of creating VPC using thr CIDR blocks.
CIDR Block: The size of the Anypoint VPC in Classless Inter-Domain Routing (CIDR) notation.
For example, if you set it to 10.111.0.0/24, the Anypoint VPC is granted 256 IP addresses from 10.111.0.0 to 10.111.0.255.
Ideally, the CIDR Blocks you choose for the Anypoint VPC come from a private IP space, and should not overlap with any other Anypoint VPC’s CIDR Blocks, or any CIDR Blocks in use in your corporate network.

that each CloudHub environment requires a separate Anypoint VPC. Once an Anypoint VPC is created, we can choose a same VPC by multiple environments. However, it is generally a best and recommended practice to always have seperate Anypoint VPCs for Non-Prod and Prod environments.
>> We use Anypoint VPN to link the underlying AWS VPC to an on-premises (non AWS) private network. NOT VPC Peering.

True or False. We should always make sure that the APIs being designed and developed are self-servable even if it needs more man-day effort and resources.

1. A. FALSE
2. B. TRUE

Correct Answer: B

Correct Answer
TRUE
*****************************************
>> As per MuleSoft proposed IT Operating Model, designing APIs and making sure that they are discoverable and self-servable is VERY VERY IMPORTANT and decides the success of an API and its application network.