[Q37-Q60] MuleSoft-Platform-Architect-I無料更新100%試験合格率保証 [2025]

Share

MuleSoft-Platform-Architect-I無料更新100%試験合格率保証 [2025]

[2025年03月] 認証されたSalesforce試験問題集でMuleSoft-Platform-Architect-I試験学習ガイド


Salesforce MuleSoft-Platform-Architect-I 認定試験の出題範囲:

トピック出題範囲
トピック 1
  • Meeting API Quality Goals: This topic focuses on designing resilience strategies, selecting appropriate caching and OS usage scenarios, and describing horizontal scaling benefits.
トピック 2
  • Monitoring and Analyzing Application Networks: It discusses Anypoint Platform components for data generation, collected metrics, and key alerts. This topic also includes specifying alerts to define Mule applications.
トピック 3
  • Deploying API Implementations to CloudHub: Understanding Object Store usage, selecting worker sizes, predicting app reliability and performance, and comparing load balancers. Avoiding single points of failure in deployments is also its sub-topic.
トピック 4
  • Designing APIs Using System, Process, and Experience Layers: Identifying suitable APIs for business processes, assigning them according to functional focus, and recommending data model approaches are its sub-topics.
トピック 5
  • Governing Web APIs on Anypoint Platform: This topic includes sub-topics related to managing API instances and environments, selecting API policies, enforcing API policies, securing APIs, and understanding OAuth 2.0 relationships.
トピック 6
  • Explaining Application Network Basics: This topic includes sub-topics related to identifying and differentiating between technologies for API-led connectivity, describing the role and characteristics of web APIs, assigning APIs to tiers, and understanding Anypoint Platform components.

 

質問 # 37
An organization wants to create a Center for Enablement (C4E). The IT director schedules a series of meetings with IT senior managers.
What should be on the agenda of the first meeting?

  • A. Explore API monetization options based on identified use cases through MuleSoft
  • B. Define C4E objectives, mission statement, guiding principles, a
  • C. A walk through of common-services best practices for logging, auditing, exception handling, caching, security via policy, and rate limiting/throttling via policy
  • D. Specify operating model for the MuleSoft Integrations division

正解:B

解説:
In the initial meeting for establishing a Center for Enablement (C4E), it's essential to lay the foundational vision, objectives, and guiding principles for the team. Here's why this is crucial:
Clear Vision and Mission:
Defining the mission statement and objectives at the start ensures alignment within the organization and clarifies the C4E's role in supporting API-led development and integration practices.
Guiding Principles:
Establishing guiding principles will help the C4E maintain consistent practices and strategies across projects. This serves as a framework for decisions and fosters shared understanding among IT leaders and stakeholders.
of Correct Answer (A):
By prioritizing the C4E's objectives and mission, the organization builds a solid foundation, paving the way for subsequent meetings focused on technical standards, processes, and operating models.
of Incorrect Options:
Option B (API monetization) and Option C (common services best practices) are specific topics better suited for later discussions.
Option D (specifying the operating model) is an important step but typically follows the establishment of the C4E's objectives and vision.
Reference
For more on C4E objectives and foundational setup, refer to MuleSoft's documentation on establishing a C4E and the roles and mission statements recommended for such initiatives.


質問 # 38
Refer to the exhibit.

A developer is building a client application to invoke an API deployed to the STAGING environment that is governed by a client ID enforcement policy.
What is required to successfully invoke the API?

  • A. The client ID and secret obtained from Anypoint Exchange for the API instance in the STAGING environment
  • B. The client ID and secret for the Anypoint Platform account owning the API in the STAGING environment
  • C. A valid OAuth token obtained from Anypoint Platform and its associated client ID and secret
  • D. The client ID and secret for the Anypoint Platform account's STAGING environment

正解:A

解説:
Correct Answer : The client ID and secret obtained from Anypoint Exchange for the API instance in the STAGING environment
*****************************************
>> We CANNOT use the client ID and secret of Anypoint Platform account or any individual environments for accessing the APIs
>> As the type of policy that is enforced on the API in question is "Client ID Enforcment Policy", OAuth token based access won't work.
Right way to access the API is to use the client ID and secret obtained from Anypoint Exchange for the API instance in a particular environment we want to work on.
Reference:
Managing API instance Contracts on API Manager
https://docs.mulesoft.com/api-manager/1.x/request-access-to-api-task
https://docs.mulesoft.com/exchange/to-request-access
https://docs.mulesoft.com/api-manager/2.x/policy-mule3-client-id-based-policies


質問 # 39
Once an API Implementation is ready and the API is registered on API Manager, who should request the access to the API on Anypoint Exchange?

  • A. API Client
  • B. API Consumer
  • C. Both
  • D. None

正解:B

解説:
Correct Answer : API Consumer
*****************************************
>> API clients are piece of code or programs that use the client credentials of API consumer but does not directly interact with Anypoint Exchange to get the access
>> API consumer is the one who should get registered and request access to API and then API client needs to use those client credentials to hit the APIs So, API consumer is the one who needs to request access on the API from Anypoint Exchange


質問 # 40
What is true about where an API policy is defined in Anypoint Platform and how it is then applied to API instances?

  • A. The API policy Is defined In API Manager for a specific API Instance, and then ONLY applied to the specific API instance
  • B. The API policy Is defined in API Manager and then automatically applied to ALL API instances
  • C. The API policy Is defined In Runtime Manager as part of the API deployment to a Mule runtime, and then ONLY applied to the specific API Instance
  • D. The API policy is defined in API Manager, and then applied to ALL API instances in the specified environment

正解:A

解説:
Correct Answer : The API policy is defined in API Manager for a specific API instance, and then ONLY applied to the specific API instance.
*****************************************
>> Once our API specifications are ready and published to Exchange, we need to visit API Manager and register an API instance for each API.
>> API Manager is the place where management of API aspects takes place like addressing NFRs by enforcing policies on them.
>> We can create multiple instances for a same API and manage them differently for different purposes.
>> One instance can have a set of API policies applied and another instance of same API can have different set of policies applied for some other purpose.
>> These APIs and their instances are defined PER environment basis. So, one need to manage them seperately in each environment.
>> We can ensure that same configuration of API instances (SLAs, Policies etc..) gets promoted when promoting to higher environments using platform feature. But this is optional only. Still one can change them per environment basis if they have to.
>> Runtime Manager is the place to manage API Implementations and their Mule Runtimes but NOT APIs itself. Though API policies gets executed in Mule Runtimes, We CANNOT enforce API policies in Runtime Manager. We would need to do that via API Manager only for a cherry picked instance in an environment.
So, based on these facts, right statement in the given choices is - "The API policy is defined in API Manager for a specific API instance, and then ONLY applied to the specific API instance".


質問 # 41
Due to a limitation in the backend system, a system API can only handle up to 500 requests per second. What is the best type of API policy to apply to the system API to avoid overloading the backend system?

  • A. HTTP caching
  • B. Rate limiting - SLA based
  • C. Rate limiting
  • D. Spike control

正解:D

解説:
Correct Answer : Spike control
*****************************************
>> First things first, HTTP Caching policy is for purposes different than avoiding the backend system from overloading. So this is OUT.
>> Rate Limiting and Throttling/ Spike Control policies are designed to limit API access, but have different intentions.
>> Rate limiting protects an API by applying a hard limit on its access.
>> Throttling/ Spike Control shapes API access by smoothing spikes in traffic.
That is why, Spike Control is the right option.


質問 # 42
To minimize operation costs, a customer wants to use a CloudHub 1.0 solution. The customer's requirements are:
* Separate resources with two Business groups
* High-availability (HA) for all APIs
* Route traffic via Dedicated load balancer (DLBs)
* Separate environments into production and non-production
Which solution meets the customer's needs?

  • A. One production and one non-production Virtual Private Claud (VPC).
    Configure subnet to differentiate between business groups.
    Allocate maximum CIDR per VPCs to make it easier to add Child groups.
    Span VPC to cover three availability zones.
  • B. One production and one non-production Virtual Private Cloud (VPC) per Business group.
    Minimize CIDR aligning with projected application total.
    Divide availability zones during deployment of APIs for HA.
  • C. One production and one non-production Virtual Private Cloud (VPC) per Business group.
    Minimize CIDR aligning with projected application total.
    Choose a MuleSoft CloudHub 1.0 region with multiple availability zones.
    Deploy multiple workers for HA,
  • D. One production and one non-production Virtual Private Cloud (VPC).
    Use availability zones to differentiate between Business groups.
    Allocate maximum CIDR per VPCs to ensure HA across availability zones

正解:C

解説:
Understanding the Requirements:
Business Groups: The solution must support two business groups, which typically require separate VPCs for logical separation.
High Availability (HA): Requires deploying resources across multiple availability zones.
Dedicated Load Balancer (DLB): Traffic should be routed via DLBs, which operate within VPCs on CloudHub.
Separate Environments: There needs to be separation between production and non-production environments.
Evaluating the Options:
Option A: Using a single production and non-production VPC and differentiating business groups via availability zones is not ideal as it does not provide full separation for each business group, and using maximum CIDR allocation is wasteful.
Option B (Correct Answer): Creating separate production and non-production VPCs per business group with minimized CIDR blocks, multiple availability zones, and multiple workers per application for HA meets all requirements effectively.
Option C: While this option separates VPCs per business group, it does not fully address the requirement for HA across availability zones by specifying multi-zone deployment only during API deployment, which may not guarantee redundancy.
Option D: Configuring subnets to differentiate business groups within a single production and non-production VPC does not fully separate the business groups, which is a requirement.
Conclusion:
Option B is the best choice as it meets the requirements for high availability, business group separation, and cost efficiency by using minimized CIDR allocations and deploying multiple workers across availability zones.
For further reference, refer to MuleSoft's documentation on VPC configuration and high availability deployment strategies.


質問 # 43
Refer to the exhibit.
What is the best way to decompose one end-to-end business process into a collaboration of Experience, Process, and System APIs?
A) Handle customizations for the end-user application at the Process API level rather than the Experience API level B) Allow System APIs to return data that is NOT currently required by the identified Process or Experience APIs C) Always use a tiered approach by creating exactly one API for each of the 3 layers (Experience, Process and System APIs) D) Use a Process API to orchestrate calls to multiple System APIs, but NOT to other Process APIs

  • A. Option D
  • B. Option A
  • C. Option B
  • D. Option C

正解:C

解説:
Correct Answe r: Allow System APIs to return data that is NOT currently required by the identified Process or Experience APIs.
*****************************************
>> All customizations for the end-user application should be handled in "Experience API" only. Not in Process API
>> We should use tiered approach but NOT always by creating exactly one API for each of the 3 layers. Experience APIs might be one but Process APIs and System APIs are often more than one. System APIs for sure will be more than one all the time as they are the smallest modular APIs built in front of end systems.
>> Process APIs can call System APIs as well as other Process APIs. There is no such anti-design pattern in API-Led connectivity saying Process APIs should not call other Process APIs.
So, the right answer in the given set of options that makes sense as per API-Led connectivity principles is to allow System APIs to return data that is NOT currently required by the identified Process or Experience APIs. This way, some future Process APIs can make use of that data from System APIs and we need NOT touch the System layer APIs again and again.


質問 # 44
Refer to the exhibit.

What is the best way to decompose one end-to-end business process into a collaboration of Experience, Process, and System APIs?
A) Handle customizations for the end-user application at the Process API level rather than the Experience API level

B) Allow System APIs to return data that is NOT currently required by the identified Process or Experience APIs

C) Always use a tiered approach by creating exactly one API for each of the 3 layers (Experience, Process and System APIs)

D) Use a Process API to orchestrate calls to multiple System APIs, but NOT to other Process APIs

  • A. Option D
  • B. Option A
  • C. Option B
  • D. Option C

正解:C

解説:
Correct Answer : Allow System APIs to return data that is NOT currently required by the identified Process or Experience APIs.
*****************************************
>> All customizations for the end-user application should be handled in "Experience API" only. Not in Process API
>> We should use tiered approach but NOT always by creating exactly one API for each of the 3 layers. Experience APIs might be one but Process APIs and System APIs are often more than one. System APIs for sure will be more than one all the time as they are the smallest modular APIs built in front of end systems.
>> Process APIs can call System APIs as well as other Process APIs. There is no such anti-design pattern in API-Led connectivity saying Process APIs should not call other Process APIs.
So, the right answer in the given set of options that makes sense as per API-Led connectivity principles is to allow System APIs to return data that is NOT currently required by the identified Process or Experience APIs. This way, some future Process APIs can make use of that data from System APIs and we need NOT touch the System layer APIs again and again.


質問 # 45
What best explains the use of auto-discovery in API implementations?

  • A. It makes API Manager aware of API implementations and hence enables it to enforce policies
  • B. It enables Anypoint Analytics to gain insight into the usage of APIs
  • C. It enables Anypoint Studio to discover API definitions configured in Anypoint Platform
  • D. It enables Anypoint Exchange to discover assets and makes them available for reuse

正解:A

解説:
Correct Answer : It makes API Manager aware of API implementations and hence enables it to enforce policies.
*****************************************
>> API Autodiscovery is a mechanism that manages an API from API Manager by pairing the deployed application to an API created on the platform.
>> API Management includes tracking, enforcing policies if you apply any, and reporting API analytics.
>> Critical to the Autodiscovery process is identifying the API by providing the API name and version.
Reference:
https://docs.mulesoft.com/api-manager/2.x/api-auto-discovery-new-concept
https://docs.mulesoft.com/api-manager/1.x/api-auto-discovery
https://docs.mulesoft.com/api-manager/2.x/api-auto-discovery-new-concept


質問 # 46
A company deployed an API to a single worker/replica in the shared cloud in the U.S. West Region.
What happens when the Availability Zone experiences an outage?

  • A. CloudHub will auto-redeploy the APL in the U.S. East Region
  • B. The Anypoint Platform admin is alerted when the AP] is experiencing an outage and needs the trigger the CI/CD pipeline to redeploy to the US. East Region
  • C. CloudHub will auto-redeploy the API in another Availability Zone in the U.S. West Region
  • D. The APT will be unavailable until the availability comes back online, at which time the worker/replica will be auto-restarted

正解:D

解説:
In a CloudHub deployment with a single worker/replica located in a specific Availability Zone (AZ), if an AZ experiences an outage, here's what happens:
Worker Availability: Since the application is deployed in a single AZ, CloudHub does not automatically redeploy the application in a different zone or region during an outage. Thus, if the current AZ is unavailable, the application will be offline.
Auto-Restart upon AZ Recovery: Once the affected AZ is back online, CloudHub will auto-restart the worker in the same AZ without manual intervention. This ensures that as soon as the AZ is functional, the application resumes automatically.
of Correct Answer (B):
Option B accurately describes the situation, as the API will remain unavailable until the original AZ is restored.
CloudHub does not currently support automatic failover across regions or other availability zones within the same region for single-worker deployments on the shared cloud.
of Incorrect Options:
Option A (auto-redeployment in the U.S. East region) is incorrect, as CloudHub does not migrate across regions automatically.
Option C (redeployment in another AZ within the U.S. West) is not a feature for single-worker deployments.
Option D (manual redeployment triggered by an admin) is unnecessary as CloudHub handles restarts automatically when the AZ is back online.
Reference
Refer to MuleSoft CloudHub's availability and disaster recovery documentation for more information on how CloudHub manages availability in shared environments.


質問 # 47
What is typically NOT a function of the APIs created within the framework called API-led connectivity?

  • A. They allow for innovation at the user Interface level by consuming the underlying assets without being aware of how data Is being extracted from backend systems.
  • B. They provide an additional layer of resilience on top of the underlying backend system, thereby insulating clients from extended failure of these systems.
  • C. They can compose data from various sources and combine them with orchestration logic to create higher level value.
  • D. They reduce the dependency on the underlying backend systems by helping unlock data from backend systems In a reusable and consumable way.

正解:B

解説:
Correct Answer : They provide an additional layer of resilience on top of the underlying backend system, thereby insulating clients from extended failure of these systems.
*****************************************
In API-led connectivity,
>> Experience APIs - allow for innovation at the user interface level by consuming the underlying assets without being aware of how data is being extracted from backend systems.
>> Process APIs - compose data from various sources and combine them with orchestration logic to create higher level value
>> System APIs - reduce the dependency on the underlying backend systems by helping unlock data from backend systems in a reusable and consumable way.
However, they NEVER promise that they provide an additional layer of resilience on top of the underlying backend system, thereby insulating clients from extended failure of these systems.
https://dzone.com/articles/api-led-connectivity-with-mule


質問 # 48
An API has been updated in Anypoint exchange by its API producer from version 3.1.1 to 3.2.0 following accepted semantic versioning practices and the changes have been communicated via the APIs public portal. The API endpoint does NOT change in the new version. How should the developer of an API client respond to this change?

  • A. The API client code only needs to be changed if it needs to take advantage of the new features
  • B. The API producer should be contacted to understand the change to existing functionality
  • C. The API clients need to update the code on their side and need to do full regression
  • D. The API producer should be requested to run the old version in parallel with the new one

正解:A


質問 # 49
An API has been updated in Anypoint Exchange by its API producer from version 3.1.1 to 3.2.0 following accepted semantic versioning practices and the changes have been communicated via the API's public portal.
The API endpoint does NOT change in the new version.
How should the developer of an API client respond to this change?

  • A. The API client code ONLY needs to be changed if it needs to take advantage of new features
  • B. The update should be identified as a project risk and full regression testing of the functionality that uses this API should be run
  • C. The API producer should be contacted to understand the change to existing functionality
  • D. The API producer should be requested to run the old version in parallel with the new one

正解:A


質問 # 50
Version 3.0.1 of a REST API implementation represents time values in PST time using ISO 8601 hh:mm:ss format. The API implementation needs to be changed to instead represent time values in CEST time using ISO 8601 hh:mm:ss format. When following the semver.org semantic versioning specification, what version should be assigned to the updated API implementation?

  • A. 3.0.2
  • B. 4.0.0
  • C. 3.0.1
  • D. 3.1.0

正解:B

解説:
Correct Answer : 4.0.0
*****************************************
As per semver.org semantic versioning specification:
Given a version number MAJOR.MINOR.PATCH, increment the:
- MAJOR version when you make incompatible API changes.
- MINOR version when you add functionality in a backwards compatible manner.
- PATCH version when you make backwards compatible bug fixes.
As per the scenario given in the question, the API implementation is completely changing its behavior. Although the format of the time is still being maintained as hh:mm:ss and there is no change in schema w.r.t format, the API will start functioning different after this change as the times are going to come completely different.
Example: Before the change, say, time is going as 09:00:00 representing the PST. Now on, after the change, the same time will go as 18:00:00 as Central European Summer Time is 9 hours ahead of Pacific Time.
>> This may lead to some uncertain behavior on API clients depending on how they are handling the times in the API response. All the API clients need to be informed that the API functionality is going to change and will return in CEST format. So, this considered as a MAJOR change and the version of API for this new change would be 4.0.0


質問 # 51
What is a key requirement when using an external Identity Provider for Client Management in Anypoint Platform?

  • A. Single sign-on is required to sign in to Anypoint Platform
  • B. APIs managed by Anypoint Platform must be protected by SAML 2.0 policies
  • C. The application network must include System APIs that interact with the Identity Provider
  • D. To invoke OAuth 2.0-protected APIs managed by Anypoint Platform, API clients must submit access tokens issued by that same Identity Provider

正解:D

解説:
https://www.folkstalk.com/2019/11/mulesoft-integration-and-platform.html Correct Answer : To invoke OAuth 2.0-protected APIs managed by Anypoint Platform, API clients must submit access tokens issued by that same Identity Provider
*****************************************
>> It is NOT necessary that single sign-on is required to sign in to Anypoint Platform because we are using an external Identity Provider for Client Management
>> It is NOT necessary that all APIs managed by Anypoint Platform must be protected by SAML 2.0 policies because we are using an external Identity Provider for Client Management
>> Not TRUE that the application network must include System APIs that interact with the Identity Provider because we are using an external Identity Provider for Client Management Only TRUE statement in the given options is - "To invoke OAuth 2.0-protected APIs managed by Anypoint Platform, API clients must submit access tokens issued by that same Identity Provider" Reference:
https://docs.mulesoft.com/api-manager/2.x/external-oauth-2.0-token-validation-policy
https://blogs.mulesoft.com/dev/api-dev/api-security-ways-to-authenticate-and-authorize/


質問 # 52
When can CloudHub Object Store v2 be used?

  • A. To store information in Mule 4 Object Store v1
  • B. To store payloads with an average size greater than 15MB
  • C. To store an unlimited number of key-value pairs
  • D. To store key-value pairs with keys up to 300 characters

正解:D

解説:
CloudHub Object Store v2 is a managed key-value store provided by MuleSoft to support various use cases where temporary data storage is required. Here's why Option D is correct:
Key Length Support: Object Store v2 allows storage of keys with a length of up to 300 characters, making it suitable for applications needing flexible and descriptive keys.
Limitations on Size:
Object Store v2 is not intended for large payload storage and has a recommended size limit below 10 MB for each value. Payloads exceeding 15 MB may cause performance issues and are better suited to a file storage system or database.
Option B is incorrect because storing payloads above 15 MB exceeds Object Store's optimal usage specifications.
Key-Value Limits: Object Store v2 is designed for moderate, transient storage needs, and does not support unlimited storage. Thus, Option A is incorrect.
Backward Compatibility: Object Store v2 does not support Mule 4 applications running Object Store v1. Option C is incorrect as Object Store v1 and v2 are distinct.
Reference
For more on CloudHub Object Store v2, refer to MuleSoft documentation on Object Store limitations and configuration.


質問 # 53
A Platform Architect inherits a legacy monolithic SOAP-based web service that performs a number of tasks, including showing all policies belonging to a client. The service connects to two back-end systems - a life-insurance administration system and a general-insurance administration system - and then queries for insurance policy information within each system, aggregates the results, and presents a SOAP-based response to a user interface (UI).
The architect wants to break up the monolithic web service to follow API-led conventions.
Which part of the service should be put into the process layer?

  • A. Querying the data from the administration systems
  • B. Authenticating and maintaining connections to each of the back-end administration systems
  • C. Combining the insurance policy information from the administration systems
  • D. Presenting the SOAP-based response to the UI

正解:C


質問 # 54
A REST API is being designed to implement a Mule application.
What standard interface definition language can be used to define REST APIs?

  • A. OpenAPI Specification (OAS)
  • B. Web Service Definition Language(WSDL)
  • C. AsyncAPI Specification
  • D. YAML

正解:A


質問 # 55
What is the main change to the IT operating model that MuleSoft recommends to organizations to improve innovation and clock speed?

  • A. Create a lean and agile organization that makes many small decisions everyday; this speeds up decision making and enables each line of business to take ownership of its projects
  • B. Implement SOA for reusable APIs to focus on production over consumption; this standardizes on XML and WSDL formats to speed up decision making
  • C. Drive consumption as much as production of assets; this enables developers to discover and reuse assets from other projects and encourages standardization
  • D. Expose assets using a Master Data Management (MDM) system; this standardizes projects and enables developers to quickly discover and reuse assets from other projects

正解:C

解説:
Correct Answer : Drive consumption as much as production of assets; this enables developers to discover and reuse assets from other projects and encourages standardization
*****************************************
>> The main motto of the new IT Operating Model that MuleSoft recommends and made popular is to change the way that they are delivered from a production model to a production + consumption model, which is done through an API strategy called API-led connectivity.
>> The assets built should also be discoverable and self-serveable for reusablity across LOBs and organization.
>> MuleSoft's IT operating model does not talk about SDLC model (Agile/ Lean etc) or MDM at all. So, options suggesting these are not valid.
Reference:
https://blogs.mulesoft.com/biz/connectivity/what-is-a-center-for-enablement-c4e/
https://www.mulesoft.com/resources/api/secret-to-managing-it-projects


質問 # 56
How can the application of a rate limiting API policy be accurately reflected in the RAML definition of an API?

  • A. By refining the request definitions by adding a remaining Requests query parameter with description, type, and example
  • B. By refining the response definitions by adding the out-of-the-box Anypoint Platform rate-limit-enforcement securityScheme with description, type, and example
  • C. By refining the resource definitions by adding a description of the rate limiting policy behavior
  • D. By refining the response definitions by adding the x-ratelimit-* response headers with description, type, and example

正解:D

解説:
Correct Answe r: By refining the response definitions by adding the x-ratelimit-* response headers with description, type, and example
*****************************************
Reference:
https://docs.mulesoft.com/api-manager/2.x/rate-limiting-and-throttling#response-headers
https://docs.mulesoft.com/api-manager/2.x/rate-limiting-and-throttling-sla-based-policies#response-headers


質問 # 57
An organization wants to make sure only known partners can invoke the organization's APIs. To achieve this security goal, the organization wants to enforce a Client ID Enforcement policy in API Manager so that only registered partner applications can invoke the organization's APIs. In what type of API implementation does MuleSoft recommend adding an API proxy to enforce the Client ID Enforcement policy, rather than embedding the policy directly in the application's JVM?

  • A. A Non-Mule application
  • B. A Mule 3 or Mule 4 application modified with custom Java code
  • C. A Mule 3 application using APIkit
  • D. A Mule 4 application with an API specification

正解:A

解説:
Correct Answer : A Non-Mule application
*****************************************
>> All type of Mule applications (Mule 3/ Mule 4/ with APIkit/ with Custom Java Code etc) running on Mule Runtimes support the Embedded Policy Enforcement on them.
>> The only option that cannot have or does not support embedded policy enforcement and must have API Proxy is for Non-Mule Applications.
So, Non-Mule application is the right answer.


質問 # 58
An API experiences a high rate of client requests (TPS) vwth small message paytoads. How can usage limits be imposed on the API based on the type of client application?

  • A. Use an SLA-based rate limiting policy and assign a client application to a matching SLA tier based on its type
  • B. Use a cross-origin resource sharing (CORS) policy to limit resource sharing between client applications, configured by the client application type
  • C. Use a spike control policy that limits the number of requests for each client application type
  • D. Use a rate limiting policy and a client ID enforcement policy, each configured by the client application type

正解:A

解説:
Correct Answer : Use an SLA-based rate limiting policy and assign a client application to a matching SLA tier based on its type.
*****************************************
>> SLA tiers will come into play whenever any limits to be imposed on APIs based on client type


質問 # 59
The Line of Business (LoB) of an eCommerce company is requesting a process that sends automated notifications via email every time a new order is processed through the customer's mobile application or through the internal company's web application. In the future, multiple notification channels may be added: for example, text messages and push notifications.
What is the most effective API-led connectivity approach for the scenario described above?

  • A. Create one Experience API for the web application and one for the mobile application, Create a Process API to orchestrate, retrieve the email template from a database, and send the email using the Anypoint Connector for Email.
  • B. Create Experience APIs for both the web application and mobile application.
    Create a Process API ta orchestrate, retrieve the email template from e database, and send the email using the Anypoint Connector for Email.
    \
  • C. Create Experience APIs for both the web application and mobile application.
    (Create 3 Process API to orchestrate and retrieve the email template from 2 databese.
    Create a System API that sends the email using the Anypoint Connector for Email.
  • D. Create one Experience API for the web application and one for the mobile application.
    Create a Process API to orchestrate and retrieve the email template from = database.
    Create a System API that sends the email using the Anypoint Connector for Email.
    Create one Experience API for the web application and one for the mobile application.
    Create a Process API to orchestrate and retrieve the email template from = database.
    Create a System API that sends the email using the Anypoint Connector for Email.

正解:D

解説:
In this scenario, the best approach to satisfy the API-led connectivity principles and support future scalability is:
Experience APIs:
Create separate Experience APIs for the web application and the mobile application. This allows each application to have an optimized interface, supporting different needs and potential differences in request/response structures or security configurations.
Process API:
A single Process API can be used to orchestrate the workflow, including retrieving the email template from a database and preparing the email content. By centralizing this logic in the Process layer, we can ensure it is reusable and easily adaptable for different notification channels in the future.
System API:
A System API specifically designed for sending emails (using the Anypoint Connector for Email) abstracts the email-sending functionality from the business logic. This approach ensures that the email-sending function is reusable and scalable, and it can easily be extended or modified if other notification channels (like SMS or push notifications) are added later.
Why Option A is Correct:
This structure aligns with API-led connectivity principles by separating concerns across Experience, Process, and System layers. It provides flexibility for future notification channels and isolates each layer's responsibility, making it easier to maintain and scale.
of Incorrect Options:
Option B lacks a separate System API for sending emails, which goes against the principle of isolating back-end functionality in System APIs.
Option C similarly lacks a dedicated System API, reducing flexibility and reusability.
Option D suggests creating multiple Process APIs for database retrieval, which adds unnecessary complexity and does not adhere to the single-orchestration principle typically followed in API-led design.
Reference
For further guidance on API-led connectivity and the responsibilities of each API layer, refer to MuleSoft's documentation on API-led architecture and design best practices.


質問 # 60
......

正真正銘のベスト試験材料はMuleSoft-Platform-Architect-Iオンライン練習試験:https://jp.fast2test.com/MuleSoft-Platform-Architect-I-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어