Free Salesforce MuleSoft-Integration-Architect-I Practice Exam with Questions & Answers | Set: 4

• Requirement Analysis: The security team requires any external API call to be restricted by an IP include list. This ensures that only specified IP addresses can access the third-party API.
• Design Plan: To fulfill this requirement, implementing a proxy for the third-party API is the best approach. This proxy can enforce the IP include list policy.
• Implementation Steps:
• Advantages:

References

• MuleSoft Documentation on API Proxies
• MuleSoft Documentation on IP Whitelist Policy

To address the reliability and scalability issues faced by the insurance provider, adding a load balancer and configuring additional servers in a cluster configuration is the optimal solution. Here's why:

• Load Balancing: Implementing a load balancer will help distribute incoming API requests evenly across multiple servers. This prevents any single server from becoming a bottleneck, thereby improving the overall performance and reliability of the system.
• Cluster Configuration: By setting up a cluster configuration, you ensure that multiple servers work together as a single unit. This provides several benefits:
• Maintenance: With a cluster configuration, servers can be taken offline for maintenance one at a time without affecting the overall availability of the applications, as the load balancer can redirect traffic to the remaining servers.
• VM Queues and Object Stores: In a clustered environment, the use of VM queues and object stores can be more efficiently managed as these resources are distributed across multiple servers, reducing the risk of contention and improving throughput.

References:

• MuleSoft Documentation on Clustering: https://docs.mulesoft.com/mule-runtime/4.3/clustering
• Best Practices for Scaling Mule Applications: https://blogs.mulesoft.com/dev/mule-dev/mule-4-scaling-applications/

• Timeout Attribute:
• Transaction Management:
• Implications of Timeout:

References:

• MuleSoft Documentation on JMS Connector
• Understanding XA Transactions

Explanation

Key to this question lies in the fact that Process API are not meant to be accessed directly by clients. Lets analyze options one by one. Client ID enforcement : This is applied at process API level generally to ensure that identity of API clients is always known and available for API-based analytics Rate Limiting : This policy is applied on Process Level API to secure API's against degradation of service that can happen in case load received is more than it can handle Custom circuit breaker : This is also quite useful feature on process level API's as it saves the API client the wasted time and effort of invoking a failing API. JSON threat protection : This policy is not required at Process API and rather implemented as Experience API's. This policy is used to safeguard application from malicious attacks by injecting malicious code in JSON object. As ideally Process API's are never called from external world , this policy is never used on Process API's Hence correct answer is JSON threat protection MuleSoft Documentation Reference : https://docs.mulesoft.com/api-manager/2.x/policy-mule3-json-threat

* "100% increase in the throughput of the API" might look correct, as the number of requests processed per second might increase, but is it guaranteed to increase by 100%? Using 4 nodes will definitely increase throughput of system. But it is cant be precisely said if there would be 100% increase in throughput as it depends on many other factors. Also it is nowhere mentioned in the description that all nodes have same CPU/memory assigned. The question is about the guaranteed behavior * Increasing number of nodes will have no impact on response time as we are scaling application horizontally and not vertically. Similarly there is no change in JVM heap memory usage. * So Correct answer is 50% reduction in the number of requests being received by each node This is because of the two reasons. 1) API is mentioned as stateless 2) Load Balancer is used

• To design an integration Mule application that processes orders and ensures reliability even with an unreliable back-end system, the following components and ActiveMQ queues should be used:

• Until Successful Scope: This scope ensures that the Mule application will continue trying to submit the order to the back-end system until it succeeds or reaches a specified retry limit. This helps in handling transient network issues or minor outages of the back-end system.
• ActiveMQ Long-Retry Queues: By placing the orders in long-retry queues, the application can manage retries over an extended period. This is particularly useful when the back-end system experiences longer outages. The ActiveMQ broker, located within the organization’s firewall, can reliably handle these queues.
• ActiveMQ Dead-Letter Queues: Orders that cannot be successfully submitted after all retry attempts should be moved to dead-letter queues. This allows for manual processing of these orders. The dead-letter queue ensures that no orders are lost and provides a clear mechanism for handling failed submissions.

Implementation Steps:

• HTTP Listener: Set up an HTTP listener to receive incoming orders.
• Immediate Acknowledgment: Immediately acknowledge the receipt of the order to the client.
• Until Successful Scope: Use the Until Successful scope to attempt submitting the order to the back-end system. Configure retry intervals and limits.
• Long-Retry Queues: Configure ActiveMQ long-retry queues to manage retries.
• Dead-Letter Queues: Set up ActiveMQ dead-letter queues for orders that fail after maximum retry attempts, allowing for manual intervention.

This approach ensures that the system can handle temporary and prolonged back-end outages while minimizing manual processing.

References:

• MuleSoft Documentation on Until Successful Scope: https://docs.mulesoft.com/mule-runtime/4.3/until-successful-scope
• ActiveMQ Documentation: https://activemq.apache.org/

SOAP API specifications are provided as WSDL. Design center doesn't provide the functionality to create WSDL file. Hence WSDL needs to be created using XML editor

Explanation

Correct answer is "The web store backend generates a new correlation ID value at the start of checkout and sets it on the X¬CORRELATION-ID HTTP request header in each API invocation belonging to that checkout No special code or configuration is included in the Experience API and Process API implementations to generate and manage the correlation ID" Explanation : By design, Correlation Ids cannot be changed within a flow in Mule 4 applications and can be set only at source. This ID is part of the Event Context and is generated as soon as the message is received by the application. When a HTTP Request is received, the request is inspected for "X-Correlation-Id" header. If "X-Correlation-Id" header is present, HTTP connector uses this as the Correlation Id. If "X-Correlation-Id" header is NOT present, a Correlation Id is randomly generated. For Incoming HTTP Requests: In order to set a custom Correlation Id, the client invoking the HTTP request must set "X-Correlation-Id" header. This will ensure that the Mule Flow uses this Correlation Id. For Outgoing HTTP Requests: You can also propagate the existing Correlation Id to downstream APIs. By default, all outgoing HTTP Requests send "X-Correlation-Id" header. However, you can choose to set a different value to "X-Correlation-Id" header or set "Send Correlation Id" to NEVER.

Mulesoft Reference: https://help.mulesoft.com/s/article/How-to-Set-Custom-Correlation-Id-for-Flows-with-HTTP-Endpo int-in-Mule-4

Graphical user interface, application, Word Description automatically generated

The advantage of using OAuth 2.0 client credentials and access tokens over only API keys for API authentication is that if the access token is compromised, the client credentials do not have to be reissued.

OAuth 2.0 is a secure protocol for authenticating clients and authorizing them to access protected resources. It works by having the client authenticate with the authorization server and receive an access token, which is then used to authenticate requests to the API. If the access token is compromised, it can be revoked and replaced without needing to reissue the client credentials.

References: MuleSoft Certified Integration Architect - Level 1 Official Text Book and Resources:

• Chapter 7: Security
• Section 7.2: OAuth 2.0

According to the National Institute of Standards and Technology (NIST), a hybrid cloud is a cloud computing deployment model that describes a composition of two or more distinct cloud infrastructures (private, community, or public) that remain unique entities but are bound together by standardized or proprietary technology that enables data and application portability. Hybrid clouds allow organizations to leverage the advantages of multiple cloud environments, such as combining the scalability and cost-efficiency of public clouds with the security and control of private clouds. This model facilitates flexibility and dynamic scalability, supporting diverse workloads and business needs while ensuring that sensitive data and applications can remain in a controlled private environment.

References

• NIST Definition of Cloud Computing
• Hybrid Cloud Overview and Benefits

Explanation

Below Anypoint Connectors support transactions ● JMS – Publish – Consume ● VM – Publish – Consume ● Database – All operations