- Home
- Salesforce
- Salesforce Certified MuleSoft Platform Architect I
- Salesforce.MuleSoft-Platform-Architect-I.v2025-05-14.q75
- Question 72
Valid MuleSoft-Platform-Architect-I Dumps shared by ExamDiscuss.com for Helping Passing MuleSoft-Platform-Architect-I Exam! ExamDiscuss.com now offer the newest MuleSoft-Platform-Architect-I exam dumps, the ExamDiscuss.com MuleSoft-Platform-Architect-I exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com MuleSoft-Platform-Architect-I dumps with Test Engine here:
Access MuleSoft-Platform-Architect-I Dumps Premium Version
(154 Q&As Dumps, 35%OFF Special Discount Code: freecram)
<< Prev Question Next Question >>
Question 72/75
4 Production environment is running on a dedicated Virtual Private Cloud (VPC) on CloudHub 1,0, and the security team guidelines clearly state no traffic on HTTP.
Which two options support these security guidelines?
Choose 2 answers
Which two options support these security guidelines?
Choose 2 answers
Correct Answer: A,C
Security Guidelines Overview:
The production environment is hosted on a dedicated Virtual Private Cloud (VPC) on CloudHub 1.0, with a specific requirement from the security team that no traffic should occur over HTTP. This implies that only secure HTTPS traffic should be permitted, and HTTP access (port 8081, the default HTTP port in Mule applications) should be disabled.
Evaluating the Options:
Option A (Correct Answer): Configuring the HTTPS protocol in the HTTP listener in the Mule application ensures that all traffic is encrypted and occurs over HTTPS (port 8092 by default for HTTPS on Mule applications). This directly aligns with the security guideline to prevent unencrypted HTTP traffic.
Option B: Creating a custom policy for incoming and outgoing HTTP requests could provide some control over access, but it does not enforce the use of HTTPS exclusively. This option does not disable HTTP traffic and, therefore, does not meet the guideline effectively.
Option C (Correct Answer): Removing the entry for HTTP (port 8081) in the VPC firewall rule ensures that HTTP traffic is completely blocked at the firewall level. This prevents any HTTP requests from reaching the application, adding a layer of security that complies with the guidelines.
Option D: The IP Blocklist policy controls access based on IP addresses but does not enforce the use of HTTPS. This policy does not address the specific requirement of preventing HTTP traffic.
Option E: Adding a firewall rule entry for HTTP (port 8081) would enable HTTP traffic, which directly contradicts the security guidelines. Therefore, this option should be avoided.
Conclusion:
Option A and Option C are the correct choices. Configuring the HTTPS protocol in the Mule application's HTTP listener ensures that only HTTPS traffic is allowed, and removing the firewall rule for HTTP (port 8081) blocks any HTTP traffic from reaching the application. Together, these options enforce secure traffic as required by the security guidelines.
Refer to MuleSoft documentation on configuring HTTP listeners and managing VPC firewall rules for further details on implementing these security controls.
The production environment is hosted on a dedicated Virtual Private Cloud (VPC) on CloudHub 1.0, with a specific requirement from the security team that no traffic should occur over HTTP. This implies that only secure HTTPS traffic should be permitted, and HTTP access (port 8081, the default HTTP port in Mule applications) should be disabled.
Evaluating the Options:
Option A (Correct Answer): Configuring the HTTPS protocol in the HTTP listener in the Mule application ensures that all traffic is encrypted and occurs over HTTPS (port 8092 by default for HTTPS on Mule applications). This directly aligns with the security guideline to prevent unencrypted HTTP traffic.
Option B: Creating a custom policy for incoming and outgoing HTTP requests could provide some control over access, but it does not enforce the use of HTTPS exclusively. This option does not disable HTTP traffic and, therefore, does not meet the guideline effectively.
Option C (Correct Answer): Removing the entry for HTTP (port 8081) in the VPC firewall rule ensures that HTTP traffic is completely blocked at the firewall level. This prevents any HTTP requests from reaching the application, adding a layer of security that complies with the guidelines.
Option D: The IP Blocklist policy controls access based on IP addresses but does not enforce the use of HTTPS. This policy does not address the specific requirement of preventing HTTP traffic.
Option E: Adding a firewall rule entry for HTTP (port 8081) would enable HTTP traffic, which directly contradicts the security guidelines. Therefore, this option should be avoided.
Conclusion:
Option A and Option C are the correct choices. Configuring the HTTPS protocol in the Mule application's HTTP listener ensures that only HTTPS traffic is allowed, and removing the firewall rule for HTTP (port 8081) blocks any HTTP traffic from reaching the application. Together, these options enforce secure traffic as required by the security guidelines.
Refer to MuleSoft documentation on configuring HTTP listeners and managing VPC firewall rules for further details on implementing these security controls.
- Question List (75q)
- Question 1: A company is using an on-prem cluster in the data center as ...
- Question 2: An organization is deploying their new implementation of the...
- Question 3: What is true about where an API policy is defined in Anypoin...
- Question 4: What should be ensured before sharing an API through a publi...
- Question 5: An API with multiple API implementations (Mule applications)...
- Question 6: In which layer of API-led connectivity, does the business lo...
- Question 7: The responses to some HTTP requests can be cached depending ...
- Question 8: A developer from the Central IT team has created an initial ...
- Question 9: Version 3.0.1 of a REST API implementation represents time v...
- Question 10: Which layer in the API-led connectivity focuses on unlocking...
- Question 11: The implementation of a Process API must change. What is a v...
- Question 12: What best explains the use of auto-discovery in API implemen...
- Question 13: An organization wants MuleSoft-hosted runtime plane features...
- Question 14: A Mule application implements an API. The Mule application h...
- Question 15: What is a key requirement when using an external Identity Pr...
- Question 16: The asset version 2.0.0 of the Order API is successfully pub...
- Question 17: Which statement is true about identity management and client...
- Question 18: Which out-of-the-box key performance indicator measures the ...
- Question 19: What is a typical result of using a fine-grained rather than...
- Question 20: The application network is recomposable: it is built for cha...
- Question 21: An organization wants to create a Center for Enablement (C4E...
- Question 22: Say, there is a legacy CRM system called CRM-Z which is offe...
- Question 23: What CANNOT be effectively enforced using an API policy in A...
- Question 24: Refer to the exhibits. (Exhibit) Which architectural constra...
- Question 25: An organization is implementing a Quote of the Day API that ...
- Question 26: What are the major benefits of MuleSoft proposed IT Operatin...
- Question 27: A Mule application exposes an HTTPS endpoint and is deployed...
- Question 28: A European company has customers all across Europe, and the ...
- Question 29: What correctly characterizes unit tests of Mule applications...
- Question 30: A manufacturing company has deployed an API implementation t...
- Question 31: An API implementation is deployed on a single worker on Clou...
- Question 32: An organization makes a strategic decision to move towards a...
- Question 33: An online store's marketing team has noticed an increase in ...
- Question 34: The Line of Business (LoB) of an eCommerce company is reques...
- Question 35: A company has started to create an application network and i...
- Question 36: Refer to the exhibit. Three business processes need to be im...
- Question 37: A customer wants to host their MuleSoft applications in Clou...
- Question 38: What API policy would be LEAST LIKELY used when designing an...
- Question 39: A large lending company has developed an API to unlock data ...
- Question 40: A business process is being implemented within an organizati...
- Question 41: An Order API must be designed that contains significant amou...
- Question 42: What is a key performance indicator (KPI) that measures the ...
- Question 43: An API implementation is deployed to CloudHub. What conditio...
- Question 44: An operations team is analyzing the effort needed to set up ...
- Question 45: Question 10: Skipped An API implementation returns three X-R...
- Question 46: An auto manufacturer has a mature CI/CD practice and wants t...
- Question 47: Which of the following best fits the definition of API-led c...
- Question 48: A team is planning to enhance an Experience API specificatio...
- Question 49: How can the application of a rate limiting API policy be acc...
- Question 50: What are 4 important Platform Capabilities offered by Anypoi...
- Question 51: A large organization with an experienced central IT departme...
- Question 52: What Anypoint Connectors support transactions?...
- Question 53: A retail company is using an Order API to accept new orders....
- Question 54: When could the API data model of a System API reasonably mim...
- Question 55: Mule applications that implement a number of REST APIs are d...
- Question 56: What is true about automating interactions with Anypoint Pla...
- Question 57: What is most likely NOT a characteristic of an integration t...
- Question 58: An organization uses various cloud-based SaaS systems and mu...
- Question 59: A customer wants to monitor and gain insights about the numb...
- Question 60: A Mule application exposes an HTTPS endpoint and is deployed...
- Question 61: A system API has a guaranteed SLA of 100 ms per request. The...
- Question 62: A company deploys Mule applications with default configurati...
- Question 63: Refer to the exhibit. An organization is running a Mule stan...
- Question 64: When designing an upstream API and its implementation, the d...
- Question 65: Refer to the exhibit. An organization needs to enable access...
- Question 66: An API client calls one method from an existing API implemen...
- Question 67: A customer has an ELA contract with MuleSoft. An API deploye...
- Question 68: A retail company with thousands of stores has an API to rece...
- Question 69: An API experiences a high rate of client requests (TPS) vwth...
- Question 70: When should idempotency be taken into account?...
- Question 71: A system API is deployed to a primary environment as well as...
- Question 72: 4 Production environment is running on a dedicated Virtual P...
- Question 73: True or False. We should always make sure that the APIs bein...
- Question 74: Which of the below, when used together, makes the IT Operati...
- Question 75: A company stores financial transaction data in two legacy sy...
[×]
Download PDF File
Enter your email address to download Salesforce.MuleSoft-Platform-Architect-I.v2025-05-14.q75.pdf