MuleSoft Certified Platform Architect – Level 1 — Question 29

What is a key requirement when using an external Identity Provider for Client Management in Anypoint Platform?

Answer options

• A. Single sign-on is required to sign in to Anypoint Platform
• B. The application network must include System APIs that interact with the Identity Provider
• C. To invoke OAuth 2.0-protected APIs managed by Anypoint Platform, API clients must submit access tokens issued by that same Identity Provider
• D. APIs managed by Anypoint Platform must be protected by SAML 2.0 policies

Correct answer: C

Explanation

The correct answer, C, highlights that API clients are required to use access tokens from the same Identity Provider to access APIs secured with OAuth 2.0. Options A and D discuss different authentication methods that are not central to the requirement for external Identity Providers, while B refers to the need for System APIs but does not address the token requirement directly.