IBM C1000-138 Exam Questions Instant Access

Question 1

Which statement is correct about migration of a subscribed external application to a new Product?

AA Community Manager manages migration of a subscribed external application to a new Product.

BThe admin of a Developer Portal can enforce the migration to a new Product.

CThe Consumer manages migration of their subscribed application to a new Product.

DThe Plans of the new product should be the same or less restrictive than those of the original Product.

Answer : C

Consumer Responsibility: In IBM API Connect, the consumer (or developer) who has subscribed to an API Product is responsible for managing the migration of their subscribed application to a new Product. This ensures that the consumer has control over their application's dependencies and can test the new Product before fully migrating.

Migration Process: When a new Product is introduced, consumers need to subscribe to the new Product and update their application configurations to use the new API endpoints and plans. This process involves:

Reviewing the new Product's documentation and capabilities.

Testing the new Product in a staging environment.

Updating application code and configurations to point to the new Product's endpoints.

Subscribing to the new Product through the Developer Portal.

Role of Admins and Community Managers:

Admins: While the admin of a Developer Portal can facilitate the migration process by providing necessary tools and support, they do not enforce the migration.

Community Managers: They manage the overall community and can provide guidance, but the actual migration task is performed by the consumer.

Product Plans: The plans of the new Product do not necessarily have to be the same or less restrictive than those of the original Product. The new Product may offer different plans with varying levels of access and features.

IBM API Connect documentation on managing API Products and subscriptions.

Best practices for API consumer management and migration in IBM API Connect.

Question 2

A developer would like to run the step debugger on the Gatewayscript policy that is part of the Assembly.

What would allow step debugging on the Gatewayscript?

AAdd a debugger; statement.

BEnable step debug in the Test tab.

CClick the Trace in the Test tab.

DEnable debug checkbox in Assemble.

Answer : A

To enable step debugging on a GatewayScript policy in IBM API Connect v10.0.3, a developer must add a debugger; statement within the GatewayScript code. This statement serves as a breakpoint that will pause execution, allowing the developer to step through the code to identify and resolve issues.

Other options are incorrect:

Option B and D ('Enable step debug in the Test tab' and 'Enable debug checkbox in Assemble') do not enable the step debugger in GatewayScript.

Option C ('Click the Trace in the Test tab') allows tracing but not step debugging.

IBM API Connect v10.0.3 Documentation: Debugging GatewayScript Policies

Question 3

What is a key requirement when creating an OpenAPI 3.0 API secured by basic authentication, API Key, or OAuth?

AIt needs an external security service.

BThe relevant information can only be passed in the header.

CThe API can only be enforced by Datapower API Gateway.

DThe security-schema-name must follow a strict pattern.

Answer : D

When creating an OpenAPI 3.0 API in IBM API Connect v10.0.3 that is secured by basic authentication, API Key, or OAuth, it is essential that the security-schema-name follows a specific pattern. This pattern is required to ensure proper validation and application of the security definitions according to the OpenAPI 3.0 specification. The security definitions help define the methods of authentication that are enforced for accessing the API endpoints, which is crucial for maintaining the API's integrity and security.

IBM API Connect v10.0.3 Now Available

IBM API Connect Support Lifecycle Policy

Question 4

Which statement is true when adding extra DataPower enforcement capabilities to a Gateway service?

AThe DataPower extensibility function does not allow encryption and decryption.

BMultiple Gateway extension .zip files may be added to the same Gateway service.

CThe network route to a physical DataPower device is configured through the API Manager.

DMore than one Gateway extension .zip file cannot be uploaded to the same Gateway service.

Answer : B

When adding extra DataPower enforcement capabilities to a Gateway service in API Connect, you can upload multiple Gateway extension .zip files to the same Gateway service. This allows you to customize the Gateway's behavior and add specific enforcement capabilities as needed.

IBM API Connect: Configuring DataPower Enforcement Capabilities

IBM API Connect: Gateway Extensions

Question 5

A developer has asked to modify the default global behavior of ratelimit enforcement to allow execution of the API even if the ratelimit is exceeded.

When creating the global policy yaml file which is true?

AAdd to the info section 'full-custom: true'.

BAt the beginning of the YAML add global-reflow-policy: 1.0.0.

CAt the beginning of the YAML add policy: 1.0.0.

DEnsure the version at the beginning of the YAML is the same as the version in the info section.

Answer : D

When creating a global policy YAML file to modify the default behavior of rate limit enforcement in IBM API Connect v10.0.3, it is crucial to ensure that the version specified at the beginning of the YAML file matches the version in the info section. This alignment is necessary for the system to recognize and apply the correct policy settings across all configurations.

Other options are incorrect:

Option A is not a valid configuration setting for global policies.

Option B and C do not represent the correct approach to configuring global policy YAML files.

IBM API Connect v10.0.3 Documentation: Creating and Modifying Global Policies

Question 6

How can a user be added that was previously removed from a Provider organization that uses a Local User Registry (LUR)?

AThe user must re-activate their account by using the Sign Up option, not by using the Sign In option.

BA deleted user from a LUR cannot be added to the same registry.

CThe user must re-register using the invitation link sent by the Provider organization owner or a user with the appropriate role.

DThe user must re-activate their account by using the Sign In option, not by using the Sign Up option.

Answer : C

To add a user that was previously removed from a Provider organization that uses a Local User Registry (LUR), the user must re-register using the invitation link sent by the Provider organization owner or a user with the appropriate role. This ensures that the user is added back to the organization with the correct permissions and settings.

IBM API Connect: Managing Users in Local User Registries

IBM API Connect: Inviting Users to Organizations

Question 7

An app developer has registered an app and has received a Client ID and secret.

Where can the developer request an additional Client ID and secret?

AUse the Portal admin Ul to enable the multiple Client ID option.

BAn additional Client ID and secret can be added on the Subscriptions tab.

CUse the app alias link on the existing app page.

DOnly one Client ID and secret is allowed per app.

Answer : D

In IBM API Connect, an app is typically associated with a single Client ID and secret to maintain a unique identity and secure access to APIs. Each app is expected to use this unique Client ID and secret for authentication and authorization purposes. Therefore, only one Client ID and secret pair is allowed per app, and additional Client IDs and secrets cannot be requested or generated for the same app.

IBM API Connect v10.0.3 Solution Implementation C1000-138 Exam Questions