oca-w Free Sample Questions

A global logistics firm is restructuring its Workspace ONE UEM environment. They have three major regions: Americas, EMEA, and APAC, each with its own IT team. The corporate IT team needs to enforce a global security policy, including a complex passcode and device encryption, that cannot be altered by regional administrators. However, regional teams must be able to deploy their own region-specific Wi-Fi profiles and applications. Which Organization Group (OG) configuration strategy meets these requirements?

An administrator is configuring a device profile to automatically provision corporate Wi-Fi settings to newly enrolled iOS devices. The network security team requires certificate-based authentication using a unique device certificate for each connection. The company has a Microsoft Certificate Authority integrated with Workspace ONE UEM. Which payload must be configured within the Wi-Fi profile to meet this requirement?

An administrator needs to deploy a legacy Win32 application to the engineering department. The installation process is complex: it requires a specific registry key to be set before installation, the main MSI installer to be run, and a post-installation script to be executed to apply a license file. Which components must be configured in a Freestyle Orchestrator workflow to successfully automate this deployment? (Select THREE)

A financial services company uses a conditional access policy in Omnissa Access that requires Android devices to be 'Compliant' in Workspace ONE UEM to access internal applications. Several users report being denied access despite their devices showing as compliant in the Intelligent Hub app. An administrator reviews the Omnissa Access policy logs and sees the 'deviceUEMCompliance' attribute is evaluating to 'false' for these users. What is the most likely cause of this discrepancy?

**Case Study:** A large retail chain, 'GlobalMart', is deploying 5,000 Android Zebra rugged devices for its warehouse staff. The devices will be shared among workers across three shifts. Each worker must log in at the start of their shift to access a specific set of applications, including an inventory scanner and a messaging app. At the end of the shift, the device must be wiped of the previous user's session data and be ready for the next worker. The devices are managed in a dedicated 'Warehouse' Organization Group (OG). **Requirements:** 1. Devices must be locked to a specific set of authorized work applications. 2. User sessions must be isolated, and all session data must be cleared upon logout. 3. Enrollment must be as streamlined as possible, requiring minimal interaction from the warehouse setup team. 4. The solution must use native Android Enterprise capabilities. Which combination of Workspace ONE UEM features and configurations should the administrator implement to meet all of GlobalMart's requirements?

A security team wants to forward all Workspace ONE UEM console events to their central SIEM platform for correlation and analysis. The SIEM platform ingests data via Syslog over TCP on port 514. The administrator has navigated to Groups & Settings > All Settings > System > Enterprise Integration > Syslog. What is the correct format for the Server Hostname entry to ensure events are sent correctly?

A consulting firm is implementing a BYOD program and wants to manage corporate applications and data on employee-owned Android devices without accessing personal data. The primary goals are to containerize corporate data, prevent data leakage to personal apps, and have the ability to wipe only corporate data if an employee leaves. Which Android Enterprise enrollment method is the best practice for this scenario?

True or False: In a multi-level Organization Group (OG) hierarchy, a VPN profile created at a child OG will automatically override a VPN profile with the same name that was inherited from its parent OG.

An organization uses Apple's Volume Purchase Program (VPP) to manage paid iOS application licenses. An employee with several VPP-licensed apps installed on their device leaves the company, and their device is unenrolled from Workspace ONE UEM. What happens to the VPP licenses that were assigned to that user?

A company is troubleshooting a Mobile SSO issue for iOS devices. Authentication fails, and analysis shows the device is not presenting its client certificate to Omnissa Access during the authentication attempt. The environment uses SCEP to deliver identity certificates to devices. Which step in the authentication flow is most likely failing? ```mermaid sequenceDiagram participant Device participant App participant UEM participant Access as Omnissa Access participant IdP App->>Device: User requests access Device->>Access: Initiates authentication Access->>Device: Responds with certificate challenge Note right of Device: Fails to find/present certificate Device-->>Access: Fails to respond with cert Access-->>App: Authentication Failed ```