CCA Cheat Sheet 2026
The 30 highest-yield CCA facts, distilled from real exam questions. Print it, save it as a PDF, or study it here — free, no sign-up.
75 questions
90 min time limit
80.00% to pass
- Which Jamf Pro policy payload type would you use to run a shell script after a package installs successfully? → Scripts payload with After run order
- How can Casper administrators quickly address a compromised device reported in inventory? → Lock or wipe the device remotely
- What is the primary goal of patch management in the Casper Suite? → Keeping software up-to-date with security patches and updates across all managed devices
- Which service allows automatic device enrollment in Jamf Pro? → Automated Device Enrollment
- Which Jamf Pro log helps diagnose failed policy executions? → Policy Log
- How should audit trails be maintained in Casper for regulatory compliance? → Through detailed logging of all administrative actions, policy changes, and device events
- What is the purpose of a PreStage enrollment in Jamf Pro? → To define Setup Assistant behavior and automate enrollment
- What can cause inventory data in Jamf Pro to become outdated? → Devices not running recon regularly
- What can a policy in Jamf Pro be used for? → Install applications or run scripts
- How are scripts deployed through Casper policies? → Scripts are stored on the JSS and executed on target devices when policies run
- What is the function of the Jamf Pro Patch Management feature? → It tracks and deploys software updates
- What is a Smart Group in the Casper Suite? → A dynamic group that automatically includes devices matching specified criteria
- How can administrators target specific devices with profiles or policies? → With smart groups based on criteria
- Which Jamf Pro feature allows you to display custom description or instructions for a policy in Self Service? → The 'Description' field in the Self Service payload of the policy
- In Jamf Pro (Casper Suite), which deployment method allows you to make an app available in Self Service without forcing installation? → Make Available in Self Service
- When configuring Self Service for iOS devices in Jamf Pro, where are the branding settings managed? → Under Settings > Self Service > iOS
- What is the purpose of flushing logs in Jamf Pro? → It clears outdated policy log entries
- How can Jamf Pro be used to enforce a minimum password complexity for local accounts on managed Macs? → Using a Passcode configuration profile payload with complexity and length requirements
- Which feature in Jamf Pro helps enforce password policies on managed devices? → Passcode payload in configuration profiles
- What happens when a scoped user clicks 'Install' on a policy displayed in Self Service? → The policy runs immediately on the device triggered by the user action
- What role does inventory reporting play in license compliance? → They track installed software against purchased licenses to identify compliance gaps
- Why is restricting system preferences important in security? → Prevents configuration tampering
- Which component in Casper ensures device settings like Wi-Fi, VPN, and restrictions are applied consistently across managed devices? → Configuration profiles
- What is the purpose of the 'recon' command in Casper? → Forcing an immediate inventory update that sends current device data to the JSS
- How does Jamf Pro's 'Local Accounts' policy payload help with user management? → It creates, modifies, or deletes local user accounts on managed Macs
- What scripting languages are supported for Casper policies on macOS? → Bash, Python, Perl, Ruby, and other languages available on macOS
- Which Jamf Pro configuration profile payload is used to prevent users from changing their account password on a managed Mac? → Restrictions payload with 'Allow password modification' disabled
- Which of the following is required for an end user to see and use items in Self Service on their managed Mac? → The device must be enrolled in Jamf Pro and scoped to the relevant Self Service items
- How can an administrator limit which computers see a specific item in Self Service? → By scoping the policy or app to specific computers, groups, departments, or users
- What macOS mechanism does Jamf Pro use to enforce that only approved software can be launched by standard users? → Gatekeeper + allowed/blocked process policy payloads
Turn these facts into recall: