• Home
  • Articles
  • Latest Verified & Correct Google Google-Workspace-Administrator Questions & Answers Daily Updated [Q114-Q134]

Latest Verified & Correct Google Google-Workspace-Administrator Questions & Answers Daily Updated [Q114-Q134]

Share

Latest Verified & Correct Google Google-Workspace-Administrator Questions & Answers Daily Updated

100% Pass Guaranteed Download Workspace Administrator Exam PDF Q&A


Google Workspace Administrator Certification is ideal for IT professionals who work with Google Workspace on a daily basis. It is also suitable for individuals who are responsible for managing and administering cloud-based applications and services. Google Cloud Certified - Professional Google Workspace Administrator certification is recognized by employers and can help professionals advance their careers.


To become certified, candidates must pass the 2-hour exam, which consists of multiple-choice and scenario-based questions. Google-Workspace-Administrator exam is administered online and can be taken from anywhere in the world. Upon passing, candidates will receive a digital badge and certificate, which they can use to showcase their expertise and credibility as a Google Workspace administrator. Google Cloud Certified - Professional Google Workspace Administrator certification is valuable for IT professionals who work with Google Workspace or who are interested in pursuing roles that require expertise in managing cloud-based productivity tools.

 

NEW QUESTION # 114
Your organization is moving from a legacy mail system to Google Workspace This move will happen in phases During the first phase, some of the users in the domain are set up to use a different identity provider (IdP) for logging in You need to set up multiple idPs for various users What should you do?

  • A. Enable single sign-on (SSO) with Cloud Identity and use Cloud Directory Sync to manage multiple identity providers
  • B. Nothing Google uses cookies to establish a user's relationship to a device This will cover multiple identity providers
  • C. Enable single sign-on (SSO) with third-party identity providers and exclude the users who are using a different provider
  • D. Create Security Assertion Markup Language (SAML) based single sign-on (SSO) profiles and assign them to specific organizational units or groups of users.

Answer: D

Explanation:
Access Admin Console: Sign in to your Google Admin console.
Navigate to Security: Click on "Security" and then "Set up single sign-on (SSO) with a third party IdP." Add SAML Apps: Click on "Add SAML app" and select the app to configure.
Create SSO Profiles: Set up SSO profiles for each identity provider by entering the required SAML details such as ACS URL, Entity ID, etc.
Assign to OUs/Groups: Assign the created SSO profiles to specific organizational units (OUs) or groups of users based on their IdP.
Verify Configuration: Ensure that each profile is properly configured and tested.
Reference:
Google Workspace Admin Help: Set up SSO via SAML for single sign-on


NEW QUESTION # 115
The security team for your organization is concerned about phishlng attacks against your end user base. What two actions should you take to configure the strongest possible preventative measure against phishing attacks?
Choose 2 answers

  • A. Train end users to mark messages as spam when they see something suspicious.
  • B. Configure spoofing and authentication controls to warn end users about messages that are perceived as threats.
  • C. Force encryption on all inbound and outbound emails from your Workspace domain.
  • D. Configure spoofing and authentication controls to quarantine messages that are perceived as threats
  • E. Enforce confidents mode for all messages sent and received from your Workspace domain

Answer: A,E


NEW QUESTION # 116
Your organization is expected to start using Google Workspace Enterprise Standard in several countries. During the planning phase, the change management leadership team mandates that meeting rooms near each participant's office location should be suggested when someone creates a Google Calendar event, to simplify the user experience and avoid booking rooms when people would not be able to move easily. What should you do?

  • A. Define users' work locations by setting building ID. floor name, and floor section if applicable as the-buildings and rooms are defined.
  • B. Share each room only with the Dynamic Group defined per each user location so that they can only book the rooms nearby.
  • C. Organize users for each location in separate organizational units (OUs). Add room resources to the corresponding OUs so that meeting rooms would be suggested accordingly.
  • D. Organize users for each location in separate Google Groups. Add room resources to the corresponding groups so that meeting rooms would be suggested accordingly.

Answer: A


NEW QUESTION # 117
Your company is using Google Workspace Business Plus edition, and the security team has reported several unsuccessful attempts to sign in to your Google Workspace domain from countries where you have no local employees. The affected accounts are from several executives in the main office.
You are asked to take measures to mitigate this security risk. Although budget is not a concern, your company prefers a minimal financial outlay to fix the issue, which you are tasked with managing. Which two solutions would help you mitigate the risk at minimal cost? (Choose two.)

  • A. Deploy 2-Step Verification for all users who have security keys.
  • B. For all executives, create new accounts with random characters to match Google best practices, migrate data from the former accounts, and then delete them.
  • C. Subscribe to Cloud Identity Premium for all accounts, and define Context-Aware Access levels to only a list of countries where the company has employees.
  • D. Deploy Google Cloud Armor on a dedicated project, and create a rule to allow access to Google Workspace only from specific locations.
  • E. Upgrade to Google Workspace Enterprise Plus for all accounts, and define Context-Aware Access levels to only a list of countries where the company has employees.

Answer: A,C


NEW QUESTION # 118
Your admin quarantine is becoming a burden to manage due to a consistently high influx of messages that match the content compliance rule Your security team will not allow you to remove or relax this rule, and as a result, you need assistance processing the messages in the quarantine. What is the first step you should take to enable others to help manage the quarantine, while maintaining security?

  • A. Configure the admin quarantine to allow end users to release messages.
  • B. Give the users Services > Gmail > Access Admin Quarantine admin privileges.
  • C. Give the users super admin rights to view the admin quarantine.
  • D. Give the users Services > Security Center admin privileges.

Answer: B


NEW QUESTION # 119
Your organization is moving from a legacy mail system to Google Workspace. This move will happen in phases. During the first phase, some of the users in the domain are set up to use a different identity provider (IdP) for logging in. You need to set up multiple IdPs for various users.
What should you do?

  • A. Enable single sign-on (SSO) with Cloud Identity, and use Cloud Directory Sync to manage multiple identity providers.
  • B. Nothing. Google uses cookies to establish a user's relationship to a device. This will cover multiple identity providers.
  • C. Enable single sign-on (SSO) with third-party identity providers and exclude the users who are using a different provider.
  • D. Create Security Assertion Markup Language (SAML) based single sign-on (SSO) profiles and assign them to specific organizational units or groups of users.

Answer: D

Explanation:
You can ensure that different sets of users authenticate through their designated IdPs, which is essential during a phased migration.


NEW QUESTION # 120
Your sales team, which is organized as its own organizational unit, is prone to receiving malicious attachments. What action should you take, as an administrator, to apply an additional layer of protection in the admin console for your sales team without disrupting business operation?

  • A. Configure an attachment compliance rule to strip any attachments received by users within the sales team organizational unit.
  • B. Configure an attachment compliance rule to send any emails with attachments received by users within the sales team organizational unit to an administrator quarantine.
  • C. Configure the security sandbox feature on the sales team organizational unit.
  • D. Update the Email Allowlist in the admin console to only include IP addresses of known senders.

Answer: C

Explanation:
https://support.google.com/a/answer/7676854?hl=en#:~:text=As%20an%20administrator,malicious%20attachments.


NEW QUESTION # 121
Your company is deploying Chrome devices. You want to make sure the machine assigned to the employee can only be signed in to by that employee and no one else.
What two things should you do? (Choose two.)

  • A. Disable Guest Mode and Public Sessions.
  • B. Enable a Device Policy of Restrict Sign In to List of Users, and add the employee email address.
  • C. Enable a User Policy of Multiple Sign In Access and add just the employee email address.
  • D. Enroll a 2-Factor hardware key on the device using the employee email address.
  • E. Enable a Device Policy of Sign In Screen and add the employee email address.

Answer: A,B

Explanation:
* Access Admin Console: Log into your Google Workspace Admin Console.
* Disable Guest Mode and Public Sessions: Navigate to Devices > Chrome > Settings. Disable Guest Mode and Public Sessions to prevent unauthorized users from accessing the device.
* Restrict Sign-In: Go to Device Settings > User & Browser Settings.
* Configure Device Policy: Enable the policy "Restrict Sign-In to List of Users."
* Add Employee Email: Add the specific employee's email address to the list of allowed users. This ensures only the specified employee can sign in to the device.
References
* Google Support: Configure Chrome devices


NEW QUESTION # 122
Multiple users across the organization are experiencing video degradation in Meet video calls. As an administrator, what steps should you take to start troubleshooting?

  • A. Update the Admin Console Meet settings to disable streaming.
  • B. Troubleshoot network bandwidth for the organizer of the meeting.
  • C. Push the Meet quality tool to end user devices and run local reports to determine connectivity issues.
  • D. Locate the Meet quality tool, and review the output for issues with quality.

Answer: D

Explanation:
To troubleshoot video degradation issues in Google Meet, the first step should be to locate the Meet Quality Tool and review the output for issues with quality. This tool provides detailed insights into the performance and quality of Meet calls, including network metrics, device performance, and user feedback. By analyzing this data, administrators can identify specific causes of degradation and take appropriate actions to resolve them.
Reference:
Google Workspace Admin Help - Use the Google Meet quality tool


NEW QUESTION # 123
A subset of users from the finance and human resources (HR) teams need to share documents with an external vendor. However, external content sharing is prohibited for the entire finance team. What would be the most secure method to enable external sharing for this set of users?

  • A. Create a group with the finance and HR users who need to share externally.
  • B. Move all users from the finance org unit to the HR org unit.
  • C. Download and attach the documents to a Gmail message, and send them to the external vendor.
  • D. Enable 'Visitor Sharing' for the entire finance org unit.

Answer: A

Explanation:
* Create a Group: In the Google Admin console, navigate to Groups and create a new group for the specific users who need to share documents externally.
* Add Members: Add the necessary users from the finance and HR teams to this group.
* Set Group Sharing Settings: Configure the group's sharing settings to allow external sharing while keeping the broader organizational settings intact.
* Educate Users: Inform the group members about the new sharing permissions and how to securely share documents with the external vendor.
* Monitor Sharing Activity: Regularly monitor the group's sharing activity to ensure compliance with organizational policies.
References:
* Google Workspace Admin Help - Create and Manage Groups
* Google Workspace Admin Help - Sharing Settings


NEW QUESTION # 124
An administrator accidentally deleted several Workspace user accounts from the Google Admin Console two weeks ago. How can you recover the deleted user accounts?

  • A. Sign in to the Admin console as Help Desk Admin, open user management, filter for "recently deleted." and recover.
  • B. Sign in to the Admin console as Super Admin, open user management, filter for "recently deleted." and recover.
  • C. Create a matter, go to legal hold, and create a legal hold for the user accounts.
  • D. Open a Google support ticket, and request a recovery of all recently deleted users.

Answer: B

Explanation:
To recover user accounts deleted two weeks ago:
Sign in to the Admin console as a Super Admin.
Navigate to user management.
Use the filter to select "recently deleted" users.
Recover the deleted user accounts from the list.
Google Workspace allows recovery of deleted users within a 20-day window.
Reference:
Google Workspace Admin Help: Restore a recently deleted user


NEW QUESTION # 125
Your chief compliance officer is concerned about API access to organization data across different cloud vendors. He has tasked you with compiling a list of applications that have API access to Google Workspace data, the data they have access to, and the number of users who are using the applications.
How should you compile the data being requested?

  • A. Review the authorized applications for each user via the Google Workspace Admin panel.
  • B. Create a survey via Google forms, and collect the application data from users.
  • C. Review the token audit log, and compile a list of all the applications and their scopes.
  • D. Review the API permissions installed apps list, and export the list.

Answer: C

Explanation:
* Access Admin Console: Log into your Google Workspace Admin Console.
* Navigate to Reports: Go to the Reports section in the Admin Console.
* Token Audit Log: Within the Reports, access the "Token Audit" log. This log provides details on OAuth tokens issued to applications by your users.
* Review Applications: Review the list of applications that have been granted access to your Google Workspace data. This will include information about the scopes (types of data) that each application can access.
* Compile List: Compile a list of all the applications from the token audit log. Include details about the data they have access to and the number of users using each application.
* Export Data: You can export this data to a spreadsheet for further analysis and reporting to your chief compliance officer.
References
* Google Support: Token audit log


NEW QUESTION # 126
An employee has left your organization and their Drive data must be retained for three years The retention rule has been set for three years You must ensure the employee's data is visible in Vault and accessible to the Vault Administrator in the most cost-effective way What should you do?

  • A. Export the users Drive data from Vault, then delete the user.
  • B. Assign an Archive User (AU) license to the user
  • C. Suspend the user until the end of the three-year period
  • D. Change ownership of the Drive data to the user's Manager, then delete the user

Answer: B

Explanation:
Step by Step Comprehensive Detailed Explanation
Navigate to Users: Go to the Google Admin console and navigate to the 'Users' section.
Select the User: Find and select the user who has left the organization.
Assign Archive User License: Assign an Archive User (AU) license to the user, ensuring their data is retained and accessible in Vault.
Verify Access in Vault: Go to Google Vault and verify that the data is visible and accessible to the Vault Administrator.
Cost-effective Data Retention: Using an AU license is cost-effective as it retains the data without needing an active Google Workspace license.
Reference
Assign licenses to users
Google Vault Archive User


NEW QUESTION # 127
An employee at your organization is resigning. They are in charge of organizing and maintaining recurring team events. You want to preserve the existing meetings and transfer ownership to the resigning employee's manager. What should you do?

  • A. Delete the existing calendar events and instruct the manager to create new events as the owner.
  • B. Transfer both the events and the resources owned by the resigning employee to their manager by using the Admin console.
  • C. Assign an Archived User (AU) license for the resigning employee.
  • D. Instruct the resigning employee to share free/busy details for their calendar with their manager.

Answer: B

Explanation:
https://support.google.com/a/answer/7400733?hl=en


NEW QUESTION # 128
Your organization has offices in Canada, Italy, and the United States. You want to ensure that employees can access corporate Gmail and Drive from these three geographic locations only.
What should you do?

  • A. Require the use of corporate devices for any access to corporate Gmail and Drive.
  • B. Create data protection rules in Google Workspace that allow data access from only three geographic locations.
  • C. Create address lists to restrict the delivery of incoming and outgoing messages, and to block notifications from Google Doc comments.
  • D. Use context-aware access to create access levels based on the geographic location, and assign them to corporate Gmail and Drive.

Answer: D


NEW QUESTION # 129
Your admin quarantine is becoming a burden to manage due to a consistently high influx of messages that match the content compliance rule Your security team will not allow you to remove or relax this rule, and as a result, you need assistance processing the messages in the quarantine. What is the first step you should take to enable others to help manage the quarantine, while maintaining security?

  • A. Configure the admin quarantine to allow end users to release messages.
  • B. Give the users Services > Gmail > Access Admin Quarantine admin privileges.
  • C. Give the users super admin rights to view the admin quarantine.
  • D. Give the users Services > Security Center admin privileges.

Answer: B

Explanation:
To enable others to help manage the admin quarantine while maintaining security, give the users Services > Gmail > Access Admin Quarantine admin privileges. This specific privilege allows designated users to view and manage the admin quarantine without granting excessive administrative rights.
Go to the Admin console.
Navigate to Account > Admin roles.
Select the role that you want to assign to users or create a new role.
Assign the "Services > Gmail > Access Admin Quarantine" privilege to the role.
Add the users to this role.
Reference:
Google Workspace Admin Help: Admin quarantine


NEW QUESTION # 130
You have been asked to support an investigation that your litigation team is conducting. The current default retention policy for mail is 180 days, and there are no custom mail retention policies in place. The litigation team has identified a user who is central to the investigation, and they want to investigate the mail data related to this user without the user's awareness. What two actions should you take? (Choose two.)

  • A. Reset the user's password, and share the new password with the litigation team.
  • B. Create a matter using Google Vault, and share the matter with the litigation team members.
  • C. Move the user to their own Organization Unit, and set a custom retention policy.
  • D. Copy the user's data to a secondary account.
  • E. Create a hold on the user's mailbox in Google Vault.

Answer: B,E


NEW QUESTION # 131
After a recent transition to Google Workspace, helpdesk has received a high volume of password reset requests and cannot respond in a timely manner. Your manager has asked you to determine how to resolve these requests without relying on additional staff.
What should you do?

  • A. Create a Google form to submit reset requests.
  • B. Enable non-admin password recovery.
  • C. Create a custom Apps Script to reset passwords.
  • D. Use a third-party tool for password recovery.

Answer: B


NEW QUESTION # 132
Your company's compliance officer has requested that you apply a content compliance rule that will reject all external outbound email that has any occurrence of credit card numbers and your company's account number syntax, which is AccNo. You need to configure a content compliance rule to scan email to meet these requirements.
Which combination of attributes will meet this objective?

  • A. Name the rule > select Outbound and Internal Sending > select If ALL of the following match > add two expressions: one for Advanced Content Match to find AccNo in the Body, and one for predefined content match to select Credit Card Numbers > choose Reject.
  • B. Name the rule > select Outbound > select If ALL of the following match > add two expressions: one for Advanced Content Match to find AccNo in the Body, and one for predefined content match to select Credit Card Numbers > choose Reject.
  • C. Name the rule > select Outbound and Internal Sending > select If ANY of the following match > add two expressions: one for Simple Content Match to find AccNo, and one for predefined content match to select Credit Card Numbers > choose Reject.
  • D. Name the rule > select Outbound > select If ANY of the following match > add two expressions: one for Simple Content Match to find AccNo, and one for predefined content match to select Credit Card Numbers
    > choose Reject

Answer: B

Explanation:
https://www.shieldq.com/en-gb/Google-apps-content-compliance


NEW QUESTION # 133
An employee has been leaking confidential salary information to an external party. You must use Vault to preserve the messages for an investigation. What should you do?

  • A. Create a custom retention policy Use the audit feature to view captured email logs
  • B. Create a matter and add a hold on the employee's email
  • C. Use the search and export features to find all the messages sent externally
  • D. Use the security investigation tool to find the messages Create a hold to preserve the messages

Answer: B

Explanation:
* Access Google Vault: Go to Google Vault from the Google Admin console.
* Create a Matter: Click on "Matters" and create a new matter to hold the case details and any relevant information.
* Add a Hold: Within the matter, create a hold specifically on the employee's email account. This ensures that all emails sent and received by the employee are preserved.
* Configure the Hold: Specify the criteria for the hold, such as the employee's email address, and set the scope to include all messages.
* Save the Hold: Once configured, save the hold. This will preserve all relevant messages for the investigation.
References:
* Google Vault Help: Create and manage matters
* Google Vault Help: Place data on hold


NEW QUESTION # 134
......

Google-Workspace-Administrator PDF Dumps Are Helpful To produce Your Dreams Correct QA's: https://examsboost.actualpdf.com/Google-Workspace-Administrator-real-questions.html

Related Articles

more
Google Google-Workspace-Administrator Certification Practice Exam