• Home
  • Articles
  • Pass Your Google-Workspace-Administrator Exam Easily - Real Google-Workspace-Administrator Practice Dump Updated Apr 05, 2024 [Q63-Q85]

Pass Your Google-Workspace-Administrator Exam Easily - Real Google-Workspace-Administrator Practice Dump Updated Apr 05, 2024 [Q63-Q85]

Share

Pass Your Google-Workspace-Administrator Exam Easily - Real Google-Workspace-Administrator Practice Dump Updated Apr 05, 2024

2024 Realistic Verified Free Google Google-Workspace-Administrator Exam Questions

NEW QUESTION # 63
Your organization is in the process of deploying Google Drive for desktop so that your users can access Drive files directly from their desktops. For security reasons, you want to restrict Drive for desktop to only company-owned devices. What two steps should you take from the admin panel to restrict Drive for desktop to only company-owned devices?
Choose 2 answers

  • A. Devices > Endpoints > Add a filter-> Management Type > Drive for desktop > Apply
  • B. Install the Google Endpoint Verification extension on machines using Drive for Desktop.
  • C. Create a company-owned device inventory using an asset tag.
  • D. Create a company-owned device inventory using serial numbers of devices.
  • E. Apps > Google Workspace > Drive and Docs > Features and Applications > Google Drive for Desktop > Only Allow Google Drive for desktop on authorized devices

Answer: A,E


NEW QUESTION # 64
Your company policy requires that managers be provided access to Drive data once an employee leaves the company.
How should you grant this access?

  • A. Transfer ownership of all Drive data using the file transfer ownership tool in the Google Workspace Admin console.
  • B. Make the manager a delegate to the former employee's account.
  • C. Copy the data from the former employee's My Drive to the manager's My Drive.
  • D. Login as the user and add the manager to the file permissions using the "Is owner' privilege for all Drive files.

Answer: A

Explanation:
https://support.google.com/a/answer/1247799?hl=en


NEW QUESTION # 65
You want to create a list of IP addresses that are approved to send email to your domain. To accomplish this, what section of the Google Workspace Admin console should you update?

  • A. Bypass spam filter
  • B. Approved email denylist
  • C. Email allowlist
  • D. Content compliance rule

Answer: C


NEW QUESTION # 66
Your organization recently had a sophisticated malware attack that was propagated through embedded macros in email attachments. As a Workspace administrator, you want to provide an additional layer of anti-malware protection over the conventional malware protection that is built into Gmail. What should you do to protect your users from future unknown malware in email attachments?

  • A. Turn on advanced phishing and malware protection.
  • B. Enable Security Sandbox.
  • C. Run queries in Security Investigation Tool.
  • D. Enable Gmail confidential mode.

Answer: B

Explanation:
https://support.google.com/a/answer/7676854?hl=en#zippy=%2Cscan-all-attachments-in-security-sandbox:~:text=detect%20harmful%20attachments-,Set%20up%20rules%20to%20detect%20harmful%20attachments,Security%20Sandbox,-Supported%20editions%20for


NEW QUESTION # 67
The executive team for your company has an extended retention policy of two years in place so that they have access to email for a longer period of time. Your COO has found this useful in the past but when they went to find an email from last year to prove details of a contract in dispute, they were unable to find it. itis no longer in the Trash. They have requested that you recover it.
What should you do?

  • A. Using Vault, perform a search for the email and export the content to a standard format to provide for investigation.
  • B. Using the Vault Audit log, perform a search for the email, export the results. then import with Google Workspace Migration for Microsoft Outlook.
  • C. Using the Message ID, contact Google Google Workspace support to recover the email, then import with Google Workspace Migration for Microsoft Outlook.

Answer: A

Explanation:
https://support.google.com/vault/answer/6161352?hl=en


NEW QUESTION # 68
Your company has a broad, granular IT administration team, and you are in charge of ensuring proper administrative control. One of those teams, the security team, requires access to the Security Investigation Tool. What should you do?

  • A. Create a Custom Admin Role with the Security Center privileges, and then assign the role to each of the security team members.
  • B. Assign the Super Admin Role to the security team members.
  • C. Create a Custom Admin Role with the security settings privilege, and then assign the role to each of the security team members.
  • D. Assign the pre-built security admin role to the security team members.

Answer: A

Explanation:
https://support.google.com/a/answer/9043255#:~:text=To%20give%20access%20only%20to%20the%20investigation%20tool%2C%20check%20the%20individual%20boxes%20for%C2%A0Investigation%20Tool%20privileges.%20You%20can%20add%20specific%20privileges%20for%20access%20to%20different%20types%20of%20data%20(for%20example%2C%20Gmail%2C%20Drive%2C%20Device%2C%20and%20User)%3A


NEW QUESTION # 69
Users in your organization are routinely complaining that they receive messages containing words of profanity they find inappropriate in a professional setting. As the administrator what steps should you take to prevent the messages from being delivered to users mailboxes?

  • A. Configure an attachment compliance rule
  • B. Enable optical character recognition (OCR)
  • C. Configure an objectionable content rule
  • D. Set up a Gmail DLP policy.

Answer: A


NEW QUESTION # 70
The security team for your organization is concerned about phishlng attacks against your end user base. What two actions should you take to configure the strongest possible preventative measure against phishing attacks?
Choose 2 answers

  • A. Configure spoofing and authentication controls to warn end users about messages that are perceived as threats.
  • B. Train end users to mark messages as spam when they see something suspicious.
  • C. Configure spoofing and authentication controls to quarantine messages that are perceived as threats
  • D. Force encryption on all inbound and outbound emails from your Workspace domain.
  • E. Enforce confidents mode for all messages sent and received from your Workspace domain

Answer: B,E


NEW QUESTION # 71
An end user informs you that they are having issues receiving mail from a specific sender that is external to your organization. You believe the issue may be caused by the external entity's SPF record being incorrectly configured. Which troubleshooting step allows you to examine the full message headers for the offending message to determine why the messages are not being delivered?

  • A. Use the Postmaster Tools API to pull the message headers.
  • B. Perform an SPF record check on the domain to determine whether their SPF record is valid.
  • C. Use the Security Investigation Tool to review the message headers.
  • D. Use the Email Log Search to directly review the message headers.

Answer: C

Explanation:
https://support.google.com/a/answer/9300435?hl=en#zippy=%2Cstep-view-the-email-message-and-take-action%2Cstep-provide-justification-to-view-messages%2Cstep-get-started-with-your-investigation


NEW QUESTION # 72
Your-company.com recently started using Google Workspace. The CIO is happy with the deployment, but received notifications that some employees have issues with consumer Google accounts (conflict accounts). You want to put a plan in place to address this concern.
What should you do?

  • A. Rename the accounts to [email protected], and recreate the accounts.
  • B. Use the conflict account remove tool to remove the accounts from Google Workspace.
  • C. Ask users to request a new Google Workspace account from your local admin.
  • D. Use the Transfer tool for unmanaged users to find the conflict accounts.

Answer: D

Explanation:
https://gsuiteupdates.googleblog.com/2017/02/resolve-conflicting-accounts-with-new.html#:~:text=Using%20the%20new%20Transfer%20tool,accounts%20to%20G%20Suite%20accounts. https://support.google.com/a/answer/6178640?hl=en


NEW QUESTION # 73
You are the administrator of a domain that requires iOS mobile device management. What initial steps should be taken to ensure that you can properly manage end-user iOS devices?

  • A. Follow the prompts under "company owned devices," and select "iOS Management." Select the option to "enforce management on iOS devices."
  • B. Configure an Apple Push Certificate, and select "certificate never expires."
  • C. In the Admin console, navigate to iOS management, and enable the Apple Push Certificate connector.
  • D. Configure an Apple Push Certificate, and be sure to use a work address that can be accessed in the future.

Answer: D

Explanation:
To manage end-user iOS devices, you need to configure an Apple Push Certificate, which allows Google to communicate with your devices and enforce security policies1. The certificate expires annually, so you need to renew it before it expires1. You should use a work address that can be accessed in the future, because you will receive email notifications from Apple when the certificate is about to expire1. The other options are incorrect because:
There is no option to "enforce management on iOS devices" under "company owned devices" in the Admin console2.
You cannot select "certificate never expires" when configuring an Apple Push Certificate. The certificate always expires after one year1.
There is no option to enable the Apple Push Certificate connector in the Admin console. You need to download the public key from Google and upload it to Apple Business Manager or Apple School Manager2.


NEW QUESTION # 74
What steps does an administrator need to take to enforce TLS with a particular domain?

  • A. Set up secure transport compliance with the receiving domain.
  • B. Set up DKIM authentication with the receiving domain.
  • C. Enable email safety features with the receiving domain.
  • D. Configure an alternate secure route with the receiving domain.

Answer: A

Explanation:
https://support.google.com/a/answer/2520500?hl=en#:~:text=Add%C2%A0the%20Secure%20transport%20(TLS)%20compliance%C2%A0setting%C2%A0to%20always%20use%20TLS%20for%20email%20sent%20to%20and%20from%20domains%20and%20addresses%20that%20you%20specify.


NEW QUESTION # 75
Your company has numerous locations throughout the world. Each of these locations has multiple office managers that field questions from employees through an email alias. Some questions have not been answered by an office manager How can you create a system to assign conversations to different receptionists using Workspace?

  • A. Use App Script to design a ticketing system that marks conversation ownership.
  • B. Create Google Tasks and assign them to receptionists to address unanswered questions.
  • C. Contract with a third-party solution, such as ServiceNow.
  • D. Create a Google Groups Collaborative Inbox.

Answer: D


NEW QUESTION # 76
Your company is using macOS devices for all employees and has built a process to allow a Google account to be used as credentials (or the device Your company wants to manage newly acquired Windows 10 devices with Google Workspace endpoint management and have employees use their Google Workspace account as login credentials for Windows 10 Which steps should you take to enable this?
Choose 2 answers

  • A. Enable Windows device management in Devices > Mobile & endpoints > Settings > Windows settings
  • B. Configure Chrome policies on Windows to push advanced device management policies
  • C. Install and configure Google Credential Provider for Windows (GCPW) on each device
  • D. Sync the Google Accounts and password to AD via Google Cloud Directory Sync V1 (GCDS)
  • E. Install and configure Password Sync on each Active Directory (AD) domain controller

Answer: B,C


NEW QUESTION # 77
Your organization is about to expand by acquiring two companies, both of which are using Google Workspace. The CISO has mandated that strict 'No external content sharing' policies must be in place and followed. How should you securely configure sharing policies to satisfy both the CISO's mandate while allowing external sharing with the newly acquired companies?

  • A. Use shared drives to store the content, and share only individual files externally.
  • B. Let users share files between the two companies by using the 'Trusted Domains' feature. Create an allowlist of the trusted domains, and choose sharing settings for the users.
  • C. Create a Drive DLP policy that will allow sharing to only domains on an allowlist.
  • D. Allow external sharing of Drive content for the IT group only.

Answer: B

Explanation:
https://support.google.com/a/answer/6160020?hl=en#zippy=%2Cgive-sharing-access-to-trusted-domains:~:text=only%20trusted%20domains-,Allow%20external%20sharing%20with%20only%20trusted%20domains,-Help%20and%20tips


NEW QUESTION # 78
The human resources (HR) team needs a centralized place to share key documents with the entire organization while protecting confidential documents and mitigating the risk of losing documents when someone leaves. These documents must be editable by the HR team members. What is the best way to set this up?

  • A. Create a shared drive for all files, give the HR team content manager access, and give view access to the organization.
  • B. Have the HR lead create a folder in their MyDrive for the non-confidential files, give edit access to the HR team, and give view access to the organization.
  • C. Create a shared drive for non-confidential files, give the HR team content manager access, and give view access to the organization.
  • D. Create a shared drive for the non-confidential files, give the HR team manager access, and give contributor access to the entire organization.

Answer: C


NEW QUESTION # 79
HR informs you that a user has been terminated and their account has been suspended. The user is part of a current legal investigation, and HR requires the user's email data to remain on hold. The terminated user's team is actively working on a critical project with files owned by the user. You need to ensure that the terminated user's content is appropriately kept before provisioning their license to a new user.
What two actions should you take? (Choose two.)

  • A. Extend the legal hold on the user's email data.
  • B. Assign the terminated user account an Archive User license.
  • C. Move project files to a Team Drive or transfer ownership.
  • D. Delete the account, freeing up a Google Workspace License.
  • E. Rename the account to the new user starting next week.

Answer: B,C

Explanation:
https://support.google.com/a/answer/9048836


NEW QUESTION # 80
Your Finance team has to share quarterly financial reports in Sheets with an external auditor. The external company is not a Workspace customer and allows employees to access public sites such as Gmail and Facebook. How can you provide the ability to securely share content to collaborators that do not have a Google Workspace or consumer (Gmail) account?

  • A. Enable the 'Visitor Sharing' feature, and demonstrate it to the Finance team.
  • B. Attach the Sheet file to an email message, and send to the external auditor.
  • C. Use the 'Publish' feature in the Sheets editor to share the contents externally.
  • D. Allow external sharing with the auditor using the 'Trusted Domains' feature.

Answer: A

Explanation:
https://support.google.com/drive/answer/9195194?hl=en#:~:text=Share%20with%20visitors,with%20one%20visitor.


NEW QUESTION # 81
Your organization has noticed several incidents of accidental oversharing inside the organization. Specifically, several users have shared sensitive Google Drive items with the entire organization by clicking 'anyone in this group with this link can view'. You have been asked by senior management to help users share more appropriately and also to prevent accidental oversharing to the entire organization. How would you best accomplish this?

  • A. Disable sharing to the entire organization so that users must consciously add every person who needs access.
  • B. Create groups, add users accordingly, and educate users on how to share to specific groups of people.
  • C. Determine sharing boundaries for users that work with sensitive information, and then implement target audiences.
  • D. Temporarily disable the Google Drive service for individuals who continually overshare.

Answer: C

Explanation:
https://support.google.com/a/answer/9934697?hl=en#zippy=:~:text=Why%20use%20target,for%20broad%20sharing.


NEW QUESTION # 82
Your organization wants to grant Google Vault access to an external regulatory authority. In an effort to comply with an investigation, the external group needs the ability to view reports in Google Vault. What should you do?

  • A. Create accounts for external users and assign Vault privileges.
  • B. Assign an Archived User license to the external users.
  • C. Temporarily assign the super admin role to the users
  • D. Share Vault access with external users.

Answer: A


NEW QUESTION # 83
Your organization implemented Single Sign-On (SSO) for the multiple cloud-based services it uses. During authentication, one service indicates that access to the SSO provider is not possible due to invalid information. What should you do?

  • A. Run nslookup to confirm that the service exists.
  • B. Ensure that Microsoft's Active Directory Federation Services 2.0 sends encrypted SAML Responses in default configurations.
  • C. Verify that the Audience element in the SAML Response matches the assertion consumer service (ACS) URL
  • D. Update the validation certificate.

Answer: C


NEW QUESTION # 84
Your company recently migrated to Google Workspace and wants to deploy a commonly used third-party app to all of finance. Your OU structure in Google Workspace is broken down by department. You need to ensure that the correct users get this app.
What should you do?

  • A. For the Finance OU, enable the third-party app in Marketplace Apps.
  • B. For the Finance OU, enable the third-party app in SAML apps.
  • C. At the root level, disable the third-party app. For the Finance OU, allow users to install only whitelisted apps from the Google Workspace Marketplace.
  • D. At the root level, disable the third-party app. For the Finance OU, allow users to install any application from the Google Workspace Marketplace.

Answer: A


NEW QUESTION # 85
......


Earning the Google Workspace Administrator certification can help IT professionals advance their careers and increase their earning potential. Google Cloud Certified - Professional Google Workspace Administrator certification demonstrates to employers and clients that the candidate is an expert in managing and administering Google Workspace, and has a deep understanding of its features and capabilities.

 

Google-Workspace-Administrator Real Exam Questions and Answers FREE: https://www.lead2passed.com/Google/Google-Workspace-Administrator-practice-exam-dumps.html

Google-Workspace-Administrator Exam Questions | Real Google-Workspace-Administrator Practice Dumps: https://drive.google.com/open?id=1RCFwhGU0x4N8ejcdn3dxvoeAdPRoIIqp

Related Articles

more
Google Google-Workspace-Administrator Certification Practice Exam