GOOGLE-WORKSPACE-ADMINISTRATOR Online Practice Questions and Answers

Your company has acquired a new company in Japan and wants to add all employees of the acquisition to your existing Google Workspace domain. The new company will retain its original domain for email addresses and, due to the very sensitive nature of its work, the new employees should not be visible in the global directory. However, they should be visible within each company's separate directory. What should you do to meet these requirements?

A. Create a new Google Workspace domain isolated from the existing one, and create users in the new domain instead.

B. Under Directory Settings > Contact sharing, disable the contact sharing option and wait for 24 hours to allow the settings to propagate before creating the new employee accounts.

C. Redesign your OU organization to have 2 child OUs for each company directly under the root. In Directory Settings > Visibility Settings, define custom directories for each company, and set up Visibility according to the OU.

D. Create one dynamic group for each company based on a custom attribute defining the company. In Directory Settings > Visibility Settings, define custom directories for each company, and set up Visibility according to the dynamic group.

Your organization wants more visibility into actions taken by Google staff related to your data for audit and security reasons. They are specifically interested in understanding the actions performed by Google support staff with regard to the support cases you have opened with Google. What should you do to gain more visibility?

A. From Google Admin Panel, go to Audit, and select Access Transparency Logs. Most Voted

B. From Google Admin Panel, go to Audit, and select Login Audit Log.

C. From Google Admin Panel, go to Audit, and select Rules Audit Log.

D. From Google Admin Panel, go to Audit, and select Admin Audit Log.

After a recent transition to Google Workspace, helpdesk has received a high volume of password reset requests and cannot respond in a timely manner. Your manager has asked you to determine how to resolve these requests without relying on additional staff.

What should you do?

A. Create a custom Apps Script to reset passwords.

B. Use a third-party tool for password recovery.

C. Enable non-admin password recovery.

D. Create a Google form to submit reset requests.

Your company has been engaged in a lawsuit, and the legal department has been asked to discover and hold all email for two specific users. Additionally, they have been asked to discover and hold any email referencing "Secret Project 123." What steps should you take to satisfy this request?

A. Create a Matter and a Hold. Set the Hold to Gmail, set it to the top level Organization, and set the search terms to "secret project 123." Create a second Hold. Set the second Hold to Gmail, set it to Accounts, and enter: user1 @yourcompany.com, [email protected]. Save.

B. Create a Matter and a Hold. Set the Hold to Gmail, set it to Accounts, and set the usernames to: [email protected], user2@your-company. Set the search terms to: (secret project 123). Save.

C. Create a Matter and a Hold. Set the Hold to Gmail, set it to Accounts, and enter: [email protected] AND [email protected]. Set the search terms to: secret AND project AND 123. Save.

D. Create a Matter and a Hold. Set the Hold to Gmail, set it to Accounts, and set the usernames to: [email protected], user2@your-company. Set the search terms to secret OR project OR 123. Save.

With the help of a partner, you deployed Google Workspace last year and have seen the rapid pace of innovation and development within the platform. Your CIO has requested that you develop a method of staying up-to-date on all things Google Workspace so that you can be prepared to take advantage of new features and ensure that your organization gets the most out of the platform.

What should you do?

A. Develop a cadence of regular roadmap and business reviews with your partner.

B. Regularly scan the admin console and keep track of any new features you identify.

C. Create a Feature Release alert in the Alert Center to be alerted to new functionality.

D. Put half of your organization on the Rapid Release Schedule to highlight differences.

You need to protect your users from untrusted senders sending encrypted attachments via email. You must ensure that these messages are not delivered to users' mailboxes. What step should be taken?

A. Use the security center to remove the messages from users' mailboxes

B. Use Google Vault to remove these messages from users mailboxes.

C. Enable a safety rule to send these types of messages to spam.

D. Enable a safety rule to send these types of messages to a quarantine.

Your company has decided to change SSO providers. Instead of authenticating into Google Workspace and other cloud services with an external SSO system, you will now be using Google as the Identity Provider (IDP) and SSO provider to your other third-party cloud services.

What two features are essential to reconfigure in Google Workspace? (Choose two.)

A. Apps > add SAML apps to your domain.

B. Reconfigure user provisioning via Google Cloud Directory Sync.

C. Replace the third-party IDP verification certificate.

D. Disable SSO with third party IDP.

E. Enable API Permissions for Google Cloud Platform.

Your organization has been on Google Workspace Enterprise for one year. Recently, an admin turned on public link sharing for Drive files without permission from security. Your CTO wants to get better insight into changes that are made to the Google Workspace environment. The chief security officer wants that data brought into your existing SIEM system.

What are two ways you should accomplish this? (Choose two.)

A. Use the Data Export Tool to export admin audit data to your existing SIEM system

B. Use Apps Script and the Reports API to export admin audit data to your existing SIEM system.

C. Use Apps Script and the Reports API to export drive audit data to the existing SIEM system

D. Use the BigQuery export to send admin audit data to the existing SIEM system via custom code

E. Use the BigQuery export to send drive audit data to the existing SIEM system via custom code.

As a Google Workspace administrator for your organization, you are tasked with identifying how users are reporting their messages--whether spam, not spam, or phishing--for a specific time period. How do you find this information?

A. Open Admin Console > Security > Dashboard > User Reports.

B. Open Admin Console > Security > Dashboard > Spam Filter-Phishing.

C. Use Reports API to query user Gmail activity.

D. Open Admin Console > Reporting > Email Log Search.

Your organization is planning to remove any dependencies on Active Directory (AD) from all Cloud applications they are using You are currently using Google Cloud Directory Sync (GCDS) with on-premises AD as a source to provision user

accounts in Google Workspace. Your organization is also using a software-as-a-service (SaaS) human resources information system (HRIS) that offers integration via CSV export and Open API standard.

Additional requirements for the solution include:

?It should not require a subscription to any additional third-party service.

?The process must be automated from beginning to end.

You are tasked with the design and implementation of a solution to address user provisioning with these requirements.

What solution should you implement?

A. Set up Azure AD and federate on-premises AD with it. Provision user accounts from Azure AD with the Google-recommended process.

B. Modify the GCDS configuration to use the HRIS application as the data source and complete any necessary adjustments

C. Export HRIS data to a CSV file every day. and build a solution to define the delta with the previous day; import the result as a CSV file via the Admin console.

D. Build an application that will fetch updated data from the HRIS system via Open API. and then update Google Workspace with the Directory API accordingly.