ExamGecko
Search Search Login
Home Home / Google / ChromeOS Administrator

Google ChromeOS Administrator Practice Test - Questions Answers, Page 2

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

You are enrolling several devices to send to a remote location. How can you ensure that these devices will automatically connect to the wireless network at the remote location when powered on for the first time?
Your hardware OEM issues a recall for a safety issue. You need to deprovision devices from management before returning to the OEM. They will replace your existing ChromeOS devices with a different model. Which option should you choose when deprovisioning to make sure you can reuse your Chrome Education/Enterprise Upgrade and remain compliant?
You are asked why ChromeOS devices do not require additional antivirus software. How should you respond?
You need to get to the enterprise enrollment screen. What should you do?
What should an administrator do to view the number and type of ChromeOS upgrades purchased and in use by their domain?
You are tasked with converting hundreds of Windows & Mac machines across multiple locations to ChromeOS Flex and enrolling them into the Admin console. The available network bandwidth Is limited at many of the locations and the devices are not currently managed with any endpoint management system. Which two operations are required to perform the task? Choose 2 answers
A ChromeOS Administrator has deployed ChromeOS devices in their organization. How can the company evaluate the compatibility with future updates following Google's best practices while still gaining access to new features when they launch?
An admin wants to use a custom extension to install a client certificate on a ChromeOS device so that it can connect to the corporate WI-FI. Which step Is necessary to accomplish this?
You want to restrict who can sign in to a managed device during working hours. Which two settings do you need to use? Choose 2 answers
You have been tasked with selecting a 3rd party IdP to allow logging into ChromeOS devices. Your ChromeOS devices are displaying an 'Unable to sign in to Google' message. How should you troubleshoot this?

Question 11

Report
Export
Collapse

Help Desk administrators need a limited set of privileges to perform actions in the Google Admin console. How should an administrator grant these permissions while conforming to the practice of least privilege?

A.
Create a Service Desk Group and add Service Desk admins to the group
A.
Create a Service Desk Group and add Service Desk admins to the group
Answers
B.
Create a new custom admin role and assign
B.
Create a new custom admin role and assign
Answers
C.
Grant service desk administrators the Services Admin Role
C.
Grant service desk administrators the Services Admin Role
Answers
D.
Allow Help Desk administrators full access to manage users
D.
Allow Help Desk administrators full access to manage users
Answers
Suggested answer: B

Explanation:

Granular Control:It allows you to select the specific permissions needed for the Help Desk administrators.This ensures they can do their job without having excessive access that could be misused.

Flexibility:You can easily adjust the permissions later if the Help Desk's responsibilities change.

Auditing:The Google Admin console tracks changes made by each role,making it easier to identify the source of any unauthorized actions.

How to Create a Custom Admin Role:

Go to the Google Admin console.

Navigate toAdmin roles.

ClickCreate new role.

Give the role a descriptive name (e.g.,'Help Desk Support').

Carefully select the privileges the Help Desk needs (e.g.,reset passwords,manage user accounts,view device information).

Assign the role to the Help Desk administrators.

Why Other Options Are Less Ideal:

A . Service Desk Group:Groups are primarily for organization and don't provide granular permission control.

C . Services Admin Role:This role has broader permissions than what a Help Desk typically needs,violating the PoLP.

D . Full Access:This grants excessive privileges and significantly increases the risk of accidental or intentional misuse.

Question 12

Report
Export
Collapse

In regular user mode, how does an admin open the crosh shell on a ChromeOS device to run a ping command?

A.
Ctrl + Alt + V
A.
Ctrl + Alt + V
Answers
B.
Ctrl + Alt + t
B.
Ctrl + Alt + t
Answers
C.
Ctrl + Alt + Tab +W
C.
Ctrl + Alt + Tab +W
Answers
D.
Ctrl + Alt + i
D.
Ctrl + Alt + i
Answers
Suggested answer: B

Explanation:

In regular user mode on a ChromeOS device, pressing Ctrl + Alt + t opens the crosh shell (Chrome OS developer shell), a command-line interface. From there, you can execute various commands, including ping to test network connectivity.

Other options are incorrect because they either have no assigned function or trigger different actions in ChromeOS.

Question 13

Report
Export
Collapse

A large marketing company hires interns in the IT department. The interns should see only info from ChromeOS devices but should not be able to manage or update any device.

How should an admin assign this role to Interns?

How should an admin assign this role to interns?

A.
Create a custom services admin role and enable 2FA
A.
Create a custom services admin role and enable 2FA
Answers
B.
Create Custom role under Chrome management and assign Telemetry API role
B.
Create Custom role under Chrome management and assign Telemetry API role
Answers
C.
Create Custom role under Chrome management and assign Settings rote
C.
Create Custom role under Chrome management and assign Settings rote
Answers
D.
Create Custom role under Chrome management and assign Manage ChromeOS devices role K.
D.
Create Custom role under Chrome management and assign Manage ChromeOS devices role K.
Answers
Suggested answer: B

Explanation:

To grant interns read-only access to ChromeOS device information without management or update capabilities, you should:

Create Custom Role: In the Google Admin console, navigate to 'Device management' -> 'Chrome management' -> 'User settings' -> 'Roles.'

Assign Telemetry API Role: Within the custom role, assign the 'Telemetry API' role. This allows interns to view device information collected through the API but not make changes.

Exclude Other Roles: Ensure no other roles are assigned that grant management or update permissions.

Option A is incorrect because it involves service admin roles, which typically have broader administrative access.

Option C is incorrect because the 'Settings' role might grant more permissions than intended.

Option D is incorrect because the 'Manage ChromeOS devices' role grants full management capabilities, which is not suitable for interns.

Chrome Browser Cloud Management API: https://developers.google.com/chrome/policy

Question 14

Report
Export
Collapse

To use Verified Access in your organization, you need to have a Chrome extension that calls Verified Access API on the client devices. Where can you go to get this extension?

A.
Google Play Store
A.
Google Play Store
Answers
B.
Independent software vendor (ISV) or Google Verified Access API
B.
Independent software vendor (ISV) or Google Verified Access API
Answers
C.
Independent software vendor (ISV) repository
C.
Independent software vendor (ISV) repository
Answers
D.
Software API Key store
D.
Software API Key store
Answers
Suggested answer: B

Explanation:

Verified Access requires a Chrome extension to communicate with the Verified Access API. While Google doesn't directly provide this extension, it offers detailed documentation and resources through the Verified Access API. Independent software vendors (ISVs) can use these resources to develop and provide compatible extensions.

Option A is incorrect because Google Play Store is for Android apps, not Chrome extensions.

Option C is incorrect because while ISVs might offer extensions, it's not the sole source. Google's documentation is essential.

Option D is incorrect because API keys are for authentication, not the extension itself.

Question 15

Report
Export
Collapse

You're in charge of deploying video conferencing equipment and it has been decided that you will leverage ChromeOS devices. What initial considerations should you make when deciding on devices?

A.
Deploying instructional guides to all users on setup configuration, and use of new equipment
A.
Deploying instructional guides to all users on setup configuration, and use of new equipment
Answers
B.
A form factor compatible for both remote and site workers is required
B.
A form factor compatible for both remote and site workers is required
Answers
C.
A precise time window on how to apply security patches and updates to all devices
C.
A precise time window on how to apply security patches and updates to all devices
Answers
D.
Devices must have 8GB of RAM and obey supported processor models
D.
Devices must have 8GB of RAM and obey supported processor models
Answers
Suggested answer: B

Explanation:

When deploying video conferencing equipment using ChromeOS devices, the primary consideration is choosing a form factor (device type) that caters to both remote and on-site workers. This ensures flexibility and consistent user experience regardless of location.

Option A is incorrect because while instructional guides are helpful, they are a secondary concern to device suitability.

Option C is incorrect because security patch timing is important but not the initial consideration when choosing devices.

Option D is incorrect because while specifications matter, they should align with the chosen form factor and user needs.

Question 16

Report
Export
Collapse

A ChromeOS Administrator has deployed ChromeOS devices in their organization. How can the company evaluate the compatibility with future updates following Google's best practices while still gaining access to new features when they launch?

A.
Enable 'Auto Updates' on all devices on the 'Stable channel*, but let the employees in the IT department run their devices on the 'Beta channel* so they have time to evaluate and adapt the environment to each update before it reaches Stable
A.
Enable 'Auto Updates' on all devices on the 'Stable channel*, but let the employees in the IT department run their devices on the 'Beta channel* so they have time to evaluate and adapt the environment to each update before it reaches Stable
Answers
B.
Disable ''Auto Updates'' on all devices and let the admin test the newest release on the 'Stable channel' on their own device before rolling it out organization-wide
B.
Disable ''Auto Updates'' on all devices and let the admin test the newest release on the 'Stable channel' on their own device before rolling it out organization-wide
Answers
C.
Set 5% of the organization across several departments on the 'Beta channel'1, and configure the rest of the fleet to receive auto updates on the 'Stable channel'
C.
Set 5% of the organization across several departments on the 'Beta channel'1, and configure the rest of the fleet to receive auto updates on the 'Stable channel'
Answers
D.
Set the entire fleet to update in accordance with the 'Long-term Support (LTS) channel'
D.
Set the entire fleet to update in accordance with the 'Long-term Support (LTS) channel'
Answers
Suggested answer: A

Explanation:

This approach balances access to new features with controlled testing. Here's how it works:

Stable Channel: Most devices receive automatic updates on the Stable channel, ensuring security and stability for the majority of users.

Beta Channel: IT staff use the Beta channel to access updates earlier, allowing them to identify and address potential issues before they affect the entire organization.

Evaluation and Adaptation: IT staff can test compatibility, adjust configurations, and prepare for broader deployment based on their experience with the Beta channel.

Option B is incorrect because disabling auto-updates compromises security and delays access to new features.

Option C is incorrect because while a small beta group is useful, it might not be enough to cover all potential issues.

Option D is incorrect because the LTS channel focuses on stability, not early access to new features.

Question 17

Report
Export
Collapse

Which management feature makes ChromeOS devices a popular choice for IT administrators in educational organizations and enterprises?

Which management feature makes ChromeOS devices enterprises?

A.
Secure management through on prem infrastructure
A.
Secure management through on prem infrastructure
Answers
B.
Remote BIOS controls and firmware update
B.
Remote BIOS controls and firmware update
Answers
C.
Centralized management through Admin console
C.
Centralized management through Admin console
Answers
D.
Inability to remotely control and monitor devices
D.
Inability to remotely control and monitor devices
Answers
Suggested answer: C

Explanation:

The ChromeOS Admin console provides centralized management, making it a popular choice for IT administrators. It allows them to manage policies, apps, extensions, and device settings from a single interface, streamlining administration and ensuring consistency across devices.

Option A is incorrect because ChromeOS management is primarily cloud-based, not on-premises.

Option B is incorrect because while BIOS control might be available, it's not the primary management feature.

Option D is incorrect because ChromeOS devices can be remotely controlled and monitored through the Admin console.

About ChromeOS device management: https://support.google.com/chrome/a/answer/1289314?hl=en

Question 18

Report
Export
Collapse

What should an administrator do to view the number and type of ChromeOS upgrades purchased and in use by their domain?

A.
Verify upgrades on devices page
A.
Verify upgrades on devices page
Answers
B.
Check subscriptions in billing
B.
Check subscriptions in billing
Answers
C.
Contact partner to verify
C.
Contact partner to verify
Answers
D.
Check reports page for upgrades
D.
Check reports page for upgrades
Answers
Suggested answer: B

Explanation:

To view the number and type of ChromeOS upgrades purchased and in use, administrators should check the 'Subscriptions' section in the billing area of the Google Admin console. This section provides a clear overview of the organization's ChromeOS upgrade subscriptions and usage.

Other options are incorrect because they don't directly provide information about ChromeOS upgrade subscriptions:

Option A (Verify upgrades on devices page): Shows upgrades on individual devices, not the overall purchase and usage.

Option C (Contact partner to verify): Unnecessary if the information is readily available in the Admin console.

Option D (Check reports page for upgrades): Might provide some usage data, but not the purchase details.

Sign in to your Admin console: https://support.google.com/chrome/a/answer/182076?hl=en

Question 19

Report
Export
Collapse

As a ChromeOS Administrator, you have been asked to enroll all of your devices into a specific device OU using Zero-Touch Enrollment (ZTE). What are the next steps?

A.
Generate a ZTE pre-provision enrollment token for your specified device OU
A.
Generate a ZTE pre-provision enrollment token for your specified device OU
Answers
B.
Give the company domain name to your Chrome Partner to enable ZTF
B.
Give the company domain name to your Chrome Partner to enable ZTF
Answers
C.
Generate a ZTE pre-provision enrollment token directly for your domain root OU
C.
Generate a ZTE pre-provision enrollment token directly for your domain root OU
Answers
D.
Generate a ZTE pre-provision enrollment token for your specified user OU
D.
Generate a ZTE pre-provision enrollment token for your specified user OU
Answers
E.
Use a dedicated ZTE Admin account for device enrollment
E.
Use a dedicated ZTE Admin account for device enrollment
Answers
Suggested answer: A, B

Explanation:

Generate a ZTE pre-provision enrollment token for your specified device OU: This token associates devices with the specific organizational unit (OU) during enrollment, allowing for easier management and policy application.

Give the company domain name to your Chrome Partner to enable ZTF: This enables the Zero-Touch Framework, allowing devices to be automatically enrolled as soon as they connect to the internet.

Why other options are incorrect:

C (Generate token for root OU): While possible, it's not ideal as it doesn't allow for granular control over different device groups.

D (Generate token for user OU): Zero-Touch Enrollment is specifically for devices, not users.

E (Use dedicated admin account): While recommended for security, it's not a mandatory step for ZTE.

Question 20

Report
Export
Collapse

Which remote command is required to remove a device from management policy updates?

A.
Deprovision
A.
Deprovision
Answers
B.
Reset
B.
Reset
Answers
C.
Disable
C.
Disable
Answers
D.
Powerwash
D.
Powerwash
Answers
Suggested answer: A

Explanation:

The 'Deprovision' command is specifically designed to remove a ChromeOS device from management policy updates. This means the device will no longer receive updates, configurations, or restrictions pushed from the Google Admin console.

Here's what happens when you deprovision a device:

Policy Removal:All enterprise policies and configurations are removed from the device.

Management Removal:The device is disassociated from the Google Admin console and no longer considered managed.

Data Wipe (Optional):You can choose to wipe the device's data during deprovisioning to ensure no company data remains.

Other options like 'Reset,' 'Disable,' or 'Powerwash' may have different effects:

Reset:Resets the device to factory settings but might not remove management if not done through the Admin console.

Disable:Prevents the user from signing in but doesn't remove policies or management.

Powerwash:Factory resets the device,removing all user data and configurations,including management.

Deprovision a device:https://support.google.com/chrome/a/answer/3523633

Total 60 questions
Go to page: of 6
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms