ExamGecko
Search Search Login
Home Home / Google / Professional Google Workspace Administrator

Google Professional Google Workspace Administrator Practice Test - Questions Answers

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

The compliance team at your organization is conducting a legal investigation into some concerning sales activities of an employee eight months ago The compliance team contacted you for assistance on the situation You set up the default Google Vault retention rules so all data is retained only for one year You must assist the compliance team with the investigation What should you do1?
You are configuring a customer relationship management (CRM) solution to integrate with Google Workspace services for the sales department at your organization The CRM solution is in the Google Workspace Marketplace and you deploy the specific CRM solution Employees report that there are no contacts and documents visible in the CRM solution You must identify and fix the problem What should you do?
Your team is collaborating on a new project by using a Google Doc They are using Doc comments to add numerous questions and suggestions You want to ensure that sensitive data in the Doc comments does not appear in the recipients' inboxes when a user is notified that a comment has been assigned to them What should you do?
Your business partner requests that a new custom cloud application be set up to log in without having separate credentials. What is your business partner required to provide in order to proceed?
An employee at your company does not need access to their Workspace account while they are on leave for a year When they return you need to ensure they have access to their account and that all their data and current emails remain intact Also their shared documents must be available to other users You must accomplish this goal in the most cost-effective way What should you do?
You want to create a list of IP addresses that are approved to send email to your domain. To accomplish this, what section of the Google Workspace Admin console should you update?
Your IT team is being asked to fulfill a query by your organization's legal department that requires an MBOX file that will be shared to a third-party partner for eDiscovery. The query must be run on multiple users. Legal has no admin rights to Google Vault. What should you do to fulfil the request?
Your organization was recently targeted by a phishing attempt that affected several users You must efficiently determine the full extent of the phishing attempt and prevent further issues from occurring What should you do?
Your organization wants to grant Google Vault access to an external regulatory authority. In an effort to comply with an investigation, the external group needs the ability to view reports in Google Vault. What should you do?
You have configured your Google Workspace account on the scheduled release track to provide additional time to prepare for new product releases and determine how they will impact your users. There are some new features on the latest roadmap that your director needs you to test as soon as they become generally available without changing the release track for the entire organization. What should you do?

Question 1

Report
Export
Collapse

You have configured your Google Workspace account on the scheduled release track to provide additional time to prepare for new product releases and determine how they will impact your users. There are some new features on the latest roadmap that your director needs you to test as soon as they become generally available without changing the release track for the entire organization.

What should you do?

A.
Create a new OU and tum on the rapid release track just for this OU.
A.
Create a new OU and tum on the rapid release track just for this OU.
Answers
B.
Create a new Google Group with test users and enable the rapid release track.
B.
Create a new Google Group with test users and enable the rapid release track.
Answers
C.
Establish a separate Dev environment, and set it to rapid release.
C.
Establish a separate Dev environment, and set it to rapid release.
Answers
D.
Ask Google for a demo account with beta access to the new features.
D.
Ask Google for a demo account with beta access to the new features.
Answers
Suggested answer: C

Explanation:

https://support.google.com/a/answer/172177

Question 2

Report
Export
Collapse

You are using Google Cloud Directory Sync to manage users. You performed an initial sync of nearly 1,000 mailing lists to Google Groups with Google Cloud Directory Sync and now are planning to manage groups directly from Google. Over half the groups have been configured with incorrect settings, including who can post, who can join, and which groups can have external members. You need to update groups to be configured correctly.

What should you do?

A.
Use the bulk upload with CSV feature in the Google Workspace Admin panel to update all Groups.
A.
Use the bulk upload with CSV feature in the Google Workspace Admin panel to update all Groups.
Answers
B.
Update your configuration file and resync mailing lists with Google Cloud Directory Sync.
B.
Update your configuration file and resync mailing lists with Google Cloud Directory Sync.
Answers
C.
Create and assign a custom admin role for all group owners so they can update settings.
C.
Create and assign a custom admin role for all group owners so they can update settings.
Answers
D.
Use the Groups Settings API to update Google Groups with desired settings.
D.
Use the Groups Settings API to update Google Groups with desired settings.
Answers
Suggested answer: D

Explanation:

Enable the Groups Settings API:

In the Google Workspace Admin console, enable the Groups Settings API under 'Security' > 'API controls' > 'Manage Domain Wide Delegation'.

Authorize API Access:

Set up OAuth 2.0 authorization for your application to access the Groups Settings API.

Update Group Settings Programmatically:

Use the Groups Settings API to programmatically update settings for the Google Groups.

You can set parameters such as who can post, who can join, and external member settings.

Automate and Validate Updates:

Develop scripts or use tools to automate the update process for all groups.

Validate the changes to ensure that all groups have the correct settings as per your requirements.

Google Workspace Admin Help: Google Groups Settings API

Google Workspace Admin Help: Manage Groups for Business

.

Question 3

Report
Export
Collapse

Your organization wants to grant Google Vault access to an external regulatory authority. In an effort to comply with an investigation, the external group needs the ability to view reports in Google Vault. What should you do?

A.
Create accounts for external users and assign Vault privileges.
A.
Create accounts for external users and assign Vault privileges.
Answers
B.
Share Vault access with external users.
B.
Share Vault access with external users.
Answers
C.
Assign an Archived User license to the external users.
C.
Assign an Archived User license to the external users.
Answers
D.
Temporarily assign the super admin role to the users
D.
Temporarily assign the super admin role to the users
Answers
Suggested answer: A

Explanation:

Create External Accounts: In the Google Admin console, create new Google Workspace accounts for the external regulatory authority members.

Assign Vault Privileges: Navigate to the Admin roles and assign the necessary Google Vault privileges to these accounts, ensuring they have the access needed to view reports and data for the investigation.

Configure Security Settings: Ensure that the external users have secure access, potentially with additional security measures such as two-factor authentication.

Monitor Access: Regularly audit and monitor the activity of the external users to ensure compliance with your organization's data policies and security requirements.

Revoke Access When Done: Once the investigation is complete, promptly revoke access to ensure continued security of your data.

Google Vault Help - Assign Vault Privileges

Google Workspace Admin Help - Add Users

Question 4

Report
Export
Collapse

Your organization recently bought 1.000 licenses for Cloud Identity Premium. The company's development team created an application in the enterprise service bus (ESB) that will read user data in the human resources information system (HRIS) and create accounts via the Google Directory REST API.

While doing the original test before production use, the team observes a 503 error coming from Google API response after a few users are created The team believes the ESB is not the cause, because it can perform 100 requests per second without any problems. What advice would you give the development team in order to avoid the issue?

A.
Use the domain-wide delegation API to avoid the limitation per account.
A.
Use the domain-wide delegation API to avoid the limitation per account.
Answers
B.
Use an exponential back-off algorithm to retry failed requests.
B.
Use an exponential back-off algorithm to retry failed requests.
Answers
C.
Switch from REST API to gRPC protocol for performance improvement
C.
Switch from REST API to gRPC protocol for performance improvement
Answers
D.
Use the batch request architecture, because it can pack 1,000 API calls in one HTTP request.
D.
Use the batch request architecture, because it can pack 1,000 API calls in one HTTP request.
Answers
Suggested answer: B

Explanation:

Understand the Error:

A 503 error indicates that the service is unavailable, often due to temporary overloading or maintenance of the server.

This can happen when API rate limits are exceeded.

Exponential Back-Off Algorithm:

This algorithm helps manage retries after a request fails, by exponentially increasing the waiting time between retries.

Start with a short delay and increase it exponentially with each subsequent retry.

Implementation:

Modify the ESB application to include the exponential back-off algorithm.

Ensure that the retries are limited to a reasonable number to avoid indefinite looping.

This approach will help mitigate the temporary overloads by spreading out the request attempts.

Google Workspace Admin Help: Handle API Errors

Google Developers: Exponential Backoff

Question 5

Report
Export
Collapse

You want to create a list of IP addresses that are approved to send email to your domain. To accomplish this, what section of the Google Workspace Admin console should you update?

A.
Bypass spam filter
A.
Bypass spam filter
Answers
B.
Content compliance rule
B.
Content compliance rule
Answers
C.
Approved email denylist
C.
Approved email denylist
Answers
D.
Email allowlist
D.
Email allowlist
Answers
Suggested answer: D

Explanation:

Access Email Allowlist Settings:

Navigate to the Google Admin console.

Go to Apps > Google Workspace > Gmail > Spam, Phishing, and Malware.

Update Allowlist:

In the Spam section, find the 'Email allowlist' option.

Add the IP addresses that are approved to send email to your domain.

Save Changes:

Save the settings to ensure the allowlist is updated.

This configuration will allow emails from the specified IP addresses to bypass spam filters and be delivered to your domain.

Google Workspace Admin Help: Configure Email Allowlists

Question 6

Report
Export
Collapse

The compliance team at your organization is conducting a legal investigation into some concerning sales activities of an employee eight months ago The compliance team contacted you for assistance on the situation You set up the default Google Vault retention rules so all data is retained only for one year You must assist the compliance team with the investigation What should you do1?

A.
Do nothing The retention period has already ended and the evidence has already been purged
A.
Do nothing The retention period has already ended and the evidence has already been purged
Answers
B.
Suspend the employee and export all data by using Google Takeout
B.
Suspend the employee and export all data by using Google Takeout
Answers
C.
Assign the compliance team a Google Vault administrator role and create a legal hold for the employee
C.
Assign the compliance team a Google Vault administrator role and create a legal hold for the employee
Answers
D.
Assign the compliance team a Google Vault administrator role and change the default retention rules to three years.
D.
Assign the compliance team a Google Vault administrator role and change the default retention rules to three years.
Answers
Suggested answer: C

Explanation:

Assign Vault Administrator Role: In the Google Admin console, assign the compliance team members the Google Vault administrator role to give them the necessary permissions.

Access Google Vault: Have the compliance team access Google Vault.

Create a Matter: In Google Vault, create a new matter for the investigation.

Create a Hold: Within the matter, create a legal hold specifically targeting the employee's email and any other relevant data. This will preserve all the necessary information beyond the default retention period.

Review Data: The compliance team can now review the preserved data as part of their investigation.

Google Vault Help: Assign Vault privileges

Google Vault Help: Create and manage holds

Question 7

Report
Export
Collapse

Your team is collaborating on a new project by using a Google Doc They are using Doc comments to add numerous questions and suggestions You want to ensure that sensitive data in the Doc comments does not appear in the recipients' inboxes when a user is notified that a comment has been assigned to them What should you do?

A.
Set up an email quarantine to quarantine all incoming emails that contain sensitive data
A.
Set up an email quarantine to quarantine all incoming emails that contain sensitive data
Answers
B.
Disable comments in the Google Doc for your users
B.
Disable comments in the Google Doc for your users
Answers
C.
Create a Gmail content compliance rule and turn oft dynamic email for your team
C.
Create a Gmail content compliance rule and turn oft dynamic email for your team
Answers
D.
Create a Gmail content compliance rule to block incoming messages that contain sensitive data
D.
Create a Gmail content compliance rule to block incoming messages that contain sensitive data
Answers
Suggested answer: C

Explanation:

Create a Content Compliance Rule:

Access the Google Admin console.

Go to Apps > Google Workspace > Gmail > Compliance.

Click on 'Add another rule' to create a new content compliance rule.

Define the conditions to detect sensitive data within email content.

Set actions to quarantine or reject emails that contain sensitive information.

Turn Off Dynamic Email:

In the Admin console, go to Apps > Google Workspace > Gmail > User settings.

Turn off dynamic email for your organization or specific organizational units.

Save and Apply:

Save the compliance rule and dynamic email settings.

These configurations ensure that sensitive data in Doc comments does not appear in recipient inboxes.

Google Workspace Admin Help: Set up content compliance

Google Workspace Admin Help: Turn dynamic email on or off

Question 8

Report
Export
Collapse

Your organization was recently targeted by a phishing attempt that affected several users You must efficiently determine the full extent of the phishing attempt and prevent further issues from occurring What should you do?

A.
* 1 Search BigQuery 0Q9 Km b I message marked as phishing * 2 Require Transport Layer Security (TLS) for all email communications * 3 Instruct all users to reset their passwords
A.
* 1 Search BigQuery 0Q9 Km b I message marked as phishing * 2 Require Transport Layer Security (TLS) for all email communications * 3 Instruct all users to reset their passwords
Answers
B.
* 1 Use email log search to pull all emails for the past three days * 2 Analyze logs of common emails received and contact users. * 3 Instruct users on how to create a Gmail filter to block malicious email addresses
B.
* 1 Use email log search to pull all emails for the past three days * 2 Analyze logs of common emails received and contact users. * 3 Instruct users on how to create a Gmail filter to block malicious email addresses
Answers
C.
* 1 Use the security dashboard to view the number of messages showing evidence ot potential spoofing and then use the investigation tool on affected users to remove malicious email * 2 Enable advanced phishing and malware protection * 3 Deploy Google s Password Alert extension for Chrome
C.
* 1 Use the security dashboard to view the number of messages showing evidence ot potential spoofing and then use the investigation tool on affected users to remove malicious email * 2 Enable advanced phishing and malware protection * 3 Deploy Google s Password Alert extension for Chrome
Answers
D.
* 1 Collect phishing samples forwarded from users * 2 Add IP addresses and email addresses to your denylist * 3. Enroll only affected users to multi-factor authentication (MFA)
D.
* 1 Collect phishing samples forwarded from users * 2 Add IP addresses and email addresses to your denylist * 3. Enroll only affected users to multi-factor authentication (MFA)
Answers
Suggested answer: C

Explanation:

Use the Security Dashboard:

Access the Google Admin console and go to Security > Dashboard.

Review metrics and logs for phishing and spoofing activities.

Identify affected users and potential threats.

Use the Investigation Tool:

From the Security dashboard, access the investigation tool.

Search for and isolate malicious emails sent to affected users.

Take action to remove these emails.

Enable Advanced Protection:

In the Admin console, go to Apps > Google Workspace > Gmail > Safety.

Enable advanced phishing and malware protection features.

Deploy Password Alert Extension:

Ensure the Password Alert Chrome extension is deployed across the organization to help detect password compromises.

Google Workspace Admin Help: Security dashboard

Google Workspace Admin Help: Investigation tool

Google Workspace Admin Help: Phishing and malware protection

Google Workspace Admin Help: Deploy Password Alert

Question 9

Report
Export
Collapse

Your organization has offices in Canada Italy and the United States You want to ensure that employees can access corporate Gmail and Drive from these three geographic locations only What should you do?

A.
Require the use of corporate devices for any access to corporate Gmail and Drive
A.
Require the use of corporate devices for any access to corporate Gmail and Drive
Answers
B.
Use context-aware access to create access levels based on the geographic location and assign them to corporate Gmail and Drive
B.
Use context-aware access to create access levels based on the geographic location and assign them to corporate Gmail and Drive
Answers
C.
Create address lists to restrict the delivery of incoming and outgoing messages and to block notifications from Google Doc comments
C.
Create address lists to restrict the delivery of incoming and outgoing messages and to block notifications from Google Doc comments
Answers
D.
Create data protection rules in Google Workspace that allow data access from only three geographic locations
D.
Create data protection rules in Google Workspace that allow data access from only three geographic locations
Answers
Suggested answer: B

Explanation:

Enable Context-Aware Access:

In the Google Admin console, go to Security > Context-Aware Access.

Enable the context-aware access feature.

Create Access Levels:

Define access levels based on geographic locations (Canada, Italy, and the United States).

Use IP address ranges or other location indicators to specify these regions.

Assign Access Levels:

Assign the created access levels to the Google Workspace services, specifically corporate Gmail and Drive.

Ensure that only users accessing from the specified regions can access these services.

Apply and Monitor:

Save and apply the settings.

Monitor access logs to ensure compliance and security.

Google Workspace Admin Help: Set up context-aware access

Google Workspace Admin Help: Manage context-aware access levels

Question 10

Report
Export
Collapse

Your organization has upgraded to a Google Workspace edition with Vault and has hired a new audit team You are configuring access for this audit team with these privileges

* Chief legal executive - reporting privileges

* Legal audit manager - full Vault privileges

* Data reviewer - searching privileges

You must enable access for these three roles What should you do?

A.
Set up Google Vault service as On for these specific users.
A.
Set up Google Vault service as On for these specific users.
Answers
B.
Assign Google Vault licenses to these users that allow all privileges required for access
B.
Assign Google Vault licenses to these users that allow all privileges required for access
Answers
C.
Set up an Admin role with minimal Vault privileges and assign the rote to all Vault users Approve additional privileges that are requested through a formal approval process
C.
Set up an Admin role with minimal Vault privileges and assign the rote to all Vault users Approve additional privileges that are requested through a formal approval process
Answers
D.
Set up three different Admin roles with specific privileges that match the audit teams responsibilities Assign these Admin roles to the respective users.
D.
Set up three different Admin roles with specific privileges that match the audit teams responsibilities Assign these Admin roles to the respective users.
Answers
Suggested answer: D

Explanation:

Navigate to Admin Roles: Go to the Google Admin console and navigate to the 'Admin roles' section.

Create Admin Roles: Create three separate admin roles:

Chief Legal Executive: Assign reporting privileges only.

Legal Audit Manager: Assign full Vault privileges.

Data Reviewer: Assign searching privileges.

Assign Roles to Users: Assign the created roles to the respective users (Chief Legal Executive, Legal Audit Manager, Data Reviewer).

Set Up Google Vault Access: Ensure the Google Vault service is turned on for these users by navigating to 'Apps' > 'Google Workspace' > 'Google Vault' and verifying that the service is enabled for their organizational unit.

Manage admin roles

Google Vault permissions

Total 197 questions
Go to page: of 20
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms