ExamGecko
Search Search Login
Home Home / Google / Professional Google Workspace Administrator
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

The compliance team at your organization is conducting a legal investigation into some concerning sales activities of an employee eight months ago The compliance team contacted you for assistance on the situation You set up the default Google Vault retention rules so all data is retained only for one year You must assist the compliance team with the investigation What should you do1?
You are configuring a customer relationship management (CRM) solution to integrate with Google Workspace services for the sales department at your organization The CRM solution is in the Google Workspace Marketplace and you deploy the specific CRM solution Employees report that there are no contacts and documents visible in the CRM solution You must identify and fix the problem What should you do?
Your business partner requests that a new custom cloud application be set up to log in without having separate credentials. What is your business partner required to provide in order to proceed?
Your team is collaborating on a new project by using a Google Doc They are using Doc comments to add numerous questions and suggestions You want to ensure that sensitive data in the Doc comments does not appear in the recipients' inboxes when a user is notified that a comment has been assigned to them What should you do?
You want to create a list of IP addresses that are approved to send email to your domain. To accomplish this, what section of the Google Workspace Admin console should you update?
An employee at your company does not need access to their Workspace account while they are on leave for a year When they return you need to ensure they have access to their account and that all their data and current emails remain intact Also their shared documents must be available to other users You must accomplish this goal in the most cost-effective way What should you do?
Your IT team is being asked to fulfill a query by your organization's legal department that requires an MBOX file that will be shared to a third-party partner for eDiscovery. The query must be run on multiple users. Legal has no admin rights to Google Vault. What should you do to fulfil the request?
Your organization was recently targeted by a phishing attempt that affected several users You must efficiently determine the full extent of the phishing attempt and prevent further issues from occurring What should you do?
Your organization wants to grant Google Vault access to an external regulatory authority. In an effort to comply with an investigation, the external group needs the ability to view reports in Google Vault. What should you do?
You have configured your Google Workspace account on the scheduled release track to provide additional time to prepare for new product releases and determine how they will impact your users. There are some new features on the latest roadmap that your director needs you to test as soon as they become generally available without changing the release track for the entire organization. What should you do?

Question 56 - Professional Google Workspace Administrator discussion

Report
Export

Your company wants to provide secure access for its employees. The Chief Information Security Officer disabled peripheral access to devices, but wants to enable 2-Step verification. You need to provide secure access to the applications using Google Workspace.

What should you do?

A.
Enable additional security verification via email.
Answers
A.
Enable additional security verification via email.
B.
Enable authentication via the Google Authenticator.
Answers
B.
Enable authentication via the Google Authenticator.
C.
Deploy browser or device certificates via Google Workspace.
Answers
C.
Deploy browser or device certificates via Google Workspace.
D.
Configure USB Yubikeys for all users.
Answers
D.
Configure USB Yubikeys for all users.
Suggested answer: B

Explanation:

2-Step Verification (2SV):

2-Step Verification adds an extra layer of security by requiring users to verify their identity using a second factor in addition to their password. This helps protect against unauthorized access, even if the password is compromised.

Google Authenticator:

Google Authenticator is a mobile app that generates time-based one-time passcodes (TOTP) for 2SV. It works even when the device is offline, providing a secure and reliable second factor for authentication.

Implementation Steps:

Enable 2-Step Verification:

Go to the Google Admin console (admin.google.com).

Navigate to Security > Authentication > 2-Step Verification.

Turn on 2-Step Verification for the organization.

Deploy Google Authenticator:

Instruct users to download the Google Authenticator app from their respective app stores (iOS or Android).

Provide guidance on setting up Google Authenticator with their Google Workspace accounts.

Users will scan a QR code provided during the setup process to link their account with the Authenticator app.

Advantages of Google Authenticator:

Security: It provides a highly secure method of 2-step verification as the codes are generated on the user's device and change every 30 seconds.

Ease of Use: It's easy to set up and use, with a straightforward user interface.

Offline Functionality: Codes can be generated even without internet access, ensuring consistent access to 2SV codes.

Why Other Options Are Less Suitable:

A . Enable additional security verification via email:

Email-based verification is less secure than app-based 2SV because email accounts can be more easily compromised.

C . Deploy browser or device certificates via Google Workspace:

While device certificates add security, they are typically used for device management and access control rather than for 2-step verification purposes.

D . Configure USB Yubikeys for all users:

USB Yubikeys are highly secure and suitable for 2SV, but they require physical distribution and management of hardware tokens, which can be logistically complex and costly. Given the context of disabled peripheral access, this option might contradict the policy of the Chief Information Security Officer.

Google Workspace Admin Help: Set up 2-Step Verification

Google Workspace Security: 2-Step Verification

Show Answer
asked 18/09/2024
SoftwareONE Deutschland GmbH
31 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms