ExamGecko
Search Search Login
Home Home / Google / Professional Google Workspace Administrator
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

The compliance team at your organization is conducting a legal investigation into some concerning sales activities of an employee eight months ago The compliance team contacted you for assistance on the situation You set up the default Google Vault retention rules so all data is retained only for one year You must assist the compliance team with the investigation What should you do1?
You are configuring a customer relationship management (CRM) solution to integrate with Google Workspace services for the sales department at your organization The CRM solution is in the Google Workspace Marketplace and you deploy the specific CRM solution Employees report that there are no contacts and documents visible in the CRM solution You must identify and fix the problem What should you do?
Your business partner requests that a new custom cloud application be set up to log in without having separate credentials. What is your business partner required to provide in order to proceed?
Your team is collaborating on a new project by using a Google Doc They are using Doc comments to add numerous questions and suggestions You want to ensure that sensitive data in the Doc comments does not appear in the recipients' inboxes when a user is notified that a comment has been assigned to them What should you do?
You want to create a list of IP addresses that are approved to send email to your domain. To accomplish this, what section of the Google Workspace Admin console should you update?
An employee at your company does not need access to their Workspace account while they are on leave for a year When they return you need to ensure they have access to their account and that all their data and current emails remain intact Also their shared documents must be available to other users You must accomplish this goal in the most cost-effective way What should you do?
Your IT team is being asked to fulfill a query by your organization's legal department that requires an MBOX file that will be shared to a third-party partner for eDiscovery. The query must be run on multiple users. Legal has no admin rights to Google Vault. What should you do to fulfil the request?
Your organization was recently targeted by a phishing attempt that affected several users You must efficiently determine the full extent of the phishing attempt and prevent further issues from occurring What should you do?
Your organization has offices in Canada Italy and the United States You want to ensure that employees can access corporate Gmail and Drive from these three geographic locations only What should you do?
Your organization wants to grant Google Vault access to an external regulatory authority. In an effort to comply with an investigation, the external group needs the ability to view reports in Google Vault. What should you do?

Question 185 - Professional Google Workspace Administrator discussion

Report
Export

Your organization has a group of users who interact with sensitive information and their accounts contain valuable files You need to protect these users from targeted online attacks What should you do?

A.
Enable 2-Step Verification for those users and recommend they use Google Authenticator
Answers
A.
Enable 2-Step Verification for those users and recommend they use Google Authenticator
B.
Enable 2-Step Verification for those users and recommend they use SMS codes
Answers
B.
Enable 2-Step Verification for those users and recommend they use SMS codes
C.
Disable password recovery for end users
Answers
C.
Disable password recovery for end users
D.
Enroll all accounts for those users in the Advanced Protection Program
Answers
D.
Enroll all accounts for those users in the Advanced Protection Program
Suggested answer: D

Explanation:

Understanding the Requirement:

The scenario involves a group of users who handle sensitive information and have valuable files in their accounts.

The goal is to protect these users from targeted online attacks.

Options Analysis:

Option A: Enable 2-Step Verification for those users and recommend they use Google Authenticator

2-Step Verification (2SV) enhances security by adding an extra layer of authentication. Google Authenticator is a reliable method, but it may not be sufficient against highly targeted attacks.

Option B: Enable 2-Step Verification for those users and recommend they use SMS codes

While SMS codes are a form of 2SV, they are considered less secure than other methods due to potential vulnerabilities like SIM swapping.

Option C: Disable password recovery for end users

Disabling password recovery can prevent unauthorized access through recovery options but does not provide active protection against targeted attacks.

Option D: Enroll all accounts for those users in the Advanced Protection Program

The Advanced Protection Program (APP) is designed specifically to protect users at high risk of targeted attacks. It includes strong measures such as requiring a physical security key for login, blocking unauthorized access attempts, and restricting access to sensitive data.

Recommended Solution:

Enrolling users in the Advanced Protection Program (APP):

Step 1: Identify High-Risk Users:

Identify users who handle sensitive information and have valuable files.

Step 2: Enroll in APP:

Go to the Google Admin console.

Navigate to the Security section and find the Advanced Protection Program.

Enroll the identified high-risk users in APP.

Step 3: Implement Security Keys:

Ensure users have security keys (e.g., Titan Security Keys) for login.

Guide users through the process of setting up and using security keys.

Step 4: User Education:

Educate users on the importance of APP and how it protects their accounts.

Provide training on recognizing phishing attempts and other security best practices.

Benefits of APP:

Enhanced Security:

APP provides the highest level of security for Google accounts, requiring security keys for authentication.

Protection Against Phishing:

Security keys are highly resistant to phishing attacks, which are common in targeted online attacks.

Limited Access:

APP restricts access to sensitive data, ensuring that only trusted apps and services can interact with the protected accounts.

Google Workspace Admin Help: Advanced Protection Program

Google Workspace Security: Advanced Protection Program

Google Security Blog: Advanced Protection Program

Show Answer
asked 18/09/2024
Ted Kang
37 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms