[2022] Pass Google Google-Workspace-Administrator Test Practice Test Questions Exam Dumps [Q56-Q70]

Rate this post

[2022] Pass Google Google-Workspace-Administrator Test Practice Test Questions Exam Dumps

Verified Google-Workspace-Administrator dumps Q&As – Google-Workspace-Administrator dumps with Correct Answers

Google Google-Workspace-Administrator Exam Syllabus Topics:

Topic	Details
Topic 1	Implement and manage Google Workspace configurations based on corporate policies Managing rollout of new Google functionality to end users
Topic 2	Configure policies for all devices Granting API access to applications that need access
Topic 3	Configure and implement data governance policies Removing connected applications and sites
Topic 4	Integrating third-party marketplace apps to specific OUs in Google Workspace Configuring objectionable content
Topic 5	Manage user lifecycles with provisioning and deprovisioning processes Implications of current Google Workspace APIs to development efforts
Topic 6	Configuring security and data region Managing content compliance rules Configuring phishing settings
Topic 7	Collect log files or reports needed to engage with support Troubleshoot user reports of mail delivery problems
Topic 8	Configure user authentication Describe how to manage third-party applications
Topic 9	Describe how to import and export data Use Vault to assist legal teams. Considerations
Topic 10	Demonstrate how to set up and configure Gmail. Considerations Enabling email delegation for an OU
Topic 11	Designing security integration and addressing objections Scanning email with Data Loss Prevention (DLP)
Topic 12	Transferring user data from one user to another Creating administrative roles Using Apps Script to automate tasks
Topic 13	Configuring Secure Transport compliance Configuring attachment compliance
Topic 14	Troubleshoot workspace access and performance Classify and mitigate basic email attacks

QUESTION 56
Your organization has been on Google Workspace Enterprise for one year. Recently, an admin turned on public link sharing for Drive files without permission from security. Your CTO wants to get better insight into changes that are made to the Google Workspace environment. The chief security officer wants that data brought into your existing SIEM system.
What are two ways you should accomplish this? (Choose two.)

Use the Data Export Tool to export admin audit data to your existing SIEM system

Use Apps Script and the Reports API to export admin audit data to your existing SIEM system.

Use Apps Script and the Reports API to export drive audit data to the existing SIEM system

Use the BigQuery export to send admin audit data to the existing SIEM system via custom code

Use the BigQuery export to send drive audit data to the existing SIEM system via custom code.

QUESTION 57
Your Finance team has to share quarterly financial reports in Sheets with an external auditor. The external company is not a Workspace customer and allows employees to access public sites such as Gmail and Facebook. How can you provide the ability to securely share content to collaborators that do not have a Google Workspace or consumer (Gmail) account?

Allow external sharing with the auditor using the ‘Trusted Domains’ feature.

Enable the ‘Visitor Sharing’ feature, and demonstrate it to the Finance team.

Use the ‘Publish’ feature in the Sheets editor to share the contents externally.

Attach the Sheet file to an email message, and send to the external auditor.

QUESTION 58
You are supporting an investigation that is being conducted by your litigation team. The current default retention policy for mail is 180 days, and there are no custom mail retention policies in place. The litigation team has identified a user who is central to the investigation, and they want to investigate the mail data related to this user without the user’s awareness.
What two actions should you take? (Choose two.)

Move the user to their own Organization Unit, and set a custom retention policy

Create a matter using Google Vault, and share the matter with the litigation team members.

Create a hold on the user’s mailbox in Google Vault

Reset the user’s password, and share the new password with the litigation team.

Copy the user’s data to a secondary account.

QUESTION 59
As the newly hired Admin in charge of Google Workspace, you learn that the organization has been using Google Workspace for months and has configured several security rules for accessing Google Drive. A week after you start your role, users start to complain that they cannot access Google Drive anymore from one satellite office and that they receive an error message that “a company policy is blocking access to this app.” The users have no issue with Gmail or Google Calendar. While investigating, you learn that both this office’s Internet Service Provider (ISP) and the global IP address when accessing the internet were changed over the weekend. What is the most logical reason for this issue?

An access level was defined based on the IP range and applied to Google Drive via Context-Aware Access.

Under Drive and Docs > Sharing Settings, the “Whitelisted domains” list needs to be updated to add the new ISP domain.

The Network Mask defined in Security > Settings > SSO with 3rd Party IdPs should be updated to reflect the new IP range.

You need to raise a ticket to Google Cloud Support to have your new IP ranges registered for Drive API access.

QUESTION 60
Your organization has enabled spoofing protection against unauthenticated domains. You are receiving complaints that email from multiple partners is not being received. While investigating this issue, you find that emails are all being sent to quarantine due to the configured safety setting. What should be the next step to allow uses to review these emails and reduce the internal complaints while keeping your environment secure?

Add your partner domains IPs to the Inbound Gateway setting.

Change the spoofing protection to deliver the emails to spam instead of quarantining them.

Add your partner sending IP addresses to an allowlist.

Change the spoofing protection to deliver the emails to inboxes with a custom warning instead of quarantining them.

QUESTION 61
Your organization’s Sales Department uses a generic user account ([email protected]) to manage requests. With only one employee responsible for managing the departmental account, you are tasked with providing the department with the most efficient means to allow multiple employees various levels of access and manage requests from a common email address.
What should you do?

Configure a Google Group as an email list.

Delegate email access to department employees.

Configure a Google Group as a collaborative inbox.

Configure a Google Group, and set the Access Level to Announcement Only.

QUESTION 62
Your company works regularly with a partner. Your employees regularly send emails to your partner’s employees. You want to ensure that the Partner contact information available to your employees will allow them to easily select Partner names and reduce sending errors.
What should you do?

Educate users on creating personal contacts for the Partner Employees.

Add a secondary domain for the Partner Company and create user entries for each Partner user.

Create shared contacts in the Directory using the Directory API.

Create shared contacts in the Directory using the Domain Shared Contacts API.

QUESTION 63
Your company has been engaged in a lawsuit, and the legal department has been asked to discover and hold all email for two specific users. Additionally, they have been asked to discover and hold any email referencing “Secret Project 123.” What steps should you take to satisfy this request?

Create a Matter and a Hold. Set the Hold to Gmail, set it to the top level Organization, and set the search terms to “secret project 123.” Create a second Hold. Set the second Hold to Gmail, set it to Accounts, and enter: user1 @your-company.com, [email protected]. Save.

Create a Matter and a Hold. Set the Hold to Gmail, set it to Accounts, and set the usernames to: [email protected], user2@your-company. Set the search terms to: (secret project 123). Save.

Create a Matter and a Hold. Set the Hold to Gmail, set it to Accounts, and enter: user1@your- company.com AND [email protected]. Set the search terms to: secret AND project AND 123. Save.

Create a Matter and a Hold. Set the Hold to Gmail, set it to Accounts, and set the usernames to: [email protected], user2@your-company. Set the search terms to secret OR project OR 123. Save.

QUESTION 64
Madeupcorp.com is in the process of migrating from a third-party email system to Google Workspace. The VP of Marketing is concerned that her team already administers the corporate AdSense, AdWords, and YouTube channels using their @madeupcorp.com email addresses, but has not tracked which users have access to which service. You need to ensure that there is no disruption.
What should you do?

Run the Transfer Tool for Unmanaged users.

Use a Google Form to survey the Marketing department users.

Assure the VP that there is no action required to configure Google Workspace.

Contact Google Enterprise Support to identify affected users.

QUESTION 65
Your organization is on Google Workspace Enterprise and allows for external sharing of Google Drive files to facilitate collaboration with other Google Workspace customers. Recently you have had several incidents of files and folders being broadly shared with external users and groups. Your chief security officer needs data on the scope of external sharing and ongoing alerting so that external access does not have to be disabled.
What two actions should you take to support the chief security officer’s request? (Choose two.)

Create a custom Dashboard for external sharing in the Security Investigation Tool.

Review total external sharing in the Aggregate Reports section.

Create an alert from Drive Audit reports to notify of external file sharing.

Automatically block external sharing using DLP rules.

Review who has viewed files using the Google Drive Activity Dashboard.

QUESTION 66
After a recent transition to Google Workspace, helpdesk has received a high volume of password reset requests and cannot respond in a timely manner. Your manager has asked you to determine how to resolve these requests without relying on additional staff.
What should you do?

Create a custom Apps Script to reset passwords.

Use a third-party tool for password recovery.

Enable non-admin password recovery.

Create a Google form to submit reset requests.

QUESTION 67
In the years prior to your organization moving to Google Workspace, it was relatively common practice for users to create consumer Google accounts with their corporate email address (for example, to monitor Analytics, manage AdSense, and collaborate in Docs with other partners who were on Google Workspace.) You were able to address active employees’ use of consumer accounts during the rollout, and you are now concerned about blocking former employees who could potentially still have access to those services even though they don’t have access to their corporate email account.
What should you do?

Contact Google Enterprise Support to provide a list of all accounts on your domain(s) that access non-Google Workspace Google services and have them blocked.

Use the Transfer Tool for Unmanaged Accounts to send requests to the former users to transfer their account to your domain as a managed account.

Provide a list of all active employees to the managers of your company’s Analytics, AdSense, etc. accounts, so they can clean up the respective access control lists.

Provision former user accounts with Cloud Identity licenses, generate a new Google password, and place them in an OU with all Google Workspace and Other Google Services disabled.

QUESTION 68
Your company has acquired a new company in Japan and wants to add all employees of the acquisition to your existing Google Workspace domain. The new company will retain its original domain for email addresses and, due to the very sensitive nature of its work, the new employees should not be visible in the global directory. However, they should be visible within each company’s separate directory. What should you do to meet these requirements?

Create a new Google Workspace domain isolated from the existing one, and create users in the new domain instead.

Under Directory Settings > Contact sharing, disable the contact sharing option and wait for 24 hours to allow the settings to propagate before creating the new employee accounts.

Redesign your OU organization to have 2 child OUs for each company directly under the root. In Directory Settings > Visibility Settings, define custom directories for each company, and set up Visibility according to the OU.

Create one dynamic group for each company based on a custom attribute defining the company. In Directory Settings > Visibility Settings, define custom directories for each company, and set up Visibility according to the dynamic group.

QUESTION 69
A company using Google Workspace has reports of cyber criminals trying to steal usernames and passwords to access critical business dat a. You need to protect the highly sensitive user accounts from unauthorized access.
What should you do?

Turn on password expiration.

Enforce 2FA with a physical security key.

Use a third-party identity provider.

Enforce 2FA with Google Authenticator app.

QUESTION 70
As the Workspace Administrator, you have been asked to configure Google Cloud Directory Sync (GCDS) in order to manage Google Group memberships from an internal LDAP server. However, multiple Google Groups must have their memberships managed manually. When you run the GCDS sync, you notice that these manually managed groups are being deleted. What should you do to prevent these groups from being deleted?

In the GCDS configuration manager, update the group deletion policy setting to “don’t delete Google groups not found in LDAP.”

Use the Directory API to check and update the group’s membership after the GCDS sync is completed.

Confirm that the base DN for the group email address attribute matches the base DN for the user email address attribute.

In the user attribute settings of the GCDS configuration manager options, set the Google domain users deletion/suspension policy to “delete only active Google domain users not found in LDAP.”

Google-Workspace-Administrator certification guide Q&A from Training Expert Dumpleader: https://www.dumpleader.com/Google-Workspace-Administrator_exam.html

Google Google-Workspace-Administrator Exam Syllabus Topics:

Leave a Reply Cancel reply