
Quickly and Easily Pass Google Exam with Google-Workspace-Administrator real Dumps Updated on Nov-2024
Realistic Google-Workspace-Administrator Dumps Questions To Gain Brilliant Result
The Google Google-Workspace-Administrator exam consists of multiple-choice questions and scenario-based questions that will test the candidate's ability to configure and manage various Google Workspace applications, such as Gmail, Calendar, Drive, and more. Google-Workspace-Administrator exam covers topics such as user and group management, security and compliance, data migration, and troubleshooting. Candidates will need to demonstrate their ability to manage Google Workspace in a way that maximizes productivity, security, and collaboration, while minimizing the risk of data loss or breaches.
Google Workspace Administrator certification exam is designed to test the capabilities of professionals who manage and administer Google Workspace, formerly known as G Suite. Google-Workspace-Administrator exam is intended for individuals who are responsible for managing and optimizing Google Workspace services for their organization. Google-Workspace-Administrator exam is designed to test the candidate's knowledge of the core principles of Google Workspace, including Gmail, Calendar, Drive, and Docs. Google-Workspace-Administrator exam also covers advanced topics such as security, compliance, and mobile device management.
Google-Workspace-Administrator certification exam is intended for professionals who are responsible for managing, configuring, and optimizing Google Workspace environments for their organization. Google-Workspace-Administrator exam assesses the candidate's knowledge of Google Workspace products such as Gmail, Calendar, Drive, Docs, Sheets, Slides, and more. It also evaluates their skills in setting up and managing user accounts, groups, and organizational units, as well as their ability to configure security settings and manage mobile devices and applications.
NEW QUESTION # 103
Your company has a broad, granular IT administration team, and you are in charge of ensuring proper administrative control. One of those teams, the security team, requires access to the Security Investigation Tool. What should you do?
- A. Create a Custom Admin Role with the Security Center privileges, and then assign the role to each of the security team members.
- B. Assign the pre-built security admin role to the security team members.
- C. Assign the Super Admin Role to the security team members.
- D. Create a Custom Admin Role with the security settings privilege, and then assign the role to each of the security team members.
Answer: A
Explanation:
https://support.google.com/a/answer/9043255#:~:text=To%20give%20access%20only%20to%20the%20investigation%20tool%2C%20check%20the%20individual%20boxes%20for%C2%A0Investigation%20Tool%20privileges.%20You%20can%20add%20specific%20privileges%20for%20access%20to%20different%20types%20of%20data%20(for%20example%2C%20Gmail%2C%20Drive%2C%20Device%2C%20and%20User)%3A
NEW QUESTION # 104
As a Google Workspace administrator for your organization, you are tasked with controlling which third-party apps can access Google Workspace data. Before implementing controls, as a first step in this process, you want to review all the third-party apps that have been authorized to access Workspace data. What should you do?
- A. Open Admin Console > Security > Less Secure Apps.
- B. Open Admin Console > Security > API Controls > App Access Control > Manage Google Services.
- C. Open Admin Console > Security > API Controls > App Access Control > Manage Third Party App Access.
- D. Open Admin Console > Security > API Controls > App Access Control > Settings.
Answer: C
Explanation:
* Access Admin Console: Log into your Google Workspace Admin Console.
* Navigate to Security Settings: Go to Security > API Controls.
* Manage Third-Party App Access: Select "App Access Control" and then click on "Manage Third Party App Access".
* Review Authorized Apps: Here you will find a list of third-party apps that have been authorized to access your Google Workspace data.
* Evaluate Access: Review the permissions and access scopes of each third-party app to determine if they should continue to have access or need to be restricted.
References
* Google Support: Control which third-party & internal apps access Google Workspace data
NEW QUESTION # 105
Your company's Google Workspace primary domain is "mycompany.com," and it has acquired a startup that is using another cloud provider with a domain named "mystartup.com." You plan to add all employees from the startup to your Google Workspace domain while preserving their current mail addresses. The startup CEO's email address is [email protected], which also matches your company CEO's email address as [email protected], even though they are different people. Each must keep the usage of their email. In addition, your manager asked to have all existing security policies applied for the new employees without any duplication. What should you do to implement the migration?
- A. Create an alias domain, mystartup.com, in your existing Google Workspace domain, set up necessary DNS records, and create all startup employees with the alias domain as their primary email addresses.
- B. Create a secondary domain, mystartup.com, within your current Google Workspace domain, set up necessary DNS records, and create all startup employees with the secondary domain as their primary email addresses.
- C. Create the startup employees in the "mycompany.com' domain, and add a number at the end of the user name whenever there is a conflict. In Gmail > Routing, define a specific route for the OU that targets the startup employees, which will modify the email address domain to "mystartup.com," and remove any numbers previously added. In addition, confirm that the SPF and DKIM records are properly set.
- D. Create a new Google Workspace domain with "mystartup.com," and create a trust between both domains for reusing the same security policies and sharing employee information within the companies.
Answer: B
Explanation:
* Secondary Domain:
* A secondary domain allows you to add another domain to your existing Google Workspace account without creating a separate account.
* This is useful for managing users from different domains under a single Google Workspace instance.
* Steps to Add a Secondary Domain:
* Navigate to the Google Admin console.
* Go to Account > Domains > Manage domains.
* Click "Add a domain" and select "Add another domain".
* Enter the domain name (mystartup.com) and follow the prompts to verify domain ownership by updating DNS records.
* Once verified, create users under the secondary domain:
* Navigate to Directory > Users.
* Click "Add new user" and enter user information, selecting the secondary domain for their email address.
* Ensure all existing security policies are applied by assigning the users to the appropriate organizational units.
References
* Google Workspace Admin Help: Add a Domain
NEW QUESTION # 106
After migrating to Google Workspace, your legal team requests access to search all email and create litigation holds for employees who are involved with active litigation. You need to help the legal team meet this request.
What should you do?
- A. Add the legal team to the Google Vault Google Group.
- B. Create a custom role with Google Vault access, and add the legal team.
- C. Add the legal team to the User Management Admin system role.
- D. Create a matter in Google Vault, and share with the legal team.
Answer: B
NEW QUESTION # 107
You want to create a list of IP addresses that are approved to send email to your domain. To accomplish this, what section of the Google Workspace Admin console should you update?
- A. Approved email denylist
- B. Content compliance rule
- C. Bypass spam filter
- D. Email allowlist
Answer: D
Explanation:
* Access Email Allowlist Settings:
* Navigate to the Google Admin console.
* Go to Apps > Google Workspace > Gmail > Spam, Phishing, and Malware.
* Update Allowlist:
* In the Spam section, find the "Email allowlist" option.
* Add the IP addresses that are approved to send email to your domain.
* Save Changes:
* Save the settings to ensure the allowlist is updated.
* This configuration will allow emails from the specified IP addresses to bypass spam filters and be delivered to your domain.
References
* Google Workspace Admin Help: Configure Email Allowlists
NEW QUESTION # 108
Your admin quarantine is becoming a burden to manage due to a consistently high influx of messages that match the content compliance rule Your security team will not allow you to remove or relax this rule, and as a result, you need assistance processing the messages in the quarantine. What is the first step you should take to enable others to help manage the quarantine, while maintaining security?
- A. Configure the admin quarantine to allow end users to release messages.
- B. Give the users Services > Security Center admin privileges.
- C. Give the users super admin rights to view the admin quarantine.
- D. Give the users Services > Gmail > Access Admin Quarantine admin privileges.
Answer: D
Explanation:
To enable others to help manage the admin quarantine while maintaining security, give the users Services > Gmail > Access Admin Quarantine admin privileges. This specific privilege allows designated users to view and manage the admin quarantine without granting excessive administrative rights.
* Go to the Admin console.
* Navigate to Account > Admin roles.
* Select the role that you want to assign to users or create a new role.
* Assign the "Services > Gmail > Access Admin Quarantine" privilege to the role.
* Add the users to this role.
References:
* Google Workspace Admin Help: Admin quarantine
NEW QUESTION # 109
Your Finance team has to share quarterly financial reports in Sheets with an external auditor. The external company is not a Workspace customer and allows employees to access public sites such as Gmail and Facebook. How can you provide the ability to securely share content to collaborators that do not have a Google Workspace or consumer (Gmail) account?
- A. Attach the Sheet file to an email message, and send to the external auditor.
- B. Allow external sharing with the auditor using the 'Trusted Domains' feature.
- C. Use the 'Publish' feature in the Sheets editor to share the contents externally.
- D. Enable the 'Visitor Sharing' feature, and demonstrate it to the Finance team.
Answer: D
Explanation:
https://support.google.com/drive/answer/9195194?hl=en#:~:text=Share%20with%20visitors,with%20one%20visitor.
NEW QUESTION # 110
Your company is using macOS devices for all employees and has built a process to allow a Google account to be used as credentials (or the device Your company wants to manage newly acquired Windows 10 devices with Google Workspace endpoint management and have employees use their Google Workspace account as login credentials for Windows 10 Which steps should you take to enable this?
Choose 2 answers
- A. Enable Windows device management in Devices > Mobile & endpoints > Settings > Windows settings
- B. Install and configure Google Credential Provider for Windows (GCPW) on each device
- C. Configure Chrome policies on Windows to push advanced device management policies
- D. Sync the Google Accounts and password to AD via Google Cloud Directory Sync V1 (GCDS)
- E. Install and configure Password Sync on each Active Directory (AD) domain controller
Answer: B,C
NEW QUESTION # 111
Your company has received help desk calls from users about a new interface in Gmail that they had not seen before. They determined that it was a new feature that Google released recently. In the future, you'll need time to review the new features so you can properly train employees before they see changes.
What action should you take?
- A. Apps > Google Workspace > Gmail > Uncheck "Enable Gmail Labs for my users"
- B. Device Management > Chrome > Device Settings > Stop auto-updates
- C. Company Profile > Profile > New User Features > Enable "Scheduled Release"
- D. Company Profile > Profile > New User Features > Enable "Rapid Release"
Answer: C
NEW QUESTION # 112
You are configuring a shared drive for the financial department of your organization. The financial team wants to allow members of the shared drive to add. edit, and move documents into the shared drive. It's important that the same users cannot remove or delete files. How can you configure access for these users to match the team's request?
- A. Set up the shared drive, and add the users as editors of the drive.
- B. Set up the shared drive, and add the users as Contributors of the drive.
- C. Set up the shared drive, and add the users as Managers of the drive.
- D. Set up the shared drive, and add the users as Content Managers of the drive.
Answer: B
NEW QUESTION # 113
Your chief compliance officer is concerned about API access to organization data across different cloud vendors. He has tasked you with compiling a list of applications that have API access to Google Workspace data, the data they have access to, and the number of users who are using the applications.
How should you compile the data being requested?
- A. Review the authorized applications for each user via the Google Workspace Admin panel.
- B. Review the token audit log, and compile a list of all the applications and their scopes.
- C. Create a survey via Google forms, and collect the application data from users.
- D. Review the API permissions installed apps list, and export the list.
Answer: B
Explanation:
* Access Admin Console: Log into your Google Workspace Admin Console.
* Navigate to Reports: Go to the Reports section in the Admin Console.
* Token Audit Log: Within the Reports, access the "Token Audit" log. This log provides details on OAuth tokens issued to applications by your users.
* Review Applications: Review the list of applications that have been granted access to your Google Workspace data. This will include information about the scopes (types of data) that each application can access.
* Compile List: Compile a list of all the applications from the token audit log. Include details about the data they have access to and the number of users using each application.
* Export Data: You can export this data to a spreadsheet for further analysis and reporting to your chief compliance officer.
References
* Google Support: Token audit log
NEW QUESTION # 114
A user is reporting that external, inbound messages from known senders are repeatedly being incorrectly classified as spam. What steps should the admin take to prevent this behavior in the future?
- A. Modify the SPF record for your internal domain to include the IPs of the external user's mail servers.
- B. Add the sender's domain to an allowlist via approved senders in the Admin Console.
- C. Instruct the user to add the senders to their contacts.
- D. Update the spam settings in the Admin Console to be less aggressive.
Answer: B
Explanation:
https://support.google.com/a/answer/60752?hl=en#:~:text=Approved%20senders%20list%E2%80%94,settings%20in%20Google%20Workspace.
NEW QUESTION # 115
You are the Workspace administrator for an international organization with Enterprise Plus Workspace licensing. A third of your employees are located in the United States, another third in Europe, and the other third geographically dispersed around the world. European employees are required to have their data stored in Europe. The current OU structure for your organization is organized by business unit, with no attention to user location. How do you configure Workspace for the fastest end user experience while also ensuring that European user data is contained in Europe?
- A. Configure three configuration groups within your domain. Assign the appropriate data regions to each corresponding group, but assign no preference to the users outside of the United States and Europe.
- B. Add three additional OU structures to designate location within the current OU structure. Assign the corresponding data region to each.
- C. Configure a configuration group for European users, and set the data region to "Europe".
- D. Configure a data region at the top level OU of your organization, and set the value to "Europe".
Answer: B
Explanation:
* Assess Current OU Structure: Begin by evaluating the current organizational unit (OU) structure, which is organized by business unit.
* Create Location-Based OUs: Add three additional OUs under the existing structure to categorize users based on their geographical location: United States, Europe, and Other Regions.
* Assign Users to New OUs: Move users into the newly created location-based OUs according to their physical location.
* Set Data Regions: Assign the appropriate data region for each new OU. For the European OU, set the data region to "Europe" to ensure compliance with data residency requirements.
* Validate Configuration: Ensure that the configuration is correctly implemented and verify that European user data is being stored in Europe.
* Monitor Performance: Regularly monitor and optimize the system to ensure the fastest end-user experience globally.
References:
* Google Workspace Admin Help - Manage Data Regions
* Google Workspace Admin Help - Organizational Units
NEW QUESTION # 116
Your organization is part of a highly regulated industry with a very high turnover. In order to recycle licenses for new employees and comply with data retention regulations, it has been determined that certain Google Workspace data should be stored in a separate backup environment.
How should you store data for this situation?
- A. Use routing rules to dual-deliver mail to an on-premises SMTP server and Google Workspace.
- B. Write a script and use Google Workspace APIs to access and download user data.
- C. Train users to use Google Takeout and store their archives locally.
- D. Use a third-party tool to configure secure backup of Google Workspace data.
Answer: D
Explanation:
* Evaluate Third-Party Backup Solutions: Identify third-party tools that offer secure backup solutions for Google Workspace. Examples include Backupify, Spanning Backup, and Afi.ai.
* Choose a Suitable Tool: Based on your organization's needs and compliance requirements, select a tool that offers robust data retention, secure storage, and easy recovery options.
* Set Up the Backup Solution:
* Create an Account: Sign up for the chosen third-party backup service.
* Configure Backup Settings: Link your Google Workspace account and configure the backup settings to meet your data retention policies.
* Schedule Backups: Set up regular backup schedules to ensure data is continuously backed up.
* Test Backups and Recovery: Perform initial backups and test the recovery process to ensure data can be retrieved efficiently when needed.
* Monitor and Maintain: Regularly monitor the backup status and maintain the system to comply with your organization's data retention regulations.
References
* Google Workspace Admin Help - Choose a third-party backup tool
* Backupify - Google Workspace Backup
NEW QUESTION # 117
You have configured SSO using a third-party IDP with your Google Workspace domain. An end user has reported that they cannot sign in to Google Workspace after their username was changed in the third-party SSO product. They can sign in to their other internal applications that use SSO. and no other users are experiencing issues signing in. What could be causing the sign-in issue?
- A. The issued certificate for that user has been revoked and must be updated before the user can have another successful sign in.
- B. The user's Google password was changed administratively, which is causing a sign-in failure.
- C. The SAML assertion is providing the user's previous password attached to their old username.
- D. The SAML assertion provided by the third-party IDP is presenting a username that conflicts with the current username configured in Google Workspace.
Answer: D
Explanation:
The sign-in issue arises because the SAML assertion provided by the third-party IDP is presenting a username that conflicts with the current username configured in Google Workspace. When a username is changed in the third-party IDP, it must be synchronized with Google Workspace. If this synchronization does not happen, Google Workspace will not recognize the updated username and will prevent the user from signing in.
* Verify that the username in the SAML assertion matches the username in Google Workspace.
* If there is a mismatch, update the username in Google Workspace to match the SAML assertion.
* Ensure that future changes in the third-party IDP are reflected in Google Workspace.
References:
* Google Workspace Admin Help: Troubleshoot single sign-on
NEW QUESTION # 118
Your company recently decided to use a cloud-based ticketing system for your customer care needs. You are tasked with rerouting email coming into your customer care address, [email protected] to the cloud platform's email address, [email protected]. As a security measure, you have mail forwarding disabled at the domain level.
What should you do?
- A. Create a rule to forward mail in the [email protected] mailbox to your- [email protected]
- B. Create a recipient map in the Google Workspace Admin console that maps [email protected] to [email protected]
- C. Create a content compliance rule in the Google Workspace Admin console to change route to your- [email protected]
- D. Create a mail contact in the Google Workspace directory that has an email address of your- [email protected]
Answer: B
Explanation:
Disable automatic forwarding https://support.google.com/a/answer/2491924?hl=en Redirect incoming messages to another email address https://support.google.com/a/answer/4524505?hl=en (Optional) To send the message to the original recipient as well as the new address, under Routing options, check the Also route to original destination box.
NEW QUESTION # 119
You are using Google Cloud Directory Sync to manage users. You performed an initial sync of nearly 1,000 mailing lists to Google Groups with Google Cloud Directory Sync and now are planning to manage groups directly from Google. Over half the groups have been configured with incorrect settings, including who can post, who can join, and which groups can have external members. You need to update groups to be configured correctly.
What should you do?
- A. Use the bulk upload with CSV feature in the Google Workspace Admin panel to update all Groups.
- B. Create and assign a custom admin role for all group owners so they can update settings.
- C. Use the Groups Settings API to update Google Groups with desired settings.
- D. Update your configuration file and resync mailing lists with Google Cloud Directory Sync.
Answer: D
Explanation:
https://support.google.com/a/answer/6129577?hl=en#:~:text=Create%20and%20assign%20the%20role&text=Click%20Assign%20role.,organizational%20unit%20and%20click%20Done.
NEW QUESTION # 120
Your Accounts Payable department is auditing software license contracts companywide and has asked you to provide a report that shows the number of active and suspended users by organization unit, which has been set up to match the Regions and Departments within your company. You need to produce a Google Sheet that shows a count of all active user accounts and suspended user accounts by Org unit.
What should you do?
- A. From the Admin Console Users Menu, download a list of all user info columns and currently selected columns.
- B. From the Admin Console Billing Menu, turn off auto-assign, and then click into Assigned Users and export the data to Sheets.
- C. From the Admin Console Users Menu, download a list of all Users to Google Sheets, and join that with a list of ORGIDs pulled from the Reports API.
- D. From the Google Workspace Reports Menu, run and download the Accounts Aggregate report, and export the data to Google Sheets.
Answer: A
Explanation:
https://support.google.com/a/answer/7348070?hl=it
NEW QUESTION # 121
Madeupcorp.com is in the process of migrating from a third-party email system to Google Workspace. The VP of Marketing is concerned that her team already administers the corporate AdSense, AdWords, and YouTube channels using their @madeupcorp.com email addresses, but has not tracked which users have access to which service. You need to ensure that there is no disruption.
What should you do?
- A. Assure the VP that there is no action required to configure Google Workspace.
- B. Run the Transfer Tool for Unmanaged users.
- C. Use a Google Form to survey the Marketing department users.
- D. Contact Google Enterprise Support to identify affected users.
Answer: B
Explanation:
* Assess the Current State: Identify which users are using the @madeupcorp.com email addresses for services like AdSense, AdWords, and YouTube.
* Use the Transfer Tool for Unmanaged Users:
* Access Google Admin Console: Go to admin.google.com and sign in with your administrator account.
* Navigate to Tools: In the Admin console, go to "Tools" and then select "Transfer tool for unmanaged users."
* Enter Domain Information: Enter the domain name (madeupcorp.com) and verify the domain.
* List Unmanaged Users: The tool will generate a list of unmanaged users who are using their
@madeupcorp.com email addresses.
* Send Transfer Requests: Send transfer requests to these users, prompting them to accept the transfer to the managed Google Workspace account.
* Follow Up: Ensure all users have accepted the transfer request to avoid any disruptions in accessing Google services with their corporate email addresses.
* Verify: Confirm that the transferred accounts are now managed under the Google Workspace domain.
References
* Google Workspace Admin Help - Transfer tool for unmanaged users
NEW QUESTION # 122
Your organization recently bought 1.000 licenses for Cloud Identity Premium. The company's development team created an application in the enterprise service bus (ESB) that will read user data in the human resources information system (HRIS) and create accounts via the Google Directory REST API.
While doing the original test before production use, the team observes a 503 error coming from Google API response after a few users are created The team believes the ESB is not the cause, because it can perform 100 requests per second without any problems. What advice would you give the development team in order to avoid the issue?
- A. Use the batch request architecture, because it can pack 1,000 API calls in one HTTP request.
- B. Use the domain-wide delegation API to avoid the limitation per account.
- C. Switch from REST API to gRPC protocol for performance improvement
- D. Use an exponential back-off algorithm to retry failed requests.
Answer: D
NEW QUESTION # 123
The credentials of several individuals within your organization have recently been stolen. Using the Google Workspace login logs, you have determined that in several cases, the stolen credentials have been used in countries other than the ones your organization works in. What else can you do to increase your organization's defense-in-depth strategy?
- A. Use Mobile device management geo-fencing to prevent malicious actors from using these stolen credentials.
- B. Use Context-Aware Access to deny access to Google services from geo locations other than the ones your organization operates in.
- C. Enforce higher complexity passwords by rolling it out to the affected users.
- D. Implement an IP block on the malicious user's IPs under Security Settings in the Admin Console.
Answer: B
Explanation:
https://support.google.com/a/answer/9262032?hl=en#zippy=%2Cdefine-access-levelsbasic-mode:~:text=This%20example%20shows%20an%20access%20level%20called%20%E2%80%9Ccorp_access.%E2%80%9D%20If%20%E2%80%9Ccorp_access%E2%80%9D%20is%20applied%20to%20Gmail%2C%20users%20can%20access%20Gmail%20only%20from%20an%20encrypted%20and%20company%2Downed%20device%2C%20and%20only%20from%20the%20US%20or%20Canada.
NEW QUESTION # 124
......
Start your Google-Workspace-Administrator Exam Questions Preparation: https://www.examstorrent.com/Google-Workspace-Administrator-exam-dumps-torrent.html
A Fully Updated Google-Workspace-Administrator Exam Dumps - PDF Questions and Testing Engine: https://drive.google.com/open?id=1UCI5aNuwn2wvFHqc8DPeIQLAF5peRJY5