• Home
  • Articles
  • [Dec-2023] Google-Workspace-Administrator Certification with Actual Questions from Actual4Exams [Q79-Q103]

[Dec-2023] Google-Workspace-Administrator Certification with Actual Questions from Actual4Exams [Q79-Q103]

Share

[Dec-2023] Google-Workspace-Administrator Certification with Actual Questions from Actual4Exams

Updated Google-Workspace-Administrator Dumps PDF - Google-Workspace-Administrator Real Valid Brain Dumps With 155 Questions!

NEW QUESTION # 79
Your cyber security team has requested that all email destined for external domains be scanned for credit card numbers, and if found, the email must be encrypted using your cloud-based third-party encryption provider. You are responsible for configuring to meet this request.
What should you do?

  • A. Create a content compliance rule on outbound mail using the predefined rule for credit card numbers, and check "Change route" to send to your third-party encryption provider to encrypt.
  • B. Create a content compliance rule on outbound mail using the predefined rule for credit card numbers, and check "Encrypt message if not encrypted".
  • C. Create a content compliance rule on outbound mail and internal-sending mail using the predefined rule for credit card numbers, and add a custom header that your third-party encryption provider can scan for and encrypt.
  • D. Create a content compliance rule on outbound mail using the predefined rule for credit card numbers, and add a custom header that your third-party encryption provider can scan for and encrypt.

Answer: A

Explanation:
https://support.google.com/a/answer/3540538?hl=en


NEW QUESTION # 80
A recent legal investigation requires all emails and Google Drive documents from a specific user to be retrieved. As the administrator, how can you fulfill the legal team's request?

  • A. Use Security Investigation Tool to Search Google Drive events for all of the user's documents, and use Google Admin > Reports > Email Log Search to find their emails.
  • B. Search Google Drive for all of the user's documents, and ask them to forward all of their emails.
  • C. Utilize Google Vault to hold, search, and export data of interest.
  • D. Use the Gmail API and Google Drive API to automatically collect and export data.

Answer: C


NEW QUESTION # 81
When reloading Gmail in Chrome, the web browser returns a 500 Error. As part of the troubleshooting process, Google support asks you to gather logs. How can this be accomplished?

  • A. Chrome > Window Context Menu > More Tools > Task Manager > Screen Capture List of Running Processes
  • B. chrome://net-export > Start Logging to Disk > Confirm validity with https://netlog-viewer.appspot.com
  • C. Admin.google.com > Reporting > Reports > Apps Reports > Gmail
  • D. Chrome > Window Context Menu > More Tools > Developer Tools > Network Tab > Reload the page to replicate the error > "Export HAR"

Answer: D

Explanation:
chrome://settings/syncSetup


NEW QUESTION # 82
The company's ten most senior executives are to have their offices outfitted with dedicated, standardized video conference cameras, microphones, and screens. The goal is to reduce the amount of technical support they require due to frequent, habitual switching between various mobile and PC devices throughout their busy days. You must ensure that it is easier for the executives to join Meet video conferences with the dedicated equipment instead of whatever device they happen to have available.
What should you do?

  • A. Deploy Hangouts Meet Hardware Kits to each executive office, and associate the Meet hardware with the executives' calendars.
  • B. Provision managed Chromeboxes and set the executives' Chrome homepage to meet. google.com via device policy.
  • C. Set up unmanaged Chromeboxes and set the executives' homepage to meet.google.com via Chrome settings.
  • D. Set up the executive offices as reservable Calendar Resources, deploy Hangouts Meet Hardware Kits, and associate the Meet hardware with the room calendars.

Answer: A

Explanation:
https://support.google.com/meethardware/answer/3341435?hl=en If the device is for a single user, such as in a home office or other remote location, you can associate the device with their personal calendar. Whenever an organizer adds that user to a Calendar event, the meeting name appears on their device.


NEW QUESTION # 83
Four weeks ago. you exported data from Google Vault and emailed the PST export file to your legal admin. They accidentally deleted the PST file and need it sent again. What steps should you take to re-send the PST file to the legal admin?

  • A. Return to the Google Vault export page, and download the ZIP file again.
  • B. Return to the Email Log Search page, and download the PST file again.
  • C. Ask the legal admin to return to Google Vault to download the PST file again.
  • D. Repeat the original search for the original timeframe, and export the data again.

Answer: D


NEW QUESTION # 84
Your company has acquired a new company in Japan and wants to add all employees of the acquisition to your existing Google Workspace domain. The new company will retain its original domain for email addresses and, due to the very sensitive nature of its work, the new employees should not be visible in the global directory. However, they should be visible within each company's separate directory. What should you do to meet these requirements?

  • A. Create one dynamic group for each company based on a custom attribute defining the company. In Directory Settings > Visibility Settings, define custom directories for each company, and set up Visibility according to the dynamic group.
  • B. Under Directory Settings > Contact sharing, disable the contact sharing option and wait for 24 hours to allow the settings to propagate before creating the new employee accounts.
  • C. Redesign your OU organization to have 2 child OUs for each company directly under the root. In Directory Settings > Visibility Settings, define custom directories for each company, and set up Visibility according to the OU.
  • D. Create a new Google Workspace domain isolated from the existing one, and create users in the new domain instead.

Answer: C

Explanation:
https://support.google.com/a/answer/7566446?hl=en&ref_topic=9832541


NEW QUESTION # 85
Your organization wants to grant Google Vault access to an external regulatory authority. In an effort to comply with an investigation, the external group needs the ability to view reports in Google Vault. What should you do?

  • A. Create accounts for external users and assign Vault privileges.
  • B. Share Vault access with external users.
  • C. Assign an Archived User license to the external users.
  • D. Temporarily assign the super admin role to the users

Answer: A


NEW QUESTION # 86
Your company recently acquired an organization that was not leveraging Google Workspace. Your company is currently using Google Cloud Directory Sync (GCDS) to sync from an LDAP directory into Google Workspace. You want to deploy a second instance of GCDS and apply the same strategy with the newly acquired organization, which also has its users in an LDAP directory. How should you change your GCDS instance to ensure that the setup is successful? (Choose two.)

  • A. Set up an additional instance of GCDS running on another server, and handle the acquired organization's synchronization.
  • B. Upgrade to the multiple LDAP version of GCDS.
  • C. Provide your current GCDS instance with admin credentials to the recently acquired organization's LDAP directory.
  • D. Add an LDAP sync rule to your current GCDS instance in order to synchronize new users.
  • E. Set up exclusion rules to ensure that users synced from the acquired organization's LDAP are not, suspended.

Answer: A,E

Explanation:
https://support.google.com/a/answer/7177266?hl=en#zippy=%2Ccan-i-sync-gcds-from-multiple-ldap-directories GCDS can only sync from a single LDAP directory. If you have multiple LDAP directories, it is recommended that you consolidate your LDAP server data into a single directory. You need to run 2 separate GCDS instances while creating exclusion rules to prevent suspensions/deletions.


NEW QUESTION # 87
Your organization is concerned with the increasing threat of phishing attacks that may impact users.
Leadership has declined to force-enable 2-Step verification. You need to apply a security measure to prevent unauthorized access to user accounts.
What should you do?

  • A. Enable Employee ID Login Challenge.
  • B. Decrease the Maximum User Session Length.
  • C. Enable Enforce Strong Password policy.
  • D. Revoke token authorizations to external applications.

Answer: A

Explanation:
You can use employee IDs as a login challenge. Employee IDs are more difficult to guess and phish than other types of identity challenges. To use the employee ID login challenge, you need to make sure that IDs are associated with your users' accounts. https://support.google.com/a/answer/6002699?hl=en


NEW QUESTION # 88
Your organization does not allow users to share externally. The security team has recently approved an exemption for specific members of the marketing team and sales to share documents with external customers, prospects, and partners. How best would you achieve this?

  • A. Create a configuration group with the approved users as members, and use it to create a target audience.
  • B. Create a configuration group with the approved users as members, and enable external sharing for this group.
  • C. Enable external sharing for the marketing and sales organizational units.
  • D. Enable external sharing only to allowlisted domains provided by marketing and sales teams.

Answer: B

Explanation:
https://support.google.com/a/answer/9224126?hl=en#zippy=%2Coptions-for-configurations-groups:~:text=Using%20configurations%20groups,of%20your%20organization.


NEW QUESTION # 89
Your organization has been on Google Workspace Enterprise for one year. Recently, an admin turned on public link sharing for Drive files without permission from security. Your CTO wants to get better insight into changes that are made to the Google Workspace environment. The chief security officer wants that data brought into your existing SIEM system.
What are two ways you should accomplish this? (Choose two.)

  • A. Use the BigQuery export to send drive audit data to the existing SIEM system via custom code.
  • B. Use the Data Export Tool to export admin audit data to your existing SIEM system
  • C. Use Apps Script and the Reports API to export drive audit data to the existing SIEM system
  • D. Use Apps Script and the Reports API to export admin audit data to your existing SIEM system.
  • E. Use the BigQuery export to send admin audit data to the existing SIEM system via custom code

Answer: D,E


NEW QUESTION # 90
All Human Resources employees at your company are members of the "HR Department" Team Drive. The HR Director wants to enact a new policy to restrict access to the "Employee Compensation" subfolder stored on that Team Drive to a small subset of the team.
What should you do?

  • A. Move the subfolder to the HR Director's MyDrive and share it with the relevant team members.
  • B. Use the Drive API to modify the permissions of the individual files contained within the subfolder.
  • C. Use the Drive API to modify the permissions of the Employee Compensation subfolder.
  • D. Move the contents of the subfolder to a new Team Drive with only the relevant team members.

Answer: D

Explanation:
"Inherited permissions can't be removed from a file or folder in a shared drive".
ref: https://developers.google.com/drive/api/v3/manage-sharing


NEW QUESTION # 91
As the newly hired Admin in charge of Google Workspace, you learn that the organization has been using Google Workspace for months and has configured several security rules for accessing Google Drive. A week after you start your role, users start to complain that they cannot access Google Drive anymore from one satellite office and that they receive an error message that "a company policy is blocking access to this app." The users have no issue with Gmail or Google Calendar. While investigating, you learn that both this office's Internet Service Provider (ISP) and the global IP address when accessing the internet were changed over the weekend. What is the most logical reason for this issue?

  • A. You need to raise a ticket to Google Cloud Support to have your new IP ranges registered for Drive API access.
  • B. The Network Mask defined in Security > Settings > SSO with 3rd Party IdPs should be updated to reflect the new IP range.
  • C. Under Drive and Docs > Sharing Settings, the "Whitelisted domains" list needs to be updated to add the new ISP domain.
  • D. An access level was defined based on the IP range and applied to Google Drive via Context-Aware Access.

Answer: D


NEW QUESTION # 92
A user joined your organization and is reporting that every time they start their computer they are asked to sign in. This behavior differs from what other users within the organization experience. Others are prompted to sign in biweekly. What is the first step you should take to troubleshoot this issue for the individual user?

  • A. Verify that 2-Step Verification is enforced for this user.
  • B. Confirm that this user has their employee ID populated as a sign-in challenge.
  • C. Reset the user's sign-in cookies
  • D. Check the session length duration for the organizational unit the user is provisioned in.

Answer: D


NEW QUESTION # 93
Your IT team is being asked to fulfill a query by your organization's legal department that requires an MBOX file that will be shared to a third-party partner for eDiscovery. The query must be run on multiple users. Legal has no admin rights to Google Vault. What should you do to fulfil the request?

  • A. Use the Investigation Too! to search for the data requested, and export for the legal department.
  • B. Search for the data in Gmail, and export for the legal department.
  • C. Create a Google Vault matter, search for data, and run an export for the legal department.
  • D. Create a Google Vault matter for each user account, and share the matters to the legal admin.

Answer: C

Explanation:
https://support.google.com/vault/answer/2473458?hl=en


NEW QUESTION # 94
You recently started an engagement with an organization that is also using Google Workspace. The engagement will involve highly sensitive data, and the data needs to be protected from being shared with unauthorized parties both internally and externally. You need to ensure that this data is properly secured.
Which configuration should you implement?

  • A. Create a Team Drive for this engagement, and limit the memberships and sharing settings.
  • B. Turn on external sharing with whitelisted domains, and add the external organization to the whitelist.
  • C. Provision accounts within your domain for the external users, and turn off external sharing for that Org.
  • D. Configure the Drive DLP rules to prevent the sharing of PII and PHI outside of your domain.

Answer: A

Explanation:
https://support.google.com/a/users/answer/9310352#1.1


NEW QUESTION # 95
Your-company.com recently bought 2500 Chrome devices and wants to distribute them to various teams globally. You decided that enterprise enrollment would be the best way to enforce company policies for managed Chrome devices. You discovered that Chrome devices currently end up in the top-level organization unit, and this needs to change to the organizational unit of the device administrator.
What should you do?

  • A. Change Enrollment Controls to Keep Chrome device in current location.
  • B. Change Enrollment Permissions to only allow users in this organization to re-enroll existing devices.
  • C. Change Enrollment Controls to Place Chrome device in user organization.
  • D. Change Enrolment Permissions to not allow users in this organization to enroll new devices.

Answer: C

Explanation:
https://support.google.com/chrome/a/answer/2657289#auto_device_placement_enabled


NEW QUESTION # 96
You have configured Secure Transport (TLS) Compliance for all messages coming to and from an external domain. altostrat.com. that your end users communicate with via Gmail. What will your end users experience when messages are delivered to them from altostrat.com without TLS enabled?

  • A. The message will not be delivered to the end user in any form.
  • B. The message will be delivered to their spam folder.
  • C. A warning banner will appear on the message informing the user that the message was not sent securely.
  • D. The user will receive a failure message informing them that the message could not be delivered to their inbox and that they will need to work with their Workspace administrator to resolve the issue.

Answer: C


NEW QUESTION # 97
Several customers have reported receiving fake collection notices from your company. The emails were received from [email protected], which is the valid address used by your accounting department for such matters, but the email audit log does not show the emails in question. You need to stop these emails from being sent.
What two actions should you take? (Choose two.)

  • A. Disable "Allow users to automatically forward incoming email to another address."
  • B. Disable mail delegation for the [email protected] account.
  • C. Change the password for suspected compromised account [email protected].
  • D. Configure Domain Keys Identified Mail (DKIM) to authenticate email.
  • E. Configure a Sender Policy Framework (SPF) record for your domain.

Answer: D,E

Explanation:
https://support.google.com/a/answer/33786?hl=en
https://support.google.com/a/answer/174124?hl=en


NEW QUESTION # 98
Your organization is part of a highly regulated industry with a very high turnover. In order to recycle licenses for new employees and comply with data retention regulations, it has been determined that certain Google Workspace data should be stored in a separate backup environment.
How should you store data for this situation?

  • A. Train users to use Google Takeout and store their archives locally.
  • B. Write a script and use Google Workspace APIs to access and download user data.
  • C. Use a third-party tool to configure secure backup of Google Workspace data.
  • D. Use routing rules to dual-deliver mail to an on-premises SMTP server and Google Workspace.

Answer: C

Explanation:
https://cloud.google.com/solutions/partners/backing-up-g-suite-data-with-spinbackup


NEW QUESTION # 99
Your company has a broad, granular IT administration team, and you are in charge of ensuring proper administrative control. One of those teams, the security team, requires access to the Security Investigation Tool. What should you do?

  • A. Assign the Super Admin Role to the security team members.
  • B. Create a Custom Admin Role with the Security Center privileges, and then assign the role to each of the security team members.
  • C. Create a Custom Admin Role with the security settings privilege, and then assign the role to each of the security team members.
  • D. Assign the pre-built security admin role to the security team members.

Answer: B

Explanation:
https://support.google.com/a/answer/9043255#:~:text=To%20give%20access%20only%20to%20the%20investigation%20tool%2C%20check%20the%20individual%20boxes%20for%C2%A0Investigation%20Tool%20privileges.%20You%20can%20add%20specific%20privileges%20for%20access%20to%20different%20types%20of%20data%20(for%20example%2C%20Gmail%2C%20Drive%2C%20Device%2C%20and%20User)%3A


NEW QUESTION # 100
A large enterprise that had a security breach is working with an external legal team to determine best practices for an investigation. Using Google Vault, the security team is tasked with exporting data for review by the legal team. What steps should you take to securely share the data in question?

  • A. Determine the scope of the investigation, create a Matter and Holds in Google Vault, and share with the legal team.
  • B. Immediately suspend the user's account, assign an archived user license, and export data.
  • C. Immediately suspend the user's account, search for all the email messages in question, and forward to the legal team.
  • D. Suspend the user's account, search all associated users data in Google Vault, and export the data.

Answer: A


NEW QUESTION # 101
You need to protect your users from untrusted senders sending encrypted attachments via email. You must ensure that these messages are not delivered to users' mailboxes. What step should be taken?

  • A. Enable a safety rule to send these types of messages to spam.
  • B. Use Google Vault to remove these messages from users mailboxes.
  • C. Enable a safety rule to send these types of messages to a quarantine.
  • D. Use the security center to remove the messages from users' mailboxes

Answer: C


NEW QUESTION # 102
Your company has just acquired a new group of users. They have been provisioned into the Google Workspace environment with your primary domain as their primary email address. These new users still need to receive emails from their previous domain. What is the best way to achieve this for these new users, without updating the information of preexisting users?

  • A. Update the Google-provided test domain to be the domain of the acquired company, and then update the email information of all new users with alias emails.
  • B. Without adding a domain, update each user's email information with the previous domain.
  • C. Add the acquired domain as a secondary domain to the primary Google Workspace domain, and then update the email information of all new users with alias emails.
  • D. Add the acquired domain as an alias to the primary Google Workspace domain.

Answer: D


NEW QUESTION # 103
......


Google Cloud Certified - Professional Google Workspace Administrator exam is an essential certification for IT professionals who manage and maintain Google Workspace deployments for their organizations. Passing Google-Workspace-Administrator exam demonstrates that the professional has the necessary skills and knowledge to manage and maintain Google Workspace deployments effectively. Google Cloud Certified - Professional Google Workspace Administrator certification is highly valued in the industry and can open up new career opportunities for the professional.

 

Pass Your Google-Workspace-Administrator Exam Easily With 100% Exam Passing Guarantee: https://torrentpdf.actual4exams.com/Google-Workspace-Administrator-real-braindumps.html

Related Articles

more
Google Google-Workspace-Administrator Certification Practice Exam

Free download your actual questions & answers for better study. You can get the valid prep torrent and be proficient in the basic knowledge about the actual test. You will pass at the first time for your actual test. In case of failure, we will full refund you.

Latest Actual Exam Dump

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 Actual4Exams NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy