GOOGLE-WORKSPACE-ADMINISTRATOR Online Practice Questions and Answers

Your organization wants more visibility into actions taken by Google staff related to your data for audit and security reasons. They are specifically interested in understanding the actions performed by Google support staff with regard to the support cases you have opened with Google. What should you do to gain more visibility?

A. From Google Admin Panel, go to Audit, and select Access Transparency Logs. Most Voted

B. From Google Admin Panel, go to Audit, and select Login Audit Log.

C. From Google Admin Panel, go to Audit, and select Rules Audit Log.

D. From Google Admin Panel, go to Audit, and select Admin Audit Log.

Your organization has noticed several incidents of accidental oversharing inside the organization. Specifically, several users have shared sensitive Google Drive items with the entire organization by clicking `anyone in this group with this link can view'. You have been asked by senior management to help users share more appropriately and also to prevent accidental oversharing to the entire organization. How would you best accomplish this?

A. Create groups, add users accordingly, and educate users on how to share to specific groups of people.

B. Disable sharing to the entire organization so that users must consciously add every person who needs access.

C. Determine sharing boundaries for users that work with sensitive information, and then implement target audiences.

D. Temporarily disable the Google Drive service for individuals who continually overshare.

Your organization uses a third-party product to filter mail before it arrives at your Workspace Domain. How should you configure Gmail to ensure that inbound messages are not seen as a spam attack due to the volume of mail being received from this product?

A. Add the product's IP addresses as an approved sender.

B. Allowlist the IP addresses of the third-party filtering product.

C. Add the product's IP addresses to your organization's SPF record.

D. List the IP addresses of the product as an Inbound Gateway.

Your CISO is concerned about third party applications becoming compromised and exposing Google Workspace data you have made available to them. How could you provide granular insight into what data third party applications are accessing?

What should you do?

A. Create a report using the OAuth Token Audit Activity logs.

B. Create a report using the Calendar Audit Activity logs.

C. Create a report using the Drive Audit Activity logs.

D. Create a reporting using the API Permissions logs for Installed Apps.

A recent legal investigation requires all emails and Google Drive documents from a specific user to be retrieved. As the administrator, how can you fulfill the legal team's request?

A. Use Security Investigation Tool to Search Google Drive events for all of the user's documents, and use Google Admin > Reports > Email Log Search to find their emails.

B. Search Google Drive for all of the user's documents, and ask them to forward all of their emails.

C. Use the Gmail API and Google Drive API to automatically collect and export data.

D. Utilize Google Vault to hold, search, and export data of interest.

The human resources (HR) team needs a centralized place to share key documents with the entire organization while protecting confidential documents and mitigating the risk of losing documents when someone leaves. These documents must be editable by the HR team members. What is the best way to set this up?

A. Have the HR lead create a folder in their MyDrive for the non-confidential files, give edit access to the HR team, and give view access to the organization.

B. Create a shared drive for the non-confidential files, give the HR team manager access, and give contributor access to the entire organization.

C. Create a shared drive for non-confidential files, give the HR team content manager access, and give view access to the organization.

D. Create a shared drive for all files, give the HR team content manager access, and give view access to the organization.

Your company recently acquired an organization that was not leveraging Google Workspace. Your company is currently using Google Cloud Directory Sync (GCDS) to sync from an LDAP directory into Google Workspace. You want to deploy a second instance of GCDS and apply the same strategy with the newly acquired organization, which also has its users in an LDAP directory. How should you change your GCDS instance to ensure that the setup is successful? (Choose two.)

A. Provide your current GCDS instance with admin credentials to the recently acquired organization's LDAP directory.

B. Add an LDAP sync rule to your current GCDS instance in order to synchronize new users.

C. Set up exclusion rules to ensure that users synced from the acquired organization's LDAP are not, suspended.

D. Set up an additional instance of GCDS running on another server, and handle the acquired organization's synchronization.

E. Upgrade to the multiple LDAP version of GCDS.

What steps does an administrator need to take to enforce TLS with a particular domain?

A. Enable email safety features with the receiving domain.

B. Set up secure transport compliance with the receiving domain.

C. Configure an alternate secure route with the receiving domain.

D. Set up DKIM authentication with the receiving domain.

Several customers have reported receiving fake collection notices from your company. The emails were received from accounts.receivable@yourcompany.com, which is the valid address used by your accounting department for such matters, but the email audit log does not show the emails in question. You need to stop these emails from being sent.

What two actions should you take? (Choose two.)

A. Change the password for suspected compromised account accounts.receivable@yourcompany.com.

B. Configure a Sender Policy Framework (SPF) record for your domain.

C. Configure Domain Keys Identified Mail (DKIM) to authenticate email.

D. Disable mail delegation for the accounts.receivable@yourcompany.com account.

E. Disable "Allow users to automatically forward incoming email to another address."

When reloading Gmail in Chrome, the web browser returns a 500 Error. As part of the troubleshooting process, Google support asks you to gather logs. How can this be accomplished?

A. Chrome > Window Context Menu > More Tools > Developer Tools > Network Tab > Reload the page to replicate the error > "Export HAR"

B. Admin.google.com > Reporting > Reports > Apps Reports > Gmail

C. chrome://net-export > Start Logging to Disk > Confirm validity with https://netlog-viewer.appspot.com

D. Chrome > Window Context Menu > More Tools > Task Manager > Screen Capture List of Running Processes