The latest Google Professional Google Workspace Administrator certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the Google Professional Google Workspace Administrator exam and earn Google Professional Google Workspace Administrator certification.
Table of Contents
- Question 41
- Exam Question
- Correct Answer
- Question 42
- Exam Question
- Correct Answer
- Reference
- Question 43
- Exam Question
- Correct Answer
- Reference
- Question 44
- Exam Question
- Correct Answer
- Explanation
- Reference
- Question 45
- Exam Question
- Correct Answer
- Reference
- Question 46
- Exam Question
- Correct Answer
- Reference
- Question 47
- Exam Question
- Correct Answer
- Reference
- Question 48
- Exam Question
- Correct Answer
- Reference
- Question 49
- Exam Question
- Correct Answer
- Reference
- Question 50
- Exam Question
- Correct Answer
- Explanation
- Reference
Question 41
Exam Question
A user has traveled overseas for an extended trip to meet with several vendors. The user has reported that important draft emails have not been saved in Gmail, which is affecting their productivity. They have been constantly moving between hotels, vendor offices, and airport lounges.
You have been tasked with troubleshooting the issue remotely. Your first priority is diagnosing and preventing this from happening again, and your second priority is recovering the drafts if possible. Due to time zone differences, and the user’s busy meeting schedule, you have only been able to arrange a brief Hangouts Meet with the user to gather any required troubleshooting inputs.
What two actions should be taken on this call with the user? (Choose two.)
A. Ask the user to send an email to you so you can check the headers.
B. Record a HAR file of the user composing a new email.
C. Take screenshots of the user’s screen when composing an email.
D. Use the Email log search in the Admin panel.
E. Check the Users > App Users Activity report.
Correct Answer
A. Ask the user to send an email to you so you can check the headers.
B. Record a HAR file of the user composing a new email.
C. Take screenshots of the user’s screen when composing an email.
Question 42
Exam Question
Your organization recently implemented context-aware access policies for Google Drive to allow users to access Drive only from corporate managed desktops. Unfortunately, some users can still access Drive from non-corporate managed machines.
What preliminary checks should you perform to find out why the Context-Aware Access policy is not working as intended? (Choose two.)
A. Confirm that the user has a Google Workspace Enterprise Plus license.
B. Delete and recreate a new Context-Aware Access device policy.
C. Check whether device policy application is installed on users’ devices.
D. Confirm that the user has at least a Google Workspace Business license.
E. Check whether Endpoint Verification is installed on users’ desktops.
Correct Answer
C. Check whether device policy application is installed on users’ devices.
E. Check whether Endpoint Verification is installed on users’ desktops.
Reference
Google Workspace Admin Help > Security and data protection > Login protections and controls > Control access to apps based on user & device context > Assign Context-Aware access levels to apps
Google Workspace Admin Help > Manage devices for your organization > Set up computer management > Turn endpoint verification on or off
Question 43
Exam Question
Your company moved to Google Workspace last month and wants to install Hangouts Meet Hardware in all of their conference rooms. This will allow employees to walk into a room and use the in-room hardware to easily join their scheduled meeting. A distributed training session is coming up, and the facilitator wants to make remote room joining even easier. Participants in remote rooms should walk into their room and begin receiving the training without having to take any actions to join the session.
How should you accomplish this?
A. In the Admin Console, select the devices in Meeting Room Hardware, select Call, and Enter the meeting code.
B. Room participants will need to start the meeting from the remote in the room.
C. By adding the rooms to the Calendar invite, they will all auto-join at the scheduled time.
D. Select Add Live Stream to the Calendar invite; all rooms added to the event will auto-join at the scheduled time.
Correct Answer
A. In the Admin Console, select the devices in Meeting Room Hardware, select Call, and Enter the meeting code.
Reference
Google Workspace Admin Help > Meet hardware > Manage devices and resources > Remotely manage Meet hardware devices
Question 44
Exam Question
Your organization has a new security requirement around data exfiltration on iOS devices. You have a requirement to prevent users from copying content from a Google app (Gmail, Drive, Docs, Sheets, and Slides) in their work account to a Google app in their personal account or a third-party app.
What steps should you take from the admin panel to prevent users from copying data from work to non-work apps on iOS devices?
A. Navigate to “Data Protection” setting in Google Admin Console’s Device management section and disable the “Allow users to copy data to personal apps” checkbox.
B. Disable “Open Docs in Unmanaged Apps” setting in Google Admin Console’s Device management section.
C. Navigate to Devices > Mobile and endpoints > Universal Settings > General and turn on Basic Mobile Management.
D. Clear the “Allow items created with managed apps to open in unmanaged apps” checkbox.
Correct Answer
A. Navigate to “Data Protection” setting in Google Admin Console’s Device management section and disable the “Allow users to copy data to personal apps” checkbox.
Explanation
Allow users to copy Google Workspace items to personal apps
Allows users to copy content from a Google app (such as Gmail, Drive, Docs, Sheets, Slides, Chat, and Meet) to a Google app in their personal account or a third-party app. Also allows users to drag content between Google apps, for any account.
To prevent users from copying or dragging information from their work account, or using the All inboxes feature (which combines messages from multiple Gmail accounts into one inbox), uncheck the box.
Reference
Google Workspace Learning Center > Use the iOS Google Device Policy app
Question 45
Exam Question
Your Accounts Payable department is auditing software license contracts companywide and has asked you to provide a report that shows the number of active and suspended users by organization unit, which has been set up to match the Regions and Departments within your company. You need to produce a Google Sheet that shows a count of all active user accounts and suspended user accounts by Org unit.
What should you do?
A. From the Admin Console Billing Menu, turn off auto-assign, and then click into Assigned Users and export the data to Sheets.
B. From the Admin Console Users Menu, download a list of all Users to Google Sheets, and join that with a list of ORGIDs pulled from the Reports AP
C. From the Google Workspace Reports Menu, run and download the Accounts Aggregate report, and export the data to Google Sheets.
D. From the Admin Console Users Menu, download a list of all user info columns and currently selected columns.
Correct Answer
D. From the Admin Console Users Menu, download a list of all user info columns and currently selected columns.
Reference
Google Workspace Admin Help > Advanced user management > Download a list of users
Question 46
Exam Question
Your company has a broad, granular IT administration team, and you are in charge of ensuring proper administrative control. One of those teams, the security team, requires access to the Security Investigation Tool.
What should you do?
A. Assign the pre-built security admin role to the security team members.
B. Create a Custom Admin Role with the Security Center privileges, and then assign the role to each of the security team members.
C. Assign the Super Admin Role to the security team members.
D. Create a Custom Admin Role with the security settings privilege, and then assign the role to each of the security team members.
Correct Answer
B. Create a Custom Admin Role with the Security Center privileges, and then assign the role to each of the security team members.
Reference
Google Workspace Admin Help > Make a user an admin > Admin roles for businesses > Pre-built administrator roles
Question 47
Exam Question
Your Chief Information Security Officer is concerned about phishing. You implemented 2 Factor Authentication and forced hardware keys as a best practice to prevent such attacks. The CISO is curious as to how many such email phishing attempts you’ve avoided since putting the 2FA+Hardware Keys in place last month.
Where do you find the information your CISO is interested in seeing?
A. Security > Advanced Security Settings > Phishing Attempts
B. Apps > Google Workspace > Gmail > Phishing Attempts
C. Security > Dashboard > Spam Filter: Phishing
D. Reporting > Reports > Phishing
Correct Answer
C. Security > Dashboard > Spam Filter: Phishing
Reference
Google Workspace Admin Help > Security and data protection > Security center: Prevent, detect, and remediate security threats > Security dashboard reports > Spam filter report
Question 48
Exam Question
Your marketing department needs an easy way for users to share items more appropriately. They want to easily link-share Drive files within the marketing department, without sharing them with your entire company.
What should you do to fulfil this request? (Choose two.)
A. Create a shared drive that’s shared internally organization-wide.
B. Update Drive sharing for the marketing department to restrict to internal.
C. Create a shared drive for internal marketing use.
D. Update the link sharing default to the marketing team when creating a document.
E. In the admin panel Drive settings, create a target audience that has all of marketing as members.
Correct Answer
B. Update Drive sharing for the marketing department to restrict to internal.
E. In the admin panel Drive settings, create a target audience that has all of marketing as members.
Reference
- Google Drive Help > Share files from Google Drive
- Google Workspace Learning Center > Get started with shared drives > Create a shared drive
- Google Workspace Admin Help > Groups > Advanced groups management > Create and manage target audiences > About target audiences
- Google Workspace Admin Help > Groups > Advanced groups management > Create and manage target audiences > Create a target audience
Question 49
Exam Question
Your organization is about to expand by acquiring two companies, both of which are using Google Workspace. The CISO has mandated that strict ‘No external content sharing’ policies must be in place and followed.
How should you securely configure sharing policies to satisfy both the CISO’s mandate while allowing external sharing with the newly acquired companies?
A. Allow external sharing of Drive content for the IT group only.
B. Create a Drive DLP policy that will allow sharing to only domains on an allowlist.
C. Use shared drives to store the content, and share only individual files externally.
D. Let users share files between the two companies by using the ‘Trusted Domains’ feature. Create an allowlist of the trusted domains, and choose sharing settings for the users.
Correct Answer
D. Let users share files between the two companies by using the ‘Trusted Domains’ feature. Create an allowlist of the trusted domains, and choose sharing settings for the users.
Reference
Google Workspace Admin Help > Add and manage domains > Add or change domains > Allow external sharing with only trusted domains
Question 50
Exam Question
As the Workspace Administrator, you have been asked to configure Google Cloud Directory Sync (GCDS) in order to manage Google Group memberships from an internal LDAP server. However, multiple Google Groups must have their memberships managed manually. When you run the GCDS sync, you notice that these manually managed groups are being deleted.
What should you do to prevent these groups from being deleted?
A. In the GCDS configuration manager, update the group deletion policy setting to “don’t delete Google groups not found in LDAP.”
B. Use the Directory API to check and update the group’s membership after the GCDS sync is completed.
C. Confirm that the base DN for the group email address attribute matches the base DN for the user email address attribute.
D. In the user attribute settings of the GCDS configuration manager options, set the Google domain users deletion/suspension policy to “delete only active Google domain users not found in LDAP.”
Correct Answer
A. In the GCDS configuration manager, update the group deletion policy setting to “don’t delete Google groups not found in LDAP.”
Explanation
Don’t delete Google Groups not found in LDAP If checked, Google Group deletions in your Google domain are disabled, even when the Groups aren’t in your LDAP server.
Reference
- Google Workspace Admin Help > Google Cloud Directory Sync > GCDS FAQ
- Google Workspace Admin Help > Google Cloud Directory Sync > More options… > Learn more about Configuration Manager options