• Home
  • Articles
  • [Q119-Q140] Google-Workspace-Administrator 100% Guarantee Download Google-Workspace-Administrator Exam PDF Q&A [Apr 03, 2025]

[Q119-Q140] Google-Workspace-Administrator 100% Guarantee Download Google-Workspace-Administrator Exam PDF Q&A [Apr 03, 2025]

Share

Google-Workspace-Administrator 100% Guarantee Download Google-Workspace-Administrator Exam PDF Q&A [Apr 03, 2025]

Get Google-Workspace-Administrator Actual Free Exam Q&As to Prepare for Your Google Certification


Google-Workspace-Administrator certification exam is intended for professionals who are responsible for managing, configuring, and optimizing Google Workspace environments for their organization. Google-Workspace-Administrator exam assesses the candidate's knowledge of Google Workspace products such as Gmail, Calendar, Drive, Docs, Sheets, Slides, and more. It also evaluates their skills in setting up and managing user accounts, groups, and organizational units, as well as their ability to configure security settings and manage mobile devices and applications.


Google Cloud Certified - Professional Google Workspace Administrator certification exam is designed for individuals who have experience administering and managing Google Workspace, Google's suite of productivity and collaboration tools. Google-Workspace-Administrator exam tests candidates on their ability to configure, manage, and troubleshoot various Google Workspace components, including Gmail, Google Drive, Google Meet, and more. It also evaluates their knowledge of security and compliance features, as well as their ability to manage user accounts and groups.


The Google Google-Workspace-Administrator exam covers a range of topics, including user and group management, security and compliance, data migration, and automation. Candidates are tested on their ability to configure and troubleshoot various Google Workspace components, including Gmail, Drive, Docs, Sheets, and Slides. Additionally, the exam assesses candidates' knowledge of Google Workspace's advanced features, such as App Maker, App Scripts, and Google Cloud Platform integration.

 

NEW QUESTION # 119
Your corporate LDAP contains the email addresses of several hundred non-employee business partners. You want to sync these contacts to Google Workspace so they appear in Gmail's address autocomplete for all users in the domain.
What are two options to meet this requirement? (Choose two.)

  • A. Use the People API to upload a .csv file containing the contacts.
  • B. Configure GCDS to synchronize shared contacts.
  • C. Develop a custom application to call the Domain Shared Contacts API.
  • D. Use the Directory API to upload a .csv file containing the contacts.
  • E. Configure GCDS to populate a Group with external members.

Answer: B,C

Explanation:
* Develop Custom Application:
* Use the Domain Shared Contacts API to create a custom application.
* The application should read the contacts from your corporate LDAP and upload them to Google Workspace.
* This will ensure that these contacts appear in the address autocomplete for all users.
* Configure Google Cloud Directory Sync (GCDS):
* Install and configure GCDS on a supported server.
* Set up synchronization to include shared contacts from your LDAP directory.
* This will automatically keep the contacts updated and available in Gmail's address autocomplete.
References
* Google Workspace Admin: Google Cloud Directory Sync
* Google Workspace Admin: Domain Shared Contacts API


NEW QUESTION # 120
Security and Compliance has identified that data is being leaked through a third-party application connected to Google Workspace. You want to investigate using an audit log.
What log should you use?

  • A. Admin audit log
  • B. OAuth Token audit log
  • C. SAML audit log
  • D. Drive usage audit log

Answer: B

Explanation:
* Admin Console: Log into the Google Admin console at admin.google.com.
* Security Settings: Navigate to Security > Access and Data Control > API controls.
* Audit Log:
* Click on "OAuth Token Audit Log".
* Review the log entries for any suspicious third-party applications that have access to your Google Workspace data.
* Investigate:
* Identify and investigate any suspicious activities or applications listed in the audit log.
* Revoke access to any untrusted third-party applications.
References
* Google Workspace Admin: View OAuth Token audit log


NEW QUESTION # 121
Your company has just received a shipment of ten Chromebooks to be deployed across the company, four of which will be used by remote employees. In order to prepare them for use, you need to register them in Google Workspace.
What should you do?

  • A. Instruct the employees to log in to the Chromebook. Upon login, the auto enrollment process will begin.
  • B. Turn on the Chromebook and press Ctrl+Alt+E at the login screen to begin enterprise enrollment.
  • C. Turn on the chromebook and log in as a Chrome Device admin. Press Ctrl+Alt+E to begin enterprise enrollment.
  • D. In Chrome Management | Device Settings, enable Forced Re-enrollment for all devices.

Answer: B


NEW QUESTION # 122
Your organization is concerned with the increasing threat of phishing attacks that may impact users. Leadership has declined to force-enable 2-Step verification.
You need to apply a security measure to prevent unauthorized access to user accounts.
What should you do?

  • A. Enable Employee ID Login Challenge.
  • B. Decrease the Maximum User Session Length.
  • C. Revoke token authorizations to external applications.
  • D. Enable Enforce Strong Password policy.

Answer: A

Explanation:
You can use employee IDs as a login challenge. Employee IDs are more difficult to guess and phish than other types of identity challenges. To use the employee ID login challenge, you need to make sure that IDs are associated with your users' accounts.
https://support.google.com/a/answer/6002699?hl=en


NEW QUESTION # 123
The application development team has come to you requesting that a new, internal, domain-owned Google Workspace app be allowed to access Google Drive APIs. You are currently restricting access to all APIs using approved whitelists, per security policy. You need to grant access for this app.
What should you do?

  • A. Whitelist the app in the Google Workspace Marketplace.
  • B. Enable "trust domain owned apps" setting.
  • C. Enable all API access for Google Drive.
  • D. Add OAuth Client ID to Google Drive Trusted List.

Answer: D

Explanation:
Navigate to the Google Admin console at admin.google.com.
From the Admin console Home page, go to "Security" and then to "API controls." In the "API controls" section, click on "Manage Third-Party App Access." Here, you can add the OAuth Client ID of your internal app to the trusted list. This ensures that only apps you have vetted and approved can access Google Drive APIs, complying with your security policy.
Enter the OAuth Client ID of the new app and save the changes.
This process ensures that the new, internal, domain-owned app can access Google Drive APIs without compromising the security policies in place.
Reference:
Google Workspace Admin Help - Manage API client access


NEW QUESTION # 124
Your team wants to schedule meetings based on your availability. You need to securely and efficiently share your calendar with your team. What should you do?

  • A. Share your calendar with your team. Set the sharing permissions for the calendar to show free/busy details.
  • B. Make your calendar public and set the permissions for events to show free/busy details.
  • C. Export your calendar and then have your team import it into their Calendar environment.
  • D. Create a new group calendar and share it with your team members. Set the sharing permissions for the calendar to show free/busy details.

Answer: A

Explanation:
Setting the Sharing Permissions of Google Calendar to show free/busy details prevents other users from viewing details regarding your meetings, maintaining privacy.


NEW QUESTION # 125
A user does not follow their usual sign-in pattern and signs in from an unusual location.
What type of alert is triggered by this event?

  • A. User sign-in alert.
  • B. Suspicious mobile activity alert.
  • C. Suspicious login activity alert.
  • D. Leaked password alert.

Answer: C

Explanation:
Reference: https://support.google.com/a/answer/7102416?hl=en


NEW QUESTION # 126
Security and Compliance has identified secure third-party applications that should have access to Google Workspace dat a. You need to restrict third-party access to only approved applications What two actions should you take? (Choose two.)

  • A. Disable add-ons for Gmail
  • B. Disable the Drive SDK
  • C. Restrict API scopes
  • D. Whitelist Google Workspace Marketplace apps
  • E. Whitelist Trusted Apps

Answer: D,E

Explanation:
Whitelist Trusted Apps:
In the Google Workspace Admin console, go to "Security" > "API controls".
Under "App access control," select "Manage third-party app access".
Add the approved applications to the whitelist, allowing only these apps to access Google Workspace data.
Whitelist Google Workspace Marketplace Apps:
In the Admin console, navigate to "Apps" > "Google Workspace Marketplace apps".
Browse and select the trusted apps that need access to Google Workspace data.
Approve and whitelist these apps to ensure only verified applications can access the data.
Reference
Google Workspace Admin Help: Control which third-party & internal apps access Google Workspace data Google Workspace Admin Help: Google Workspace Marketplace


NEW QUESTION # 127
Your organization wants more visibility into actions taken by Google staff related to your data for audit and security reasons. They are specifically interested in understanding the actions performed by Google support staff with regard to the support cases you have opened with Google. What should you do to gain more visibility?

  • A. From Google Admin Panel, go to Audit, and select Admin Audit Log.
  • B. From Google Admin Panel, go to Audit, and select Rules Audit Log.
  • C. From Google Admin Panel, go to Audit, and select Access Transparency Logs.
  • D. From Google Admin Panel, go to Audit, and select Login Audit Log.

Answer: C

Explanation:
Google staff logs related to accessing user content are stored in Access Transparency logs.
https://support.google.com/a/answer/9230474?hl=en


NEW QUESTION # 128
Your Chief Information Security Officer is concerned about phishing. You implemented 2 Factor Authentication and forced hardware keys as a best practice to prevent such attacks. The CISO is curious as to how many such email phishing attempts you've avoided since putting the 2FA+Hardware Keys in place last month.
Where do you find the information your CISO is interested in seeing?

  • A. Reporting > Reports > Phishing
  • B. Security > Dashboard > Spam Filter: Phishing
  • C. Apps > Google Workspace > Gmail > Phishing Attempts
  • D. Security > Advanced Security Settings > Phishing Attempts

Answer: A

Explanation:
* Access Admin Console:
* Sign in to the Google Admin console.
* Navigate to Reporting:
* Go to "Reporting" > "Reports."
* Select the Phishing Report:
* In the Reports section, find the "Phishing" report.
* This report will show data on phishing attempts and their status.
* Review Phishing Attempts:
* Check the report for the number of phishing attempts.
* Analyze trends and details of each attempt to provide comprehensive information to the CISO.
* Export and Share Report:
* Export the report if needed to share with the CISO or other stakeholders.
* Use this data to inform security measures and policies.
References:
* View Reports on Phishing
* Google Workspace Security Reports


NEW QUESTION # 129
A user has traveled overseas for an extended trip to meet with several vendors. The user has reported that important draft emails have not been saved in Gmail, which is affecting their productivity. They have been constantly moving between hotels, vendor offices, and airport lounges.
You have been tasked with troubleshooting the issue remotely. Your first priority is diagnosing and preventing this from happening again, and your second priority is recovering the drafts if possible. Due to time zone differences, and the user's busy meeting schedule, you have only been able to arrange a brief Hangouts Meet with the user to gather any required troubleshooting inputs.
What two actions should be taken on this call with the user? (Choose two.)

  • A. Ask the user to send an email to you so you can check the headers.
  • B. Take screenshots of the user's screen when composing an email.
  • C. Record a HAR file of the user composing a new email.
  • D. Use the Email log search in the Admin panel.
  • E. Check the Users > App Users Activity report.

Answer: B,C


NEW QUESTION # 130
A user has reported that they did not receive an email from one of their normal correspondents.
What information do you need to collect from the user to investigate the cause of the issue?

  • A. The sender's domain so you can review their SPF and DKIM configuration.
  • B. The type of device the individual is using, including the OS version, browser, and browser version.
  • C. The sender's IP address, mail client, and mail platform.
  • D. The email address of the sender and the subject and date/time of the missing message.

Answer: D


NEW QUESTION # 131
After migrating to Google Workspace, your legal team requests access to search all email and create litigation holds for employees who are involved with active litigation. You need to help the legal team meet this request.
What should you do?

  • A. Create a matter in Google Vault, and share with the legal team.
  • B. Add the legal team to the Google Vault Google Group.
  • C. Add the legal team to the User Management Admin system role.
  • D. Create a custom role with Google Vault access, and add the legal team.

Answer: D


NEW QUESTION # 132
Your company recently migrated to Google Workspace and wants to deploy a commonly used third-party app to all of finance. Your OU structure in Google Workspace is broken down by department. You need to ensure that the correct users get this app.
What should you do?

  • A. At the root level, disable the third-party app. For the Finance OU, allow users to install only whitelisted apps from the Google Workspace Marketplace.
  • B. For the Finance OU, enable the third-party app in SAML apps.
  • C. For the Finance OU, enable the third-party app in Marketplace Apps.
  • D. At the root level, disable the third-party app. For the Finance OU, allow users to install any application from the Google Workspace Marketplace.

Answer: C

Explanation:
Reference: https://support.google.com/a/answer/6089179?hl=en


NEW QUESTION # 133
Your Accounts Payable department is auditing software license contracts companywide and has asked you to provide a report that shows the number of active and suspended users by organization unit, which has been set up to match the Regions and Departments within your company. You need to produce a Google Sheet that shows a count of all active user accounts and suspended user accounts by Org unit.
What should you do?

  • A. From the Google Workspace Reports Menu, run and download the Accounts Aggregate report, and export the data to Google Sheets.
  • B. From the Admin Console Users Menu, download a list of all user info columns and currently selected columns.
  • C. From the Admin Console Billing Menu, turn off auto-assign, and then click into Assigned Users and export the data to Sheets.
  • D. From the Admin Console Users Menu, download a list of all Users to Google Sheets, and join that with a list of ORGIDs pulled from the Reports API.

Answer: B

Explanation:
https://support.google.com/a/answer/7348070?hl=it


NEW QUESTION # 134
Your company is deploying Chrome devices. You want to make sure the machine assigned to the employee can only be signed in to by that employee and no one else.
What two things should you do? (Choose two.)

  • A. Enable a Device Policy of Sign In Screen and add the employee email address.
  • B. Enable a User Policy of Multiple Sign In Access and add just the employee email address.
  • C. Enable a Device Policy of Restrict Sign In to List of Users, and add the employee email address.
  • D. Enroll a 2-Factor hardware key on the device using the employee email address.
  • E. Disable Guest Mode and Public Sessions.

Answer: C,E

Explanation:
* Access Admin Console: Log into your Google Workspace Admin Console.
* Disable Guest Mode and Public Sessions: Navigate to Devices > Chrome > Settings. Disable Guest Mode and Public Sessions to prevent unauthorized users from accessing the device.
* Restrict Sign-In: Go to Device Settings > User & Browser Settings.
* Configure Device Policy: Enable the policy "Restrict Sign-In to List of Users."
* Add Employee Email: Add the specific employee's email address to the list of allowed users. This ensures only the specified employee can sign in to the device.
References
* Google Support: Configure Chrome devices


NEW QUESTION # 135
Your client is a 5,000-employee company with a high turn-over rate that requires them to add and suspend user accounts. When new employees are onboarded, a user object is created in Active Directory. They have determined that manually creating the users in Google Workspace Admin Panel is time-consuming and prone to error. You need to work with the client to identify a method of creating new users that will reduce time and error.
What should you do?

  • A. Install Google Cloud Directory Sync on a supported server.
  • B. Install Google Cloud Directory Sync on all Domain Controllers.
  • C. Install Google Workspace Sync for Microsoft Outlook on all employees' computers.
  • D. Install Google Apps Manager to automate add-user scripts.

Answer: A

Explanation:
Prepare Environment: Ensure you have a supported server to install Google Cloud Directory Sync (GCDS).
Download GCDS:
Download Google Cloud Directory Sync from the Google Workspace Downloads page.
Install GCDS:
Follow the installation instructions provided by Google to install GCDS on the server.
Configuration:
Configure GCDS to synchronize user data from Active Directory to Google Workspace.
Set up synchronization rules and schedules to ensure that user data is kept up to date automatically.
Testing and Deployment:
Test the synchronization to ensure that new user accounts are created accurately in Google Workspace.
Deploy GCDS in the production environment after successful testing.
Reference
Google Workspace Admin: About Google Cloud Directory Sync
Google Workspace Admin: Install and Set Up GCDS


NEW QUESTION # 136
Your organization is moving from a legacy mail system to Google Workspace This move will happen in phases During the first phase, some of the users in the domain are set up to use a different identity provider (IdP) for logging in You need to set up multiple idPs for various users What should you do?

  • A. Create Security Assertion Markup Language (SAML) based single sign-on (SSO) profiles and assign them to specific organizational units or groups of users.
  • B. Enable single sign-on (SSO) with Cloud Identity and use Cloud Directory Sync to manage multiple identity providers
  • C. Enable single sign-on (SSO) with third-party identity providers and exclude the users who are using a different provider
  • D. Nothing Google uses cookies to establish a user's relationship to a device This will cover multiple identity providers

Answer: A

Explanation:
Access Admin Console: Sign in to your Google Admin console.
Navigate to Security: Click on "Security" and then "Set up single sign-on (SSO) with a third party IdP." Add SAML Apps: Click on "Add SAML app" and select the app to configure.
Create SSO Profiles: Set up SSO profiles for each identity provider by entering the required SAML details such as ACS URL, Entity ID, etc.
Assign to OUs/Groups: Assign the created SSO profiles to specific organizational units (OUs) or groups of users based on their IdP.
Verify Configuration: Ensure that each profile is properly configured and tested.
Reference:
Google Workspace Admin Help: Set up SSO via SAML for single sign-on


NEW QUESTION # 137
Your organization has been using Google Workspace for almost a year, and your annual security and risk assessment initiative is approaching. In preparation for the risk assessment, you want to quickly review all the security-related settings for Gmail, Drive, and Calendar, and identify the ones that may be posing risk. What should you do?

  • A. Review all the alerts in the Alert center.
  • B. Review the Gmail, Drive, and Calendar reports in the Reporting section in the Admin console.
  • C. Review all settings for each organizational unit (OU) separately because it is the only way to see the security settings for Workspace apps.
  • D. Review the Security health page in the Admin console.

Answer: D

Explanation:
The Security health page in the Security Center provides a centralized overview of security settings and issues across various Google Workspace services, including Gmail, Drive, and Calendar.


NEW QUESTION # 138
You are configuring a shared drive for the financial department of your organization. The financial team wants to allow members of the shared drive to add. edit, and move documents into the shared drive. It's important that the same users cannot remove or delete files. How can you configure access for these users to match the team's request?

  • A. Set up the shared drive, and add the users as editors of the drive.
  • B. Set up the shared drive, and add the users as Managers of the drive.
  • C. Set up the shared drive, and add the users as Contributors of the drive.
  • D. Set up the shared drive, and add the users as Content Managers of the drive.

Answer: D

Explanation:
To configure access for users such that they can add, edit, and move documents into the shared drive but not remove or delete files, you should add the users as Content Managers of the drive. Content Managers have permissions to organize and manage content, including adding and editing files, but they cannot delete files, which aligns with the team's request.
Reference:
Google Workspace Admin Help - Shared drives access levels


NEW QUESTION # 139
A company wants to distribute iOS devices to only the employees in the Sales OU. They want to be able to do the following on these devices:
Control password policies.
Make corporate apps available to the users.
Remotely wipe the device if it's lost or compromised
What two steps are required before configuring the device policies? (Choose two.)

  • A. Set up Device Approvals.
  • B. Deploy Apple Certificate to every device.
  • C. Set up an Apple Push Certificate.
  • D. Turn on Advanced Mobile Management for the domain.
  • E. Turn on Advanced Mobile Management for Sales OU

Answer: C,E

Explanation:
Admin Console: Log into the Google Admin console at admin.google.com.
Enable Advanced Mobile Management for Sales OU:
Navigate to Devices > Mobile & endpoints > Settings.
Select the Sales OU and turn on Advanced Mobile Management.
Set Up an Apple Push Certificate:
Go to Devices > Mobile & endpoints > Apple certificates.
Follow the instructions to obtain and upload an Apple Push Certificate.
Device Policies:
After setting up the Apple Push Certificate, configure the desired device policies such as password policies, app distribution, and remote wipe capabilities.
Reference
Google Workspace Admin: Set up advanced mobile management
Google Workspace Admin: Set up an Apple Push Certificate


NEW QUESTION # 140
......

Google-Workspace-Administrator Questions Truly Valid For Your Google Exam: https://www.validdumps.top/Google-Workspace-Administrator-exam-torrent.html

Google Actual Free Exam Questions And Answers: https://drive.google.com/open?id=12Qt6QPj58_-jwanNqXU102BEnWWC5Cna

Related Articles

more
Google Google-Workspace-Administrator Certification Practice Exam