[2023年07月] 練習で合格させる問題学習ガイドは Google-Workspace-Administrator 試験問題集 [Q59-Q79]

Share

[2023年07月] 問題集練習試験問題学習ガイドはGoogle-Workspace-Administrator試験合格させます

Google-Workspace-Administrator問題集には練習試験問題解答


Google Cloud Certified-Professional Google Workspace Administratorは、組織のためにGoogle Workspaceサービスを管理・管理するために必要なスキルと知識を検証する上級レベルの認定です。Google Workspaceサービスの展開、設定、管理における専門知識を証明したいプロフェッショナルを対象としています。


認定を受けるためには、受験者は複数選択肢とシナリオに基づいた問題からなる 2 時間の試験に合格する必要があります。試験はオンラインで実施され、世界中のどこからでも受験することができます。合格すると、受験者はデジタルバッジと証明書を受け取ることができ、Google Workspace 管理者としての専門知識と信頼性をアピールすることができます。この認定は、Google Workspace を扱う IT プロフェッショナルや、クラウドベースの生産性ツールを管理する専門知識が必要な役割を追求することに興味がある人にとって貴重なものです。

 

質問 # 59
Your organization is preparing to deploy Workspace and will continue using your company's existing identity provider for authentication and single sign-on (SSO). In order to migrate data from an external system, you were required to provision each user's account in advance. Your IT team and select users (~5% of the organization) have been using Workspace for configuration and testing purposes. The remainder of the organization can technically access their accounts now, but the IT team wants to block their access until the migrations are complete. What should your organization do?

  • A. Use Context-Aware Access to simultaneously block access to all services for all users and allow access to all services for the allowed users.
  • B. Remove Google Workspace license to prevent users from accessing their accounts now.
  • C. Add the users to the OU with all services disabled.
  • D. Suspend users that the organization does not wish to have access.

正解:C

解説:
https://support.google.com/a/answer/182449?hl=en


質問 # 60
What steps does an administrator need to take to enforce TLS with a particular domain?

  • A. Set up DKIM authentication with the receiving domain.
  • B. Configure an alternate secure route with the receiving domain.
  • C. Set up secure transport compliance with the receiving domain.
  • D. Enable email safety features with the receiving domain.

正解:C

解説:
https://support.google.com/a/answer/2520500?hl=en#:~:text=Add%C2%A0the%20Secure%20transport%20(TLS)%20compliance%C2%A0setting%C2%A0to%20always%20use%20TLS%20for%20email%20sent%20to%20and%20from%20domains%20and%20addresses%20that%20you%20specify.


質問 # 61
A company using Google Workspace has reports of cyber criminals trying to steal usernames and passwords to access critical business dat a. You need to protect the highly sensitive user accounts from unauthorized access.
What should you do?

  • A. Turn on password expiration.
  • B. Enforce 2FA with a physical security key.
  • C. Use a third-party identity provider.
  • D. Enforce 2FA with Google Authenticator app.

正解:B

解説:
https://support.google.com/a/answer/175197?hl=en#keys&prompt&authentic&codes&phone&2sv&security


質問 # 62
In your organization, users have been provisioned with either Google Workspace Enterprise, Google Workspace Business, or no license, depending on their job duties, and the cost of user licenses is paid out of each division's budget. In order to effectively manage the license disposition, team leaders require the ability to look up the type of license that is currently assigned, along with the last logon date, for their direct reports.
You have been tasked with recommending a solution to the Director of IT, and have gathered the following requirements:
Team leaders must be able to retrieve this data on their own (i.e., self-service).
Team leaders are not permitted to have any level of administrative access to the Google Workspace Admin panel.
Team leaders must only be able to look up data for their direct reports.
The data must always be current to within 1 week.
Costs must be mitigated.
What approach should you recommend?

  • A. Use a third-party tool.
  • B. Use App Script and filter views within a Google Sheet.
  • C. Create an app using AppMaker and App Script.
  • D. Export log data to BigQuery with custom scopes.

正解:C

解説:
https://support.google.com/a/answer/9682494?hl=en


質問 # 63
You have configured your Google Workspace account on the scheduled release track to provide additional time to prepare for new product releases and determine how they will impact your users. There are some new features on the latest roadmap that your director needs you to test as soon as they become generally available without changing the release track for the entire organization.
What should you do?

  • A. Create a new Google Group with test users and enable the rapid release track.
  • B. Create a new OU and tum on the rapid release track just for this OU.
  • C. Ask Google for a demo account with beta access to the new features.
  • D. Establish a separate Dev environment, and set it to rapid release.

正解:D

解説:
Tip for large organizations: Select the Scheduled Release track for your production account. Then set up Rapid Release on a test account to try new features before they're available to your users. https://support.google.com/a/answer/172177


質問 # 64
Your company is in the process of deploying Google Drive Enterprise for your sales organization. You have discovered that there are many unmanaged accounts across your domain. Your security team wants to manage these accounts moving forward.
What should you do?

  • A. Use the Data Migration Service to transfer the data to a managed account.
  • B. Open a support ticket to have Google transfer unmanaged accounts into your domain.
  • C. Disable access to all "Other Services" in the Google Workspace Admin Console.
  • D. Use the Transfer Tool for unmanaged accounts to invite users into the domain.

正解:D


質問 # 65
User A is a Basic License holder. User B is a Business License holder. These two users, along with many additional users, are in the same organizational unit at the same company. When User A attempts to access Drive, they receive the following error: "We are sorry, but you do not have access to Google Docs Editors. Please contact your Organization Administrator for access." User B is not presented with the same error and accesses the service without issues.
How do you provide access to Drive for User A?

  • A. In Apps > Google Workspace > Drive and Docs, select the organizational unit the users are in and enable Drive for the organizational unit.
  • B. Select User A in the Directory, and under the Apps section, check whether Drive and Docs is disabled. If so, enable it in the User record.
  • C. Select User A in the Directory, and under the Licenses section, change their license from Basic to Business to add the Drive and Docs service.
  • D. In Apps > Google Workspace, determine the Group that has Drive and Docs enabled as a service. Add User A to this group.

正解:D

解説:
https://support.google.com/a/answer/9050643


質問 # 66
Your chief compliance officer is concerned about API access to organization data across different cloud vendors. He has tasked you with compiling a list of applications that have API access to Google Workspace data, the data they have access to, and the number of users who are using the applications.
How should you compile the data being requested?

  • A. Review the API permissions installed apps list, and export the list.
  • B. Create a survey via Google forms, and collect the application data from users.
  • C. Review the authorized applications for each user via the Google Workspace Admin panel.
  • D. Review the token audit log, and compile a list of all the applications and their scopes.

正解:D

解説:
https://support.google.com/a/answer/7281227?hl=en
https://support.google.com/a/answer/6124308?hl=en


質問 # 67
Security and Compliance has identified that data is being leaked through a third-party application connected to Google Workspace. You want to investigate using an audit log.
What log should you use?

  • A. SAML audit log
  • B. Drive usage audit log
  • C. OAuth Token audit log
  • D. Admin audit log

正解:C


質問 # 68
The credentials of several individuals within your organization have recently been stolen. Using the Google Workspace login logs, you have determined that in several cases, the stolen credentials have been used in countries other than the ones your organization works in. What else can you do to increase your organization's defense-in-depth strategy?

  • A. Implement an IP block on the malicious user's IPs under Security Settings in the Admin Console.
  • B. Use Mobile device management geo-fencing to prevent malicious actors from using these stolen credentials.
  • C. Use Context-Aware Access to deny access to Google services from geo locations other than the ones your organization operates in.
  • D. Enforce higher complexity passwords by rolling it out to the affected users.

正解:C

解説:
https://support.google.com/a/answer/9262032?hl=en#zippy=%2Cdefine-access-levelsbasic-mode:~:text=This%20example%20shows%20an%20access%20level%20called%20%E2%80%9Ccorp_access.%E2%80%9D%20If%20%E2%80%9Ccorp_access%E2%80%9D%20is%20applied%20to%20Gmail%2C%20users%20can%20access%20Gmail%20only%20from%20an%20encrypted%20and%20company%2Downed%20device%2C%20and%20only%20from%20the%20US%20or%20Canada.


質問 # 69
A user reached out to the IT department about a Google Group that they own: [email protected]. The group is receiving mail, and each message is also delivered directly to the user's Gmail inbox. The user wants to be able to reply to messages directly from Gmail and have them sent on behalf of the group, not their individual account. Currently, their replies come from their individual account. What would you instruct the user to do?

  • A. Set the group address to be the default sender within the group's posting policies.
  • B. Create a new content compliance rule that matches the user's outgoing messages with the group copied, and have it modify the sender to be the group address.
  • C. Add the user's individual account as a delegate to the group's inbox. They can then toggle between the accounts and use the Gmail interface on behalf of the group.
  • D. Add the group as an email address that can be sent from within Gmail, and verify that the user has access. They can then choose to reply from the group.

正解:D

解説:
https://support.google.com/googlecloud/answer/10635789?hl=en


質問 # 70
As a Google Workspace administrator for your organization, you are tasked with controlling which third-party apps can access Google Workspace dat a. Before implementing controls, as a first step in this process, you want to review all the third-party apps that have been authorized to access Workspace data. What should you do?

  • A. Open Admin Console > Security > Less Secure Apps.
  • B. Open Admin Console > Security > API Controls > App Access Control > Manage Google Services.
  • C. Open Admin Console > Security > API Controls > App Access Control > Settings.
  • D. Open Admin Console > Security > API Controls > App Access Control > Manage Third Party App Access.

正解:D

解説:
https://support.google.com/a/answer/7281227?hl=en#zippy=%2Cstep-manage-third-party-app-access-to-google-services-add-apps:~:text=In%20the%20Admin,App%20Access.


質問 # 71
Madeupcorp.com is in the process of migrating from a third-party email system to Google Workspace. The VP of Marketing is concerned that her team already administers the corporate AdSense, AdWords, and YouTube channels using their @madeupcorp.com email addresses, but has not tracked which users have access to which service. You need to ensure that there is no disruption.
What should you do?

  • A. Contact Google Enterprise Support to identify affected users.
  • B. Use a Google Form to survey the Marketing department users.
  • C. Run the Transfer Tool for Unmanaged users.
  • D. Assure the VP that there is no action required to configure Google Workspace.

正解:C

解説:
https://support.google.com/a/answer/7062710


質問 # 72
Your organization wants more visibility into actions taken by Google staff related to your data for audit and security reasons. They are specifically interested in understanding the actions performed by Google support staff with regard to the support cases you have opened with Google. What should you do to gain more visibility?

  • A. From Google Admin Panel, go to Audit, and select Rules Audit Log.
  • B. From Google Admin Panel, go to Audit, and select Access Transparency Logs. Most Voted
  • C. From Google Admin Panel, go to Audit, and select Login Audit Log.
  • D. From Google Admin Panel, go to Audit, and select Admin Audit Log.

正解:B

解説:
Google staff logs related to accessing user content are stored in Access Transparency logs https://support.google.com/a/answer/9230474?hl=en


質問 # 73
A user has traveled overseas for an extended trip to meet with several vendors. The user has reported that important draft emails have not been saved in Gmail, which is affecting their productivity. They have been constantly moving between hotels, vendor offices, and airport lounges.
You have been tasked with troubleshooting the issue remotely. Your first priority is diagnosing and preventing this from happening again, and your second priority is recovering the drafts if possible. Due to time zone differences, and the user's busy meeting schedule, you have only been able to arrange a brief Hangouts Meet with the user to gather any required troubleshooting inputs.
What two actions should be taken on this call with the user? (Choose two.)

  • A. Take screenshots of the user's screen when composing an email.
  • B. Use the Email log search in the Admin panel.
  • C. Ask the user to send an email to you so you can check the headers.
  • D. Check the Users > App Users Activity report.
  • E. Record a HAR file of the user composing a new email.

正解:A、E


質問 # 74
Your organization is using Password Sync to sync passwords from Active Directory to Google Workspace. A user changed their network password and cannot log in to Google Workspace with the new password. What steps should you take to troubleshoot this issue?

  • A. Confirm that the Password Sync service is running on all domain controllers.
  • B. Reset the user's password in Active Directory.
  • C. Reinstall Password Sync on all domain controllers.
  • D. Reauthorize the Password Sync tool in the Google Workspace Admin Console.

正解:A

解説:
https://support.google.com/a/answer/11237847?hl=en&ref_topic=4498019
The network password is determined to be with AD. In this case, you must verify that password sync is installed on all domain controllers. This is the initial troubleshooting. After this troubleshooting, the logs of these connectors are taken
https://www.youtube.com/watch?v=P-r8bvivZuM


質問 # 75
Your-company.com recently bought 2500 Chrome devices and wants to distribute them to various teams globally. You decided that enterprise enrollment would be the best way to enforce company policies for managed Chrome devices. You discovered that Chrome devices currently end up in the top-level organization unit, and this needs to change to the organizational unit of the device administrator.
What should you do?

  • A. Change Enrollment Controls to Keep Chrome device in current location.
  • B. Change Enrollment Controls to Place Chrome device in user organization.
  • C. Change Enrollment Permissions to only allow users in this organization to re-enroll existing devices.
  • D. Change Enrolment Permissions to not allow users in this organization to enroll new devices.

正解:B

解説:
https://support.google.com/chrome/a/answer/2657289#auto_device_placement_enabled


質問 # 76
The Director of your Finance department has asked to be alerted if two financial auditors share any files outside the domain. You need to set an Admin Alert on Drive Sharing.
What should you do?

  • A. Create a Google Group that has the two auditors as members, and then create a Drive DLP Rule that is assigned to that Group.
  • B. Create two Drive Audit Alerts, one for each user, where the Visibility is "Shared Externally," and email them to the Director.
  • C. Check the Admin Console Dashboard Insights page periodically for external shares, and notify the Director of any changes.
  • D. Create a Content Compliance rule that looks for outbound share notifications from those two users, and Bcc the Director on those emails.

正解:B

解説:
https://support.google.com/a/answer/4579696?hl=en
https://support.google.com/a/answer/9725685


質問 # 77
You act as the Google Workspace Administrator for a company that has just acquired another organization. The acquired company will be migrated into your Workspace environment in 6 months. Management has asked you to ensure that the Google Workspace users you currently manage can efficiently access rich contact information in Workspace for all users. This needs to occur before the migration, and optimally without additional expenditure. What step do you take to populate contact information for all users?

  • A. Provision and license Google Workspace accounts for the acquired company's users because they will need accounts in the future.
  • B. Prepare an uploadable file to be distributed to your end users that allows them to add the acquired company's user contact information to their personal contacts.
  • C. Use the Domain Shared Contacts API to upload contact information for the acquired company's users.
  • D. Bulk-upload the contact information for these users via CSV into the Google Directory.

正解:C

解説:
The Domain Shared Contacts API lets your applications get and update external contacts that are shared with all users in a Google Workspace domain. Shared contacts are visible to all users of a Google Workspace domain and all Google services have access to the contact list https://developers.google.com/admin-sdk/domain-shared-contacts/overview


質問 # 78
Your corporate LDAP contains the email addresses of several hundred non-employee business partners. You want to sync these contacts to Google Workspace so they appear in Gmail's address autocomplete for all users in the domain.
What are two options to meet this requirement? (Choose two.)

  • A. Use the Directory API to upload a .csv file containing the contacts.
  • B. Develop a custom application to call the Domain Shared Contacts API.
  • C. Use the People API to upload a .csv file containing the contacts.
  • D. Configure GCDS to synchronize shared contacts.
  • E. Configure GCDS to populate a Group with external members.

正解:B、D

解説:
https://support.google.com/a/answer/9281635?hl=en&ref_topic=20016


質問 # 79
......

無料Workspace Administrator Google-Workspace-Administrator試験問題:https://jp.fast2test.com/Google-Workspace-Administrator-premium-file.html

Google-Workspace-AdministratorはWorkspace Administrator実際の無料試験練習テスト:https://drive.google.com/open?id=1FvmTwNtNRv2iXCuIWUV4GXLkL60bW02V


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어