最新のGoogle Google-Workspace-AdministratorのPDFと問題集で(2023)無料試験問題解答 [Q26-Q44]

Share

最新のGoogle Google-Workspace-AdministratorのPDFと問題集で(2023)無料試験問題解答

あなたを合格させるWorkspace Administrator Google-Workspace-Administrator試験問題集で2023年11月04日には155問あります


Google Workspace管理者認定を取得するには、Google Workspace管理に関連する幅広いトピックをカバーする厳しい試験に合格する必要があります。試験は、複数選択問題から構成され、受験者は2時間で試験を完了する必要があります。試験はコンピューターを使用して行われ、Googleのテストセンターまたは自宅またはオフィスから遠隔で受験することができます。


Google Cloud Certified - Professional Google Workspace Administrator試験は、自分たちの組織のGoogle Workspace展開を管理および維持する経験を持つITプロフェッショナルを対象としています。この試験は、Google Workspace展開を高度なレベルで管理するプロフェッショナルの知識とスキルを評価することを目的としています。また、この試験は、Google Workspace展開に関連する複雑な問題をトラブルシューティングおよび解決するプロフェッショナルの能力を検証するために設計されています。


Google-Workspace-Administrator認定試験は、プロフェッショナルな環境でGoogle Workspaceを管理および管理する能力と知識をテストするように設計されています。世界がクラウドベースのソリューションにシフトするにつれて、Google Workspaceの効果的な管理と最適化を実行できる認定プロフェッショナルへの需要が増しています。この認定資格は、Google Workspaceでの作業経験を持ち、スキルをさらに向上させたい個人を対象としています。

 

質問 # 26
Your company uses a whitelisting approach to manage third-party apps and add-ons. The Senior VP of Sales
& Marketing has urgently requested access to a new Marketplace app that has not previously been vetted. The company's Information Security policy empowers you, as a Google Workspace admin, to grant provisional access immediately if all of the following conditions are met:
Access to the app is restricted to specific individuals by request only.
The app does not have the ability to read or manage emails.
Immediate notice is given to the Infosec team, followed by the submission of a security risk analysis report within 14 days.
Which actions should you take first to ensure that you are compliant with Infosec policy?

  • A. Confirm that the Senior VP's OU has the following Gmail setting disabled before whitelisting the app: "Let users delegate access to their mailbox."
  • B. Add the Marketplace app, then review the authorized scopes in Security > Manage API client access.
  • C. Search the Google Workspace support forum for feedback about the app to include in the risk analysis report.
  • D. Move the Senior VP to a sub-OU before enabling Marketplace Settings > "Allow Users to Install Any App from Google Workspace Marketplace."

正解:B

解説:
https://support.google.com/a/answer/7281227?hl=en


質問 # 27
Your company is in the process of deploying Google Drive Enterprise for your sales organization. You have discovered that there are many unmanaged accounts across your domain. Your security team wants to manage these accounts moving forward.
What should you do?

  • A. Use the Data Migration Service to transfer the data to a managed account.
  • B. Disable access to all "Other Services" in the Google Workspace Admin Console.
  • C. Use the Transfer Tool for unmanaged accounts to invite users into the domain.
  • D. Open a support ticket to have Google transfer unmanaged accounts into your domain.

正解:C


質問 # 28
Your company recently decided to use a cloud-based ticketing system for your customer care needs. You are tasked with rerouting email coming into your customer care address, [email protected] to the cloud platform's email address, [email protected]. As a security measure, you have mail forwarding disabled at the domain level.
What should you do?

正解:A

解説:
Disable automatic forwarding https://support.google.com/a/answer/2491924?hl=en Redirect incoming messages to another email address https://support.google.com/a/answer/4524505?hl=en (Optional) To send the message to the original recipient as well as the new address, under Routing options, check the Also route to original destination box.


質問 # 29
Your IT team is being asked to fulfill a query by your organization's legal department that requires an MBOX file that will be shared to a third-party partner for eDiscovery. The query must be run on multiple users. Legal has no admin rights to Google Vault. What should you do to fulfil the request?

  • A. Search for the data in Gmail, and export for the legal department.
  • B. Create a Google Vault matter, search for data, and run an export for the legal department.
  • C. Use the Investigation Too! to search for the data requested, and export for the legal department.
  • D. Create a Google Vault matter for each user account, and share the matters to the legal admin.

正解:B

解説:
https://support.google.com/vault/answer/2473458?hl=en


質問 # 30
Your organization's information security team has asked you to determine and remediate if a user ([email protected]) has shared any sensitive documents outside of your organization. How would you audit access to documents that the user shared inappropriately?

  • A. As a super administrator, change the access on externally shared Drive files manually under [email protected].
  • B. Open Security Investigation Tool-> Drive Log Events. Add two conditions: Visibility Is External, and Actor Is [email protected].
  • C. Have the super administrator use the Security API to audit Drive access.
  • D. Open Security Dashboard-> File Exposure Report-> Export to Sheet, and filter for [email protected].

正解:B

解説:
https://support.google.com/a/answer/11480192?hl=en&ref_topic=11479095#:~:text=View%20files%20shared,Click%20Search.


質問 # 31
You act as the Google Workspace Administrator for a company that has just acquired another organization. The acquired company will be migrated into your Workspace environment in 6 months. Management has asked you to ensure that the Google Workspace users you currently manage can efficiently access rich contact information in Workspace for all users. This needs to occur before the migration, and optimally without additional expenditure. What step do you take to populate contact information for all users?

  • A. Provision and license Google Workspace accounts for the acquired company's users because they will need accounts in the future.
  • B. Bulk-upload the contact information for these users via CSV into the Google Directory.
  • C. Use the Domain Shared Contacts API to upload contact information for the acquired company's users.
  • D. Prepare an uploadable file to be distributed to your end users that allows them to add the acquired company's user contact information to their personal contacts.

正解:C

解説:
The Domain Shared Contacts API lets your applications get and update external contacts that are shared with all users in a Google Workspace domain. Shared contacts are visible to all users of a Google Workspace domain and all Google services have access to the contact list https://developers.google.com/admin-sdk/domain-shared-contacts/overview


質問 # 32
A user has reported that they did not receive an email from one of their normal correspondents. What information do you need to collect from the user to investigate the cause of the issue?

  • A. The sender's domain so you can review their SPF and DKIM configuration.
  • B. The type of device the individual is using, including the OS version, browser, and browser version.
  • C. The email address of the sender and the subject and date/time of the missing message.
  • D. The sender's IP address, mail client, and mail platform.

正解:C


質問 # 33
Your organization is part of a highly regulated industry with a very high turnover. In order to recycle licenses for new employees and comply with data retention regulations, it has been determined that certain Google Workspace data should be stored in a separate backup environment.
How should you store data for this situation?

  • A. Use routing rules to dual-deliver mail to an on-premises SMTP server and Google Workspace.
  • B. Train users to use Google Takeout and store their archives locally.
  • C. Write a script and use Google Workspace APIs to access and download user data.
  • D. Use a third-party tool to configure secure backup of Google Workspace data.

正解:D

解説:
https://cloud.google.com/solutions/partners/backing-up-g-suite-data-with-spinbackup


質問 # 34
The credentials of several individuals within your organization have recently been stolen. Using the Google Workspace login logs, you have determined that in several cases, the stolen credentials have been used in countries other than the ones your organization works in. What else can you do to increase your organization's defense-in-depth strategy?

  • A. Implement an IP block on the malicious user's IPs under Security Settings in the Admin Console.
  • B. Use Context-Aware Access to deny access to Google services from geo locations other than the ones your organization operates in.
  • C. Enforce higher complexity passwords by rolling it out to the affected users.
  • D. Use Mobile device management geo-fencing to prevent malicious actors from using these stolen credentials.

正解:B

解説:
https://support.google.com/a/answer/9262032?hl=en#zippy=%2Cdefine-access-levelsbasic-mode:~:text=This%20example%20shows%20an%20access%20level%20called%20%E2%80%9Ccorp_access.%E2%80%9D%20If%20%E2%80%9Ccorp_access%E2%80%9D%20is%20applied%20to%20Gmail%2C%20users%20can%20access%20Gmail%20only%20from%20an%20encrypted%20and%20company%2Downed%20device%2C%20and%20only%20from%20the%20US%20or%20Canada.


質問 # 35
Your company's compliance officer has requested that you apply a content compliance rule that will reject all external outbound email that has any occurrence of credit card numbers and your company's account number syntax, which is AccNo. You need to configure a content compliance rule to scan email to meet these requirements.
Which combination of attributes will meet this objective?

  • A. Name the rule > select Outbound and Internal Sending > select If ANY of the following match > add two expressions: one for Simple Content Match to find AccNo, and one for predefined content match to select Credit Card Numbers > choose Reject.
  • B. Name the rule > select Outbound > select If ALL of the following match > add two expressions: one for Advanced Content Match to find AccNo in the Body, and one for predefined content match to select Credit Card Numbers > choose Reject.
  • C. Name the rule > select Outbound and Internal Sending > select If ALL of the following match > add two expressions: one for Advanced Content Match to find AccNo in the Body, and one for predefined content match to select Credit Card Numbers > choose Reject.
  • D. Name the rule > select Outbound > select If ANY of the following match > add two expressions: one for Simple Content Match to find AccNo, and one for predefined content match to select Credit Card Numbers
    > choose Reject

正解:B

解説:
https://www.shieldq.com/en-gb/Google-apps-content-compliance


質問 # 36
Your organization is planning to remove any dependencies on Active Directory (AD) from all Cloud applications they are using You are currently using Google Cloud Directory Sync (GCDS) with on-premises AD as a source to provision user accounts in Google Workspace. Your organization is also using a software-as-a-service (SaaS) human resources information system (HRIS) that offers integration via CSV export and Open API standard.
Additional requirements for the solution include:
* It should not require a subscription to any additional third-party service.
* The process must be automated from beginning to end.
You are tasked with the design and implementation of a solution to address user provisioning with these requirements.
What solution should you implement?

  • A. Build an application that will fetch updated data from the HRIS system via Open API. and then update Google Workspace with the Directory API accordingly.
  • B. Modify the GCDS configuration to use the HRIS application as the data source and complete any necessary adjustments
  • C. Export HRIS data to a CSV file every day. and build a solution to define the delta with the previous day; import the result as a CSV file via the Admin console.
  • D. Set up Azure AD and federate on-premises AD with it. Provision user accounts from Azure AD with the Google-recommended process.

正解:A


質問 # 37
Your marketing department needs an easy way for users to share items more appropriately. They want to easily link-share Drive files within the marketing department, without sharing them with your entire company. What should you do to fulfil this request? (Choose two.)

  • A. Update the link sharing default to the marketing team when creating a document.
  • B. Create a shared drive that's shared internally organization-wide.
  • C. Create a shared drive for internal marketing use.
  • D. In the admin panel Drive settings, create a target audience that has all of marketing as members.
  • E. Update Drive sharing for the marketing department to restrict to internal.

正解:C、D

解説:
https://support.google.com/a/users/answer/9310249#1.2
https://support.google.com/a/answer/9935192?hl=en#:~:text=a%20target%20audience-,Create%20a%20target%20audience,as%20Google%20Drive%2C%20to%20make%20it%20available%20in%20users%27%20sharing%20settings.,-Before%20you%20begin
https://support.google.com/a/answer/9934697?hl=en


質問 # 38
HR informs you that a user has been terminated and their account has been suspended. The user is part of a current legal investigation, and HR requires the user's email data to remain on hold. The terminated user's team is actively working on a critical project with files owned by the user. You need to ensure that the terminated user's content is appropriately kept before provisioning their license to a new user.
What two actions should you take? (Choose two.)

  • A. Extend the legal hold on the user's email data.
  • B. Delete the account, freeing up a Google Workspace License.
  • C. Assign the terminated user account an Archive User license.
  • D. Move project files to a Team Drive or transfer ownership.
  • E. Rename the account to the new user starting next week.

正解:C、D

解説:
https://support.google.com/a/answer/9048836


質問 # 39
Your company is deploying Chrome devices. You want to make sure the machine assigned to the employee can only be signed in to by that employee and no one else.
What two things should you do? (Choose two.)

  • A. Enroll a 2-Factor hardware key on the device using the employee email address.
  • B. Disable Guest Mode and Public Sessions.
  • C. Enable a Device Policy of Sign In Screen and add the employee email address.
  • D. Enable a Device Policy of Restrict Sign In to List of Users, and add the employee email address.
  • E. Enable a User Policy of Multiple Sign In Access and add just the employee email address.

正解:B、D

解説:
https://support.google.com/chrome/a/answer/1375678?hl=en


質問 # 40
How can you monitor increases in user reported Spam as identified by Google?

  • A. Review user-reported spam in the Investigation Tool.
  • B. Review post-delivery activity in the Email logs.
  • C. Review spike in user-reported spam in the Alert center.
  • D. Review post-delivery activity in the BigQuery Export.

正解:C

解説:
https://support.google.com/a/answer/9104586?hl=en


質問 # 41
Your organization recently had a sophisticated malware attack that was propagated through embedded macros in email attachments. As a Workspace administrator, you want to provide an additional layer of anti-malware protection over the conventional malware protection that is built into Gmail. What should you do to protect your users from future unknown malware in email attachments?

  • A. Turn on advanced phishing and malware protection.
  • B. Run queries in Security Investigation Tool.
  • C. Enable Gmail confidential mode.
  • D. Enable Security Sandbox.

正解:D

解説:
https://support.google.com/a/answer/7676854?hl=en#zippy=%2Cscan-all-attachments-in-security-sandbox:~:text=detect%20harmful%20attachments-,Set%20up%20rules%20to%20detect%20harmful%20attachments,Security%20Sandbox,-Supported%20editions%20for


質問 # 42
Your organization is in the process of deploying Google Drive for desktop so that your users can access Drive files directly from their desktops. For security reasons, you want to restrict Drive for desktop to only company-owned devices. What two steps should you take from the admin panel to restrict Drive for desktop to only company-owned devices?
Choose 2 answers

  • A. Create a company-owned device inventory using serial numbers of devices.
  • B. Devices > Endpoints > Add a filter-> Management Type > Drive for desktop > Apply
  • C. Create a company-owned device inventory using an asset tag.
  • D. Install the Google Endpoint Verification extension on machines using Drive for Desktop.
  • E. Apps > Google Workspace > Drive and Docs > Features and Applications > Google Drive for Desktop > Only Allow Google Drive for desktop on authorized devices

正解:B、E


質問 # 43
Security and Compliance has identified that data is being leaked through a third-party application connected to Google Workspace. You want to investigate using an audit log.
What log should you use?

  • A. Drive usage audit log
  • B. OAuth Token audit log
  • C. SAML audit log
  • D. Admin audit log

正解:B


質問 # 44
......

Google-Workspace-Administrator問題集はWorkspace Administrator認証済み試験問題と解答:https://www.goshiken.com/Google/Google-Workspace-Administrator-mondaishu.html

Google-Workspace-Administrator無料試験学習ガイド!(更新された155問あります):https://drive.google.com/open?id=1IE_CxgcDKVaVaiJ5WCE3wh54IsqRjZ-1