Google-Workspace-Administrator 無料問題集「Google Cloud Certified - Professional Google Workspace Administrator」

（A）Go to Reports > Audit > Drive, select "Item Visibility Change," change it to "Internal to External," and click Search.

（B）In Apps > GSuite > Drive and Docs > Sharing Settings, change Sharing Options to "Off" for outside the domain.

（C）In the Report, unclick all file visibility except "External," click on the New Investigation icon, and then use Search to display all externally shared files for that dashboard.

（D）In Reports, go to Security and create a filter to find users with External Shares greater than 1.

（A）As a super administrator, modify the room calendar sharing settings, and limit it to the management and EAs group.

（B）As a super administrator, create a group calendar named "Management Room," and share it only with the management and the EAs.

（C）Delete the room from Google Workspace resources, and suggest using a spreadsheet shared with the management and EAs only for the room schedule.

（D）Move the room resource to the management and EAs group so that only they can use it.

（A）Enable external sharing for the specific child organizational units or configuration groups.

（B）Add the external domain of the vendor to the allowlist.

（C）Create a trust rule for a shared drive to allow sharing with the external vendor.

（D）Enable visitor sharing for the Google Workspace domain.

（A）Enable authentication via the Google Authenticator.

（B）Enable additional security verification via email.

（C）Deploy browser or device certificates via Google Workspace.

（D）Configure USB Yubikeys for all users.

（A）Create a shared drive for non-confidential files, give the HR team content manager access, and give view access to the organization.

（B）Create a shared drive for all files, give the HR team content manager access, and give view access to the organization.

（C）Have the HR lead create a folder in their MyDrive for the non-confidential files, give edit access to the HR team, and give view access to the organization.

（D）Create a shared drive for the non-confidential files, give the HR team manager access, and give contributor access to the entire organization.

（A）Do nothing. The retention period has already ended and the evidence has already been purged.

（B）Assign the compliance team a Google Vault administrator role and create a legal hold for the employee.

（C）Suspend the employee and export all data by using Google Takeout.

（D）Assign the compliance team a Google Vault administrator role and change the default retention rules to three years.

（A）Use the Security Investigation Tool with User Log Events as the data source field. In the search operator fields, select Event, is, and Call failed. Analyze the packet loss.

（B）Verify if there is a service outage for Google Voice reported on the Google Workspace Status Dashboard.

（C）Use the Security Investigation Tool with Voice Log Events as the data source field. In the search operator fields, select Event, is, and Network Statistics (client). Analyze the packet loss.

（D）Verify if there is a service interruption for Google Voice reported on the Google Workspace Updates Blog website.

（A）Use Google Vault to set a retention policy for the organizational unit (OU) where the former employee resides.

（B）Use Google Takeout to download the Drive data and then upload the data back to the Shared Drive of the finance department.

（C）In the User Deletion process, transfer ownership of the documents to the manager. After completion, instruct the manager to move the desired documents into the Shared Drive of the finance department.

（D）Before leaving the organization, instruct the employee to create a folder in My Drive, move the documents that need to be shared, then share that folder with the Finance manager and delete the user.

（A）Change ownership of the Drive data to the user's Manager, then delete the user.

（B）Export the user's Drive data from Vault, then delete the user.

（C）Suspend the user until the end of the three-year period.

（D）Assign an Archive User (AU) license to the user.

（A）Prepare an uploadable file to be distributed to your end users that allows them to add the acquired company's user contact information to their personal contacts.

（B）Provision and license Google Workspace accounts for the acquired company's users because they will need accounts in the future.

（C）Use the Domain Shared Contacts API to upload contact information for the acquired company's users.

（D）Bulk-upload the contact information for these users via CSV into the Google Directory.

（A）Automatic Room Replacement does not work on recurring events.

（B）This feature requires calendar event owners to have the Buildings and resources administrator privilege.

（C）The calendar resources do not have the Resource Category configured as CONFERENCE_ROOM.

（D）The events have more than 20 attendees.

（A）Delegate email access to department employees.

（B）Configure a Google Group, and set the Access Level to Announcement Only.

（C）Configure a Google Group as a collaborative inbox.

（D）Configure a Google Group as an email list.

（A）Configure the group so only Owners or Managers can post to the group.

（B）Configure the group so that members cannot view group conversations.

（C）Configure the group with new member post moderation.

（D）When provisioning the group, configure it as DLP enabled and select PII from the list of "Content Detectors".

（A）Create a new Google Workspace domain with "mystartup.com," and create a trust between both domains for reusing the same security policies and sharing employee information within the companies.

（B）Create an alias domain, mystartup.com, in your existing Google Workspace domain, set up necessary DNS records, and create all startup employees with the alias domain as their primary email addresses.

（C）Create a secondary domain, mystartup.com, within your current Google Workspace domain, set up necessary DNS records, and create all startup employees with the secondary domain as their primary email addresses.

（D）Create the startup employees in the "mycompany.com' domain, and add a number at the end of the user name whenever there is a conflict. In Gmail > Routing, define a specific route for the OU that targets the startup employees, which will modify the email address domain to
"mystartup.com," and remove any numbers previously added. In addition, confirm that the SPF and DKIM records are properly set.

（A）Confirm in Reports > BigQuery Export that the job is enabled.

（B）Allocate the "view data for all teams" permission to all employees of the company.

（C）Confirm that the Work Insights app is turned ON for all employees.

（D）Confirm in Security > API controls > App Access Controls that Work Insights API is set to
"unrestricted."

（A）Set up the shared drive, and add the users as Contributors of the drive.

（B）Set up the shared drive, and add the users as Content Managers of the drive.

（C）Set up the shared drive, and add the users as editors of the drive.

（D）Set up the shared drive, and add the users as Managers of the drive.

（A）Write a script and use Google Workspace APIs to access and download user data.

（B）Use a third-party tool to configure secure backup of Google Workspace data.

（C）Train users to use Google Takeout and store their archives locally.

（D）Use routing rules to dual-deliver mail to an on-premises SMTP server and Google Workspace.

（A）Enable single sign-on (SSO) with third-party identity providers and exclude the users who are using a different provider.

（B）Enable single sign-on (SSO) with Cloud Identity, and use Cloud Directory Sync to manage multiple identity providers.

（C）Nothing. Google uses cookies to establish a user's relationship to a device. This will cover multiple identity providers.

（D）Create Security Assertion Markup Language (SAML) based single sign-on (SSO) profiles and assign them to specific organizational units or groups of users.

（A）Add the user's old email address to their account in the Google Workspace Admin panel.

（B）Change the user's primary email in Active Directory.

（C）Change the user's primary email address in the Google Workspace Admin panel.

（D）Change the user's last name in Active Directory.

（E）Change the user's last name in the Google Workspace Admin panel.

（A）Open Security Dashboard-> File Exposure Report-> Export to Sheet, and filter for [email protected].

（B）As a super administrator, change the access on externally shared Drive files manually under [email protected].

（C）Have the super administrator use the Security API to audit Drive access.

（D）Open Security Investigation Tool-> Drive Log Events. Add two conditions: Visibility Is External, and Actor Is [email protected].