
Google Associate-Google-Workspace-Administrator最新問題集[2026]高得点を掴み取れ
Associate-Google-Workspace-Administrator問題集PassTest100%合格率保証
質問 # 12
Your organization is migrating their current on-premises email solution to Google Workspace. You need to ensure that emails sent to your domain are correctly routed to Gmail. What should you do?
- A. Create a content compliance rule to filter and route incoming emails.
- B. Configure SPF, DKIM, and DMARC records in your current email domain's DNS settings.
- C. Change the Mail Exchange (MX) records in your current email domain's DNS settings to point to Google's mail servers.
- D. Set up email forwarding from your on-premises email provider to Gmail.
正解:C
解説:
To ensure that emails sent to your domain are correctly routed to Gmail, you need to update the Mail Exchange (MX) records in your domain's DNS settings to point to Google's mail servers. This is a critical step in the migration process, as it ensures that all incoming email traffic is directed to Google Workspace after the switch.
質問 # 13
Your organization allows employees to use their personal devices for work purposes. You want to ensure these devices follow the company's security policies. You need to choose a mobile management solution that provides minimal passcode enforcement and allows for an admin to remotely wipe a user's account from the device. You also want to avoid having to install agents on employees' personal devices. What should you do?
- A. Enforce a strong password policy, and enforce the password policy at the next sign-in.
- B. Deploy a third-party mobile device management (MDM) solution.
- C. Implement Google's advanced management on mobile devices.
- D. Implement Google's basic management on mobile devices.
正解:D
解説:
Google's basic management for mobile devices allows administrators to enforce minimal security policies, such as passcode enforcement, without requiring the installation of any agents on employees' personal devices. This solution also allows for remotely wiping a user's account from the device if needed, ensuring data security while maintaining a less intrusive management approach for personal devices.
質問 # 14
You are investigating a potential data breach. You need to see which devices are accessing corporate data and the applications used. What should you do?
- A. Analyze the Google Workspace reporting section of the Admin console.
- B. Analyze the User Accounts section in the Google Admin console.
- C. Analyze the audit log in the Admin console for device and application activity.
- D. Analyze the security investigation tool to access device log data.
正解:C
解説:
The audit log in the Google Admin console provides detailed information about device and application activity, which is crucial for investigating a potential data breach. You can see which devices have accessed corporate data, as well as which applications were used, giving you a comprehensive view of any unauthorized or suspicious activities. This is the most appropriate and efficient tool for this investigation.
質問 # 15
You need to grant a specific set of users in your company access to YouTube, and you want to restrict their access to Merchant Center. What should you do?
- A. Enable YouTube for all users in the company. Individually restrict access to Merchant Center for specific Groups or organizational units (OUs).
- B. Create YouTube and Merchant Center as custom web apps. Apply access policies at the Group or organizational unit (OU) level.
- C. Contact Google Support and request that they enable YouTube access for the specific set of users and restrict their access to Merchant Center.
- D. Enable access to YouTube at the Group or organizational unit (OU) level for the subset of users. Disable access to Merchant Center.
正解:D
解説:
By enabling YouTube access at the Group or organizational unit (OU) level, you can target a specific set of users, allowing them to access YouTube. Simultaneously, you can disable access to Merchant Center for those same users, ensuring they can access YouTube but not Merchant Center. This approach uses Google Workspace's built-in capabilities to manage access based on user groups or organizational units.
質問 # 16
A user in your organization reported that their internal event recipient is not receiving the Calendar event invites. You need to identify the source of this problem. What should you do?
- A. Check whether the event recipient has turned off their email notifications for new events in their Calendar settings.
- B. Check if Calendar service is turned off for the event creator.
- C. Check whether the Calendar event has more than 50 guests.
- D. Check whether the business hours are set up in the event recipient's Calendar settings.
正解:A
解説:
When an internal user reports not receiving Google Calendar event invites, the most likely immediate cause to investigate on the recipient's end is their notification settings within Google Calendar. Users can customize their notification preferences, and it's possible they have turned off email notifications for new events.
Here's why option D is the most relevant first step and why the other options are less likely to be the primary cause of this specific issue:
D . Check whether the event recipient has turned off their email notifications for new events in their Calendar settings.
Google Calendar allows users to configure various notification settings, including whether they receive email notifications for new events, changes to events, reminders, etc. If the recipient has disabled email notifications for new events, they would not receive the invites in their inbox, even though the event might be correctly added to their Calendar.
Associate Google Workspace Administrator topics guides or documents reference: The official Google Calendar Help documentation for users, such as "Change notification settings," explains how users can customize their event notifications. This includes options to turn off email notifications for new events. While administrators don't directly manage individual user's notification settings, understanding these user-level controls is crucial for troubleshooting. An administrator might guide the user to check these settings.
A . Check whether the business hours are set up in the event recipient's Calendar settings.
Business hours in Google Calendar primarily affect meeting scheduling suggestions and how a user's availability is displayed to others. They do not directly prevent a user from receiving event invitations. Whether or not a recipient has configured their business hours will not stop the email notification for a new event from being sent (unless perhaps in very specific and unusual edge cases related to resource scheduling, which isn't indicated here).
Associate Google Workspace Administrator topics guides or documents reference: The Google Calendar Help documentation on "Set your working hours and location" explains the purpose of business hours, which is related to availability and scheduling, not the receipt of invitations.
B . Check if Calendar service is turned off for the event creator.
If the Calendar service is turned off for the event creator, they would not be able to create or send any Calendar events in the first place. Since the user created and sent the invite (as mentioned by the recipient not receiving it), the Calendar service must be active for the creator.
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin Help documentation on "Turn Google Calendar on or off for users" explains how administrators can control access to the Calendar service. If the service is off for a user, they would not have Calendar functionality.
C . Check whether the Calendar event has more than 50 guests.
While there might be limitations on the number of guests that can be added to a single Calendar event, exceeding this limit typically results in an error message for the event creator during the invitation process, not a failure of the recipient to receive the invite. Even if there were such a limit affecting receipt (which is not a common documented issue for internal users within reasonable limits), it wouldn't be the first thing to check.
Associate Google Workspace Administrator topics guides or documents reference: Google Calendar Help documentation might mention limits on the number of guests, but these limits usually pertain to the ability to add guests, send updates, or view responses, not a complete failure of delivery to some recipients within the organization.
Therefore, the most logical first step in troubleshooting why an internal recipient isn't receiving Calendar event invites is to have the recipient check their own Calendar notification settings to ensure that email notifications for new events are enabled.
質問 # 17
You are investigating a potential data breach. You need to see which devices are accessing corporate data and the applications used. What should you do?
- A. Analyze the Google Workspace reporting section of the Admin console.
- B. Analyze the User Accounts section in the Google Admin console.
- C. Analyze the audit log in the Admin console for device and application activity.
- D. Analyze the security investigation tool to access device log data.
正解:C
質問 # 18
Your organization acquired a small agency. You need to create user accounts for these new employees. The new users must be able to use their new organization's email address and their email address with the sub-agency domain name. What should you do?
Your organization acquired a small agency. You need to create user accounts for these new employees. The new users must be able to use their new organization's email address and their email address with the sub-agency domain name. What should you do?
- A. Set up the acquired agency as a user alias domain from the Manage domains page.
- B. Set up the acquired agency as a secondary domain from the Manage domains page.
- C. Redirect the acquired domain to Google's MX records and add the account as a "send as" address.
- D. Set up the acquired agency as a secondary domain and swap it to the primary domain.
正解:A
解説:
Setting up the acquired agency as a user alias domain allows users to have their new organization's email address while still being able to send and receive emails using their previous email address with the sub-agency domain. This approach efficiently ensures they can use both email addresses without requiring additional configuration for separate accounts.
質問 # 19
Your compliance team has observed that employees at your organization are frequently resetting their passwords and is concerned about account hijacking. You need to create a solution to notify the compliance team whenever a user updates or resets their password. What should you do?
- A. Create a new alert by using user log events. Check that the challenge type is "Password", and add the compliance team as email recipients.
- B. Create an activity rule that is triggered by the User's password changed event. Add compliance team members as email recipients.
- C. Move all compliance team members into a separate organizational unit (OU). Create and enforce a new password policy for the members of this OU.
- D. Create and enforce a new password policy for all users in your organization.
正解:B
解説:
Creating an activity rule that triggers on the "User's password changed" event allows you to automatically notify the compliance team whenever a user updates or resets their password. This approach is efficient because it directly ties the event to the rule and sends alerts without requiring manual monitoring or additional steps. By adding the compliance team as email recipients, you ensure they are promptly notified of any changes.
質問 # 20
You work for a healthcare provider that uses an external medical billing company to manage patient records and invoices. Your organization's employees need to share patient documents with the billing company's employees for processing. You need to configure access so the medical billing company's employees can view and edit the documents, but they cannot delete the documents.
What should you do?
- A. Create a group, and add the employees from your organization and the billing company. Create a shared folder on Google Drive. Grant Editor access to the group
- B. Restrict access for the medical billing company's employees by using Data Loss Prevention (DLP) policies.
- C. Create a shared drive that is managed by your organization's employees. Grant Contributor access to the billing company's staff.
- D. Create a shared drive. Grant Content Manager access to your organization's employees and the billing company.
正解:C
解説:
Creating a shared drive and granting Contributor access to the billing company's staff allows them to view and edit documents, but not delete them. This is the most suitable approach because it ensures that only your organization's employees manage the overall shared drive, while still allowing external users to collaborate on documents without compromising their integrity by preventing deletion. The shared drive structure also offers better control over document permissions compared to shared folders.
質問 # 21
You are configuring data governance policies for your organization's Google Drive. You need to ensure that employees in the Research and Development department can share files with external users, while employees in the Finance department are blocked from sharing any files externally.
What should you do?
- A. Create a Drive trust rule that allows external sharing for the Research and Development organizational unit (OU) and another rule that blocks external sharing for the Finance OU.
- B. Create a separate Google Workspace domain for the Finance organizational unit (OU) and disable external sharing for that domain.
- C. Enable Vault for the Finance organizational unit (OU) to ensure that all files shared externally are retained and auditable.
- D. Apply an organization-wide data loss prevention (DLP) rule that scans for sensitive information and prevents external sharing of those files. Apply that rule to the Finance organizational unit (OU).
正解:A
解説:
To enforce different external sharing policies for different departments within the same Google Workspace domain, you should use Google Drive sharing policies configured at the organizational unit (OU) level. Drive trust rules are the mechanism within Google Workspace to control how users can share files inside and outside the organization.
質問 # 22
Your organization has enabled Google Groups for Business to let employees create and manage their own email distribution lists and web forums. You need to ensure that users cannot join external Google Groups with their Google Workspace accounts without interrupting internal group usage. What should you do?
- A. In Additional Google Services, turn Google Groups OFF at the root organizational unit.
- B. Use the Directory API to change the settings of user-created groups to disable features that allow external users to access, view, or post on groups.
- C. Set the setting for Google Groups for Business called Accessing groups from outside this organization to Private.
- D. Set the setting for Google Groups for Business called Default for permission to view conversations to All organization users.
正解:C
解説:
By setting the Accessing groups from outside this organization to Private, you prevent users from joining external Google Groups while still allowing internal users to use Google Groups within the organization. This setting ensures that only members of your organization can join and interact with internal groups, effectively stopping external access without affecting internal group usage.
質問 # 23
A user in your organization received a spam email that they reported for further investigation. You need to find out more details and the scope of this incident as quickly as possible. What should you do?
- A. Conduct a search in the security investigation tool to find this email, and identify whether additional users were affected.
- B. Conduct an Email reports search to find this email and all of the email's recipients.
- C. Conduct a Vault search to find this email and identify if additional users were affected.
- D. Conduct a search to find all emails sent by the sender by using the Gmail API.
正解:A
解説:
The security investigation tool is specifically designed for investigating security incidents like spam and phishing emails. It allows you to search for emails, review their details, and determine the scope of the incident, including identifying whether other users were affected. This tool is the most appropriate and efficient way to respond to the incident.
質問 # 24
Today your company signed up for Google Workspace Business Starter with an existing domain name. You want to add team members and manage their access to email and other services. However, you are unable to create new user accounts or change user settings. You need to fix this problem. What should you do?
- A. Run the Transfer tool to bring unmanaged users to your Workspace account.
- B. Check domain ownership in the DNS settings.
- C. Upgrade to a Google Workspace Enterprise edition.
- D. Wait 24 hours after signing up for the features to become active.
正解:B
解説:
To manage users and settings in Google Workspace, you must verify domain ownership. If the domain is not verified, you won't be able to create new user accounts or modify user settings. Checking the DNS settings and completing the domain verification process will resolve the issue and allow you to manage users and services in Google Workspace.
質問 # 25
Your organization is migrating their current on-premises email solution to Google Workspace.
You need to ensure that emails sent to your domain are correctly routed to Gmail. What should you do?
- A. Create a content compliance rule to filter and route incoming emails.
- B. Configure SPF, DKIM, and DMARC records in your current email domain's DNS settings.
- C. Change the Mail Exchange (MX) records in your current email domain's DNS settings to point to Google's mail servers.
- D. Set up email forwarding from your on-premises email provider to Gmail.
正解:C
解説:
To ensure that emails sent to your domain are correctly routed to Gmail, you need to update the Mail Exchange (MX) records in your domain's DNS settings to point to Google's mail servers.
This is a critical step in the migration process, as it ensures that all incoming email traffic is directed to Google Workspace after the switch.
質問 # 26
An employee at your organization may be sharing confidential documents with unauthorized external parties. You must quickly determine if any sensitive information has been leaked. What should you do?
- A. Review the employee's user log events within the security investigation tool.
- B. Review the employee's Drive log events in the security investigation tool.
- C. Create a custom report of the user's external sharing by using the security dashboard.
- D. Audit Drive access by using the Admin SDK Reports API.
正解:B
解説:
To quickly determine if an employee has shared confidential documents externally, you should utilize the security investigation tool in the Google Admin console and specifically review the Drive log events associated with that employee's account. This tool provides a centralized place to audit user activity related to Google Drive, including sharing actions.
Here's why option A is the most direct and efficient first step:
A . Review the employee's Drive log events in the security investigation tool.
The security investigation tool allows administrators to examine various logs related to user activity and potential security incidents. By focusing on the Drive log events for the specific employee in question, you can quickly filter and review actions such as file sharing, permission changes, and external access. This will provide a direct view of whether the employee has indeed shared documents externally and to whom.
Associate Google Workspace Administrator topics guides or documents reference: The official Google Workspace Admin Help documentation on the "Security investigation tool" (or similar titles) explains its capabilities. Specifically, the section on "Investigating Drive log events" details how administrators can use filters to view file sharing activities, including external sharing, by specific users and timeframes. This tool is designed for precisely such scenarios where you need to quickly audit user actions related to data access and sharing.
B . Audit Drive access by using the Admin SDK Reports API.
While the Admin SDK Reports API can provide detailed information about Drive activity, using it requires programming skills and setting up custom scripts or applications. This is not the quickest way to investigate a potential immediate security concern. The security investigation tool offers a user-friendly interface for administrators to perform such investigations without needing to code.
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin SDK documentation describes the Reports API and its capabilities. While powerful for custom reporting and automation, it's not the fastest method for a quick, ad-hoc security investigation compared to the built-in security investigation tool.
C . Review the employee's user log events within the security investigation tool.
The user log events in the security investigation tool cover a broader range of activities beyond just Google Drive, such as login attempts, password changes, and device management actions. While this might provide some context, it is less focused on file sharing activities compared to the Drive log events. To quickly determine if confidential documents were shared, filtering directly for Drive-related actions is more efficient.
Associate Google Workspace Administrator topics guides or documents reference: The documentation on the security investigation tool outlines the different log sources available, including user logs and Drive logs. For investigating file sharing, the Drive logs provide more specific and relevant information.
D . Create a custom report of the user's external sharing by using the security dashboard.
The security dashboard provides an overview of your organization's security posture and includes pre-built reports and insights. While you can create custom reports, this process might take longer than directly investigating the Drive log events for the specific employee in the security investigation tool. The investigation tool is designed for targeted and immediate analysis of potential security incidents related to user actions.
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin Help documentation on the "Security dashboard" explains its features, which focus on overall security trends and insights. While it can be useful for identifying patterns, the security investigation tool is more suited for investigating specific user actions and potential data leaks on demand.
Therefore, the most efficient and direct way to quickly determine if the employee has shared confidential documents externally is to review the employee's Drive log events in the security investigation tool.
質問 # 27
The legal department at your organization is working on a time-critical merger and acquisition (M&A) deal. They urgently require access to specific email communications from an employee who is currently on leave. The organization's current retention policy is set to indefinite. You need to retrieve the required emails for the legal department in a manner that ensures data privacy.
What should you do?
- A. Use Google Vault to create a matter specific to the M&A deal. Search for relevant emails within the employee's mailbox. Export and share relevant emails with your legal department.
- B. Instruct the IT department to directly access and forward the relevant emails to the legal department.
- C. Ask a colleague with delegate access to the employee's mailbox to identify and forward the relevant emails to the legal department.
- D. Temporarily grant the legal department access to the employee's email account with a restricted scope that is limited to the M&A-related emails.
正解:A
解説:
Using Google Vault to create a matter specific to the M&A deal allows for legal, secure, and privacy-compliant retrieval of emails. You can search for the specific emails related to the merger and acquisition, export them, and share them with the legal department without granting direct access to the employee's mailbox. This approach ensures both data privacy and compliance with organizational policies.
質問 # 28
Your organization has a Shared Drive with 150 users organized as a group. All users of the group need to be able to add and edit files, but the ability to move, delete, and share content must be limited to a single user. You need to configure the shared drive to meet these requirements efficiently. What should you do?
- A. Create a folder inside the shared drive. Share the folder link with the group.
- B. In the Admin console, assign Contributor access for the shared drive to each user. Assign Content Manager access for the shared drive to the single user.
- C. Create a folder inside the shared drive. Share the files with the group by using the share function.
- D. In the Admin console, assign Contributor access for the shared drive to the group. Assign Content Manager access for the shared drive to the single user.
正解:D
解説:
By assigning Contributor access to the group, all 150 users will be able to add and edit files in the shared drive. Assigning Content Manager access to the single user ensures that only that person has the ability to move, delete, and share content within the shared drive. This approach efficiently meets the requirement of limiting certain administrative privileges while allowing the group to collaborate on content.
質問 # 29
Your organization is increasingly concerned about its environmental impact. You want to assess the environmental impact of using Google Workspace services. Which report should you use?
- A. Google Environmental Report
- B. Carbon footprint report
- C. Accounts report
- D. Apps Monthly Uptime report
正解:B
解説:
To assess the environmental impact of using Google Workspace services, you should refer to the Google Environmental Report. Google publishes comprehensive reports detailing its environmental efforts, including the energy efficiency of its data centers, its use of renewable energy, and its overall carbon footprint, which includes the impact of services like Google Workspace.
Here's why option B is the correct choice and why the others are not relevant to assessing the overall environmental impact of using Google Workspace:
B . Google Environmental Report
Google regularly publishes detailed environmental reports that cover various aspects of its sustainability initiatives, including its progress towards using renewable energy, its efforts to improve energy efficiency in its operations (which power Google Workspace), and its overall carbon footprint. These reports provide insights into the environmental impact associated with using Google services.
Associate Google Workspace Administrator topics guides or documents reference: While there might not be a specific "Google Workspace Environmental Impact Report" as a standalone document within the Admin console, Google's overarching "Environmental Report" (often found on Google's sustainability or environmental responsibility websites) encompasses the infrastructure and practices that support all Google services, including Google Workspace. Administrators looking for this information would be directed to these publicly available Google reports.
A . Carbon footprint report
While the concept of a "carbon footprint report" is relevant to environmental impact, Google typically includes this information within its broader "Environmental Report" rather than providing a separate report specifically for Google Workspace usage within an organization's Admin console. You would likely find data related to the carbon efficiency of Google's infrastructure in their main environmental disclosures.
Associate Google Workspace Administrator topics guides or documents reference: Google's communication about its carbon footprint and environmental efforts is usually consolidated in their public sustainability reports.
C . Apps Monthly Uptime report
The Apps Monthly Uptime report provides information about the reliability and availability of Google Workspace services. It focuses on service performance and uptime metrics, not on environmental impact or sustainability.
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin Help documentation on service-level agreements (SLAs) and service status provides information about uptime guarantees and how to monitor service availability, which is the focus of the Apps Monthly Uptime report.
D . Accounts report
The Accounts report in the Google Admin console provides details about user accounts within your organization, such as the number of active users, account status, and other user-related information. It does not contain any data or analysis related to the environmental impact of using Google Workspace services.
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin Help documentation on reporting and user accounts describes the information available in the Accounts report, which is focused on user management and activity metrics.
Therefore, to assess the environmental impact of using Google Workspace services, your organization should refer to the publicly available Google Environmental Report, which details Google's sustainability efforts and overall environmental performance.
質問 # 30
......
100%合格率リアルAssociate-Google-Workspace-Administrator試験成功を掴み取れ:https://www.passtest.jp/Google/Associate-Google-Workspace-Administrator-shiken.html
プレミアム良質なGoogle Associate-Google-Workspace-Administratorオンライン問題集:https://drive.google.com/open?id=1vyj4EKc-BiVuHsvtXudmRNBEGQECqem6