GOOGLE WORKSPACE ADMINISTRATOR
TEST SCRIPT 2026 CORRECT ANSWERS
CONFIRMED
◍ Users in your organization are routinely complaining that they
receive messages containing words of profanity they find
inappropriate in a professional setting. As the administrator, what
steps should you take to prevent the messages from being delivered to
users' mailboxes?
A. Configure an objectionable content rule.
B. Configure an attachment compliance rule.
C. Enable optical character recognition (OCR).
D. Set up a Gmail DLP policy.. Answer: A. Configure an
objectionable content rule.
◍ A user joined your organization and is reporting that every time
they start their computer they are asked to sign in. This behavior
differs from what other users within the organization experience.
Others are prompted to sign in biweekly. What is the first step you
should take to troubleshoot this issue for the individual user?
A. Reset the user's sign-in cookies.
B. Confirm that this user has their employee ID populated as a sign-in
challenge.
,C. Check the session length duration for the organizational unit the
user is provisioned in.
D. Verify that 2-Step Verification is enforced for this user.. Answer: C.
Check the session length duration for the organizational unit the user
is provisioned in.
◍ Your organization has a new security requirement around data
exfiltration on iOS devices. You have a requirement to prevent users
from copying content from a Google app (Gmail, Drive, Docs, Sheets,
and Slides) in their work account to a Google app in their personal
account or a third-party app. What steps should you take from the
admin panel to prevent users from copying data from work to
personal apps on iOS devices? (Choose two.)
A. Clear the "allow users to copy data to personal apps" checkbox.
B. Turn on "Advanced Mobile Management."
C. Navigate to Devices > Mobile and Endpoint > iOS Settings > Data
Sharing > Data Protection.
D. Navigate to Devices > Mobile and Endpoint > iOS Settings > Data
Sharing > Open Docs in Unmanaged Apps.
E. Clear the "allow items created with managed apps to open in
unmanaged apps" checkbox.. Answer: A. Clear the "allow users to
copy data to personal apps" checkbox.
C. Navigate to Devices > Mobile and Endpoint > iOS Settings > Data
Sharing > Data Protection.
, ◍ You have been asked to set up a new Google Group for your
Human Resources department as they onboard staff. The membership
of the group will change often. The HR team and all group members
need to be able to send messages to and receive messages from all
members of the group. They are worried that new staff may
accidentally post personal information to the group. How do you
configure the Google Group to prevent onboarded staff from sharing
sensitive information to all group members?
A. When provisioning the group, configure it as DLP enabled and
select PII from the list of "Content Detectors".
B. Configure the group so that members cannot view group
conversations.
C. Configure the group with new member post moderation.
D. Configure the group so only Owners or Managers can post to the
group.. Answer: C. Configure the group with new member post
moderation.
◍ You are the administrator for a 30,000-user organization. You have
multiple Workspace licensing options available to end users in your
domain, according to their work responsibilities. A user may be
transitioned to a different license type multiple times in a given year.
Your organization has a high turnover rate for employees. What is the
most efficient way to manage your organization's licensing?
A. Use the Directory API to create a custom batch script that modifies
the users license on a daily basis.
B. Create a license assignment rule in the Google Admin console to
set user licensing based on directory attributes.
TEST SCRIPT 2026 CORRECT ANSWERS
CONFIRMED
◍ Users in your organization are routinely complaining that they
receive messages containing words of profanity they find
inappropriate in a professional setting. As the administrator, what
steps should you take to prevent the messages from being delivered to
users' mailboxes?
A. Configure an objectionable content rule.
B. Configure an attachment compliance rule.
C. Enable optical character recognition (OCR).
D. Set up a Gmail DLP policy.. Answer: A. Configure an
objectionable content rule.
◍ A user joined your organization and is reporting that every time
they start their computer they are asked to sign in. This behavior
differs from what other users within the organization experience.
Others are prompted to sign in biweekly. What is the first step you
should take to troubleshoot this issue for the individual user?
A. Reset the user's sign-in cookies.
B. Confirm that this user has their employee ID populated as a sign-in
challenge.
,C. Check the session length duration for the organizational unit the
user is provisioned in.
D. Verify that 2-Step Verification is enforced for this user.. Answer: C.
Check the session length duration for the organizational unit the user
is provisioned in.
◍ Your organization has a new security requirement around data
exfiltration on iOS devices. You have a requirement to prevent users
from copying content from a Google app (Gmail, Drive, Docs, Sheets,
and Slides) in their work account to a Google app in their personal
account or a third-party app. What steps should you take from the
admin panel to prevent users from copying data from work to
personal apps on iOS devices? (Choose two.)
A. Clear the "allow users to copy data to personal apps" checkbox.
B. Turn on "Advanced Mobile Management."
C. Navigate to Devices > Mobile and Endpoint > iOS Settings > Data
Sharing > Data Protection.
D. Navigate to Devices > Mobile and Endpoint > iOS Settings > Data
Sharing > Open Docs in Unmanaged Apps.
E. Clear the "allow items created with managed apps to open in
unmanaged apps" checkbox.. Answer: A. Clear the "allow users to
copy data to personal apps" checkbox.
C. Navigate to Devices > Mobile and Endpoint > iOS Settings > Data
Sharing > Data Protection.
, ◍ You have been asked to set up a new Google Group for your
Human Resources department as they onboard staff. The membership
of the group will change often. The HR team and all group members
need to be able to send messages to and receive messages from all
members of the group. They are worried that new staff may
accidentally post personal information to the group. How do you
configure the Google Group to prevent onboarded staff from sharing
sensitive information to all group members?
A. When provisioning the group, configure it as DLP enabled and
select PII from the list of "Content Detectors".
B. Configure the group so that members cannot view group
conversations.
C. Configure the group with new member post moderation.
D. Configure the group so only Owners or Managers can post to the
group.. Answer: C. Configure the group with new member post
moderation.
◍ You are the administrator for a 30,000-user organization. You have
multiple Workspace licensing options available to end users in your
domain, according to their work responsibilities. A user may be
transitioned to a different license type multiple times in a given year.
Your organization has a high turnover rate for employees. What is the
most efficient way to manage your organization's licensing?
A. Use the Directory API to create a custom batch script that modifies
the users license on a daily basis.
B. Create a license assignment rule in the Google Admin console to
set user licensing based on directory attributes.
