1) How should an administrator configure Google Admin policies to ensure a device maintains enterprise management to the tenant after a remote factory reset? a) Disable Verified Mode b) Enable Guest Mode c) Enable Powerwash d) Enable forced re-enrollment 2) You are enrolling several devices to send to a remote location. How can you ensure that these devices will automatically connect to the wireless network at the remote location when powered on for the first time? a) During the enrollment process, add the wireless credentials manually to each device in the Admin console ensuring that they are applied to ChromeOS devices By User b) Use the Google Zero-Touch Enrollment (ZTE) process and generate the provisioning token by clicking on the "Enroll device" button in the Admin console "Devices page c) Add the wireless network credentials to the Networks section in the Admin console ensuring that they are applied to the ChromeOS devices By Device d) Add the wireless network credentials to the "Networks" section in the Admin console ensuring that they are applied to the ChromeOS devices By User 3) You want to enterprise enroll a device that has existing consumer accounts. What should you do first? a) Wipe the device. b) Delete all consumer accounts, and then follow the same steps for enrolling a brand new device. c) Follow the same steps for enrolling a brand new device. d) Contact Google support to convert the device into an enterprise device. 4) Your users are concerned that their ChromeOS devices are not updated. Where can you tell your users to go to that will show the user their current version and allow your users to update to the latest version in the safest manner possible? a) Have your users enter the "Device Settings" area and click on "About ChromeOS b) Have your users open the Chrome Browser and type in chrome://help in the address bar c) Have your users install diagnostics apps from the Chrome Web store to show device data d) Have your users open the Chrome Browser and type in chrome://version in the address bar 5) The IT team set a policy configuration that allows users to have the ability to reset (powerwash) their device to a default state. The IT team wants to ensure that the devices will stay fully managed at all times. What should you do to achieve this goal? a) Set the "Single Sign-On IdP redirection" policy to "Allow users to go directly to SAML SSO IdP page b) Set the "Forced re-enrollment policy" to "Force device to automatically re-enroll after wiping." c) Set the "Sign-in Restriction" policy to "Allow any user to sign-in." d) Set the "Powerwash" policy to "Allow powerwash to be triggered." 6) How would you deploy your "Terms of Services" page to all managed ChromeOS devices? a) Navigate to "Chrome Verified Access and enable the policy for content protection. b) In "User & Browser Settings", upload the "Terms of Service" as a wallpaper. c) Navigate to "User & Browser" and "Managed Guest Session settings to upload your custom avatar. d) Go to "User & Browser" and "Managed Guest Session settings to upload your terms of service. 7) Your team has members that work remotely. Your CTO would like to verify that your fleet of ChromeOS devices remains managed by corporate policy even after a device wipe. What would you configure to complete this objective? a) Set up the Admin console to force the device to automatically re-enroll after wiping. b) Set the setting "Powerwash" to "Do not allow powerwash to be triggered" c) Edit the setting "Verified Access". Set this setting to "Require verified mode for boot for verified access" d) Create strict password rules. 8) As the ChromeOS Administrator, you have been given previously used devices by another organization that have been used, but do not know the current management state of the devices. When are you required to wipe a device before enrolling it? Choose 2 Answer Choose 2 answers Choose 2 answers a) When the device has been sitting in a warehouse for more than 90 days. b) When the device has been previously enrolled in a different domain. c) When the device has been purchased from an authorized reseller. d) When a replacement device is sent from an OEM to replace a defective device. e) When the device has been signed in to by a user before enrolling it 9) What are the steps to enroll a previously used, non-managed ChromeOS device in your domain? a) Use the Chrome Recovery Utility with a USB Flash drive to reimage the device's OS. Then, after completing the OOBE, press CTRL+ALT+M to enroll the Chromebook. b) Powerwash the ChromeOS device, complete the out-of-box-experience (OOBE), and before signing in, press CTRL+ALT+E to enroll it. c) Switch the ChromeOS device to developer mode, wipe the device, and switch back to normal mode. Then, after completing the OOBE, press CTRL+ALT+E to enroll the ChromeOS device. d) Reboot the ChromeOS device, and at the login screen, press CTRL+ALT+M to enroll it. 10) How should an admin update hundreds of users' identities quickly with the Admin console? a) Bulk upload users through a CSV file. b) Manually update each user. c) Change primary domain. d) Create a new user account for each user 11) Your organization has automatic ChromeOS updates implemented. Your CTO would like to review the documentation on what changes each new version has. How would you assist your CTO in accomplishing this goal? a) Search YouTube for Chrome Update stories. b) Direct your CTO to the "Chrome Release Notes Support page c) Open Chrome and enter chrome://updates in the address bar d) Have your CTO start a Google Chrome Support ticket 12) Which management policy is missing within ChromeOS Flex vs ChromeOS? a) Remote Desktop b) Forced Re-enrollment c) Do Not Allow Powerwash d) SCEP 13) You want users to sign into ChromeOS devices via SAML Single Sign-On and be able to access websites and cloud services that rely on the same identity provider without having to re-enter credentials. How should you configure SAML? a) Use Chrome App Builder to enable SSO for application and force-install the application using ChromeOS user policies. b) Enable SAML-based Single Sign-On for ChromeOS devices and set the Single Sign-On cookie behavior to enable transfer of SAML SSO cookies into user sessions during login. c) Enable SAML identity provider-initiated login for Google authentication. d) Enable SAML-based Single Sign-On for each application via Chrome App Management. 14) How do you validate Chrome policies on a managed device? a) Go to the admin console and look up the policies b) In the browser go to policy://chrome to confirm that the device is receiving both user and device policy c) In the browser go to chrome://policy to confirm that the device is receiving both user and device policy d) Download device logs 15) You need to create a recovery image on a USB stick. Which two steps should you take? Choose 2 answers a) Go to google.com/chromebooks. b) Go to Device Settings. c) Install Chrome Recovery Utility and download the image for the correct device model to a USB stick d) Go to the Chrome Web Store on a Chrome device. e) Go to Google Play store. 16) You are setting up ChromeOS devices in a public library and need to prevent your ChromeOS devices from sleeping when not in use. How would you set up your policy to achieve this? a) in “power management settings”, apply “do not allow device to sleep/shutdown when idle on the sign-in screens” b) Use a dedicated ZTE Admin account for device enrollment c) Generate a ZTE pre-provision enrollment token directly for your domain root OU d) Generate a ZTE pre provision enrollment token for your specified device OU 17) As a ChromeOS Administrator, you have been asked to enroll all of your devices into a specific device OU using Zero-Touch Enrollment (ZTE). What are the next steps? Choose 2 answer a) Generate a ZTE pre provision enrollment token for your specified user OU b) Use a dedicated ZTE Admin account for device enrollment c) Generate a ZTE pre-provision enrollment token directly for your domain root OU d) Generate a ZTE pre provision enrollment token for your specified device OU e) Give the company domain name to your Chrome Partner to enable ZTE 18) You are tasked with reducing the risk of a breach of your organization's identities. What should you do to minimize the risk? a) Contigure individual Google Accounts b) Connect your LDAP c) Set up Client-side encryption d) Set up Single Sign-On (SSO) 19) You are managing the "Customer Kiosk" child organization and need to pin devices to maintain stability and security. How would you configure your Chrome update settings to achieve this? a) Select the "Stable channel. b) Long-term Support channel. c) Choose the "Beta channel. d) Long-term Support Candidate channel. 20) The security department has been informed that a ChromeOS device was stolen out of an employee's car. What should you do in the Admin console to ensure the device is rendered inoperable while still maintaining management of the device? a) Disable the ChromeOS device. b) Tag the ChromeOS device as stolen. c) Powerwash the ChromeOS device. d) Deprovision the ChromeOS device. 21) You have been asked to explain the built-in security features of ChromeOS. What is the benefit of having verified boot enabled on a ChromeOS device? a) It ensures that the OS is uncompromised. b) It installs the known safe backup OS every time the device is started up. c) Running both operating systems on one device at the same time makes it twice as powerful. d) It allows updates to happen in the background. 22) You have 150 Chrome Enterprise Upgrades (CEU) in your Google Admin console. You decide to purchase 20 Chromebook Enterprise devices (CBE). After enrollment, you would like to identify the type of licenses used by your devices. What should you do? a) Check directly from the device through the "About Chrome OS" page. b) From the "Device information" page, check the "Device Type" attribute content. c) Check from the device through chrome://policy. d) Check your "Billing subscription" page to identify devices with CBE and CEU. 23) You need to set a policy that prevents the device from shutting down while idling on the sign-in screen. Where should you navigate to? a) Device Settings> Allow shutdown b) User Settings > User Experience c) Device Settings > Power management d) User Settings > Idle settings 24) You want to enterprise-enroll a device that has previously been signed in to. What should you do first? a) Follow the same steps for enrolling a brand new device. b) Delete all consumer accounts, and then follow the same steps for enrolling a brand new device. c) Contact Google support to convert the device into an enterprise device. d) Wipe the device. 25) Your network administrator wants to block Google services traffic. What is the result? a) Chrome devices will not be able to reach Google b) Nothing. This isn't an issue. c) Google Search will not work. d) Chrome devices will crash 26) You have a number of applications that you rely upon in your organization. You want to ensure that your applications continue to run smoothly with each new version of ChromeOS. What should you do? a) Implement a QA strategy and put their IT group and 5% of users on the beta channel of ChromeOS so they can find and report bugs early for upcoming ChromeOS releases. b) Always install the latest version of those applications when they become available so they are always compatible with the latest version of Chrome. c) Advise them to take no action. All applications are automatically supported on the latest version of Chrome. d) Ask users to provide feedback on the applications within a week of a new Chrome release. 27) You need to move a subset of enrolled ChromeOS devices onto the Chrome Beta release channel. How do you move these devices onto the Beta channel? a) Deprovision the devices you wish to move onto the Beta channel. Set the ChromeOS device policy for "Release channel" to Beta channel for the selected devices. Enroll the devices to complete the change to Beta channel. b) Create a user account which has the ChromeOS device policy for "Release channel" set to Beta channel. Enroll the device using this user account to move the device into the correct organization unit. c) Open the Chrome settings on the devices you wish to move to the Beta channel. Open the Advanced settings and set the release channel to Beta channel. d) Create a sub-organization unit for the devices you have selected. Move the selected devices into this organization unit. Set the ChromeOS device policy for "Release channel" to Beta channel for the selected organization unit. 28) As a ChromeOS Administrator, you are tasked with blocking incognito mode in the ChromeOS Browser. How would you prevent users from using incognito mode? a) In "Enrollment Settings", disable verified access and incognito mode for content protection. b) From "Device Settings", change Kiosk settings to "Disallow incognito mode." c) Navigate to "Users & Browser Security Settings" and set the "Disallow incognito mode" policy. d) Go to "User & Browser Settings" to restrict sign-in to pattern and "Disallow incognito mode." 29) You need to enroll in a device for an organization. What information would you need to provide first? a) Credentials to a Gmail account and the domain name that you will enroll the device in. b) An activation key associated with the domain you will enroll the device in. c) Only the domain name of the domain you will enroll the device in. d) Credentials to any user account with enrollment permission belonging to the domain you will enroll the device in. 30) You're in charge of deploying video conferencing equipment and it has been decided that you will leverage ChromeOS devices. What initial considerations should you make when deciding on devices? a) A precise time window on how to apply security patches and updates to all devices. b) Deploying instructional guides to all users on setup, configuration, and use of new equipment. c) Devices must have 8GB of RAM and obey supported processor models. d) A form factor compatible for both remote and site workers is required. 31) As your organization's administrator, you want to assign a delegated admin custom role in order to perform a limited set of ChromeOS device management tasks only for the Marketing organizational unit. What should you do? a) Create and assign a custom role with "Chrome Management permissions" for the Marketing Users OU. b) Create and assign a custom role with "Chrome Management permissions" for the Marketing devices OU. c) Create and assign a custom role with "Chrome Management permissions" for the root OU. d) Create and assign a super admin role. 32) You have just created your Google domain and as a next step, you will need to verify your domain. As a ChromeOS Administrator, you have access to the DNS domain provider console of your company. What type of DNS entry should you need to create? a) Add a CNAME verification record. b) Add an MX verification record. c) Add a TXT verification record. d) Add an AAAA verification record. 33) You need to get the enterprise enrollment screen. What should you do? a) Press Ctrl+Alt+E on the login screen b) Add an MX verification record. c) Add a TXT verification record. d) Add an AAAA verification record. 34) you have been tasked with organizing separated policies that apply to devices or users. Using Google’s best practices, how would you structure your OUs to best achieve this? a) Create a unique OU to apply devices and user policies b) Add an MX verification record. c) Add a TXT verification record. d) Add an AAAA verification record. 35) due to security threats, your security team would like to immediately prevent any apps on a ChromeOS device from being able to use USB devices. How can you as the admin implement this security practice as quickly and efficiently? a) Block apps by permission settings which will allow you to select “USB” as permission type to block b) Add an MX verification record. 36) you need to verify a device chromeOS has successfully completed enterprise enrollment in the correct domain. what should you do? a) Sign in using a User Account Associated with the Correct Domain b) Add an MX verification record. 37) You are tasked with reducing the risk of a breach of your organization’s identities. What should you do to minimize the risk? a) configure individual google accounts b) Add an MX verification record. 38) when are you required to wipe a device prior to enrolling it? a) When the Device Was Previously Enrolled in a Different System (domain) b) Add an MX verification record. 39) To work with Google’s best practice’s recommendations, you need to configure an OU of devices to run on an early release of ChromeOS so that users can test users can test new features. Which policy option should you choose? a) Canary (should be beta channel) b) Add an MX verification record. 40) As the ChromeOS administrator, you have been given previously used devices by another organization that have been used, but do not know the correct management state of the devices. When are you required to wipe a device before enrolling it? a) when a replacement device is sent from an OEM to replace a deactivated devices b) when the device has been previously enrolled in a different domain 41) What are two methods for signing in to a Chrome OS device? a) Google account username & password (with optional 2 factor) Single sign on b) Add an MX verification record. 42) All new devices at your organization are enrolled in the top level of OU by default. You would like to ensure that all new future devices are enrolled in a sub organization unit for devices. What should you do? a) Enable the chrome user policy “place chromeOS device in user organization” and remove the enrolling user to the desired OU b) Add an MX verification record. 43) A chromeOS administrator has deployed chromeOS devices in their organization. How can the company evaluate the compatibility with future updates following Google’s best practice while still planning access to new features when they launch? a) enable auto updates on all devices on the “stable channel” but let employees in the IT department run their devices on the “Beta channel” so they have time to evaluate and adapt the environment to each update before it reaches stable b) Add an MX verification record. 44) Your organization’s security protocols require you to ensure that any unattended devices log the user out after 24 hours. You have 1000 chromeOS devices to manage. How would you implement this with the least amount of admin effort? a) enable “user and browser settings” and update “Maximum user session length” to any time up to 24 hours b) Add an MX verification record. 45) A customer deploys a large number of ChromeOS devices and would like to start the process of turning on Zero-Touch Enrollment (ZTE) to streamline their deployment process. As an administrator, what would be required to enable ZTE? a) Create pre-provisioning token b) Add an MX verification record. 46) Your company’s network team reports Wi-Fi issues with certain ChromeOS devices. To troubleshoot, you will reproduce the problem but also need to collect network logs. How are you going to proceed? a) from chrome://network, use the “Network logs” tab, select the “Wi-Fi debug” mode, then open a new tab and reproduce the issue. Once completed, go back to the original tab, then export the “system_logs.txt” file and all log files collected by debuged b) Add an MX verification record. 47) The security team is requiring Wi-Fi connectivity to be disabled on ChromeOS devices. Using the Google Admin console, how would you configure ChromeOS devices to block all Wi-Fi connectivity and hide the Wi-Fi icon? a) remove wi-fi from “enabled network interface” b) Add an MX verification record. 48) You have been tasked with selecting a 3rd party IdP to allow logging into ChromeOS devices. Your ChromeOS devices are displaying an 'Unable to sign in to Google' message. How should you troubleshoot this? a) Apply the SSO certificate to the ChromeOS device. b) Ensure the identity provider is using an SAML compliant connection. c) Check Multi-Factor Authentication for the user account in the Google Admin console d) Disable the SSO connection in the Google Admin console 49) A ChromeOS Administrator has deployed ChromeOS devices in their organization. How can the company evaluate the compatibility with future updates following Google's best practices while still gaining access to new features when they launch? a) Disable "Auto Updates" on all devices and let the admin test the newest release on the "Stable channel on their own device before rolling it out organization-wide. b) Enable "Auto Updates" on all devices on the "Stable channel", but let the employees in the IT department run their devices on the "Beta channel so they have time to evaluate and adapt the environment to each update before it reaches Stable. c) Set the entire fleet to update in accordance with the "Long-term Support (LTS) channel". d) Set 5% of the organization across several departments on the "Beta channel", and configure the rest of the fleet to receive auto updates on the "Stable channel. 50) You are planning to purchase some new ChromeOS devices for your sales team and want to use Zero-Touch Enrollment (ZTE). You want the new devices to be directly enrolled into an organization unit named 'Sales Devices. How do you generate the correct ZTE Token in the Admin console with the least amount of admin effort? a) Click on the "Enroll devices" button followed by the "Generate token" button from the "ChromeOS devices" page. Once the devices have been enrolled, you can move them into the Sales Devices organization unit b) At the "ChromeOS devices" page, click on the "Enroll devices" button and navigate to the "ChromeOS tokens page c) Contact your Google Partner to request the ZTE token. You will need to specify that the ZTE token is to be applied to the Sales Devices organization unit d) From the "ChromeOS devices" page select the "Sales Devices" organization unit. Click on the "Enroll devices" button followed by the "Generate token" button to generate the ZTE token 51) You have been tasked with selecting a 3rd party IdP to allow logging into ChromeOS devices. Your ChromeOS devices are displaying an "Unable to sign in to Google' message. How should you troubleshoot this? a) Disable the SSO connection in the Google Admin console. b) Check Multi-Factor Authentication for the user account in the Google Admin console. c) Apply the SSO certificate to the ChromeOS device. d) Ensure the identity provider is using an SAML compliant connection 52) The security team needs to ensure that the latest ChromeOS updates are deployed and applied to all ChromeOS devices in your organization. You have already configured the Updates Policies in the Admin console appropriately so updates are downloaded daily. How would you ensure daily updates are installed on all ChromeOS devices while minimizing end user impact? a) Configure "Relaunch Notifications b) Configure "Enforce Updates" c) Enable Reboot after uptime limit. d) Set the "Auto Reboot” after Update Policy 53) You need to create a recovery image on a USB stick Which two steps should you take? Choose 2 answers a) Go to Chrome Web Store on a Chrome device. b) Install Chrome Recovery Utility and download the image for the correct device model to a USB stick. c) Goto google.com/chromebooks d) Go to Device Settings. e) Go to Google Play store. 54) You ned to enroll device for an organization What information would you need to provide first? a) An Activation key associated with the domain you will enroll the device in b) Credentials to Giaccant and the domain name that you roll the device in c) Credentials to any user account with enrollment permission belonging to the domain you will enroll the device in d) Only the domain name of the domain you will enroll the device in 55) You are using a third-party service for SSO. Users are confused when signing onto a Chrome device because they are asked for Google account details before being redirected to the sign-in screen for your SSO provider. Which setting must be changed so managed devices open the SSO provider login page by default? a) SAML single sign-on password synchronization flows b) SAML single sign-on login frequency c) Single sign-on cookie behavior d) Single sign-on IdP redirection 56) You have found a possible security issue with an app that your users are using. The severity of this issue requires you to quickly see who is using this app. You have enabled the Chrome Reporting setting. What is the most efficient way to see what users are using the app? a) The Chrome Reporting setting is a useful tool that allows administrators to monitor the usage of specific apps and extensions across a domain. With this setting enabled, administrators can receive email alerts when a user installs or uses a specific app or extension. b) Add an MX verification record. 57) To allow remote users to securely connect to an internal network, the organization you're supporting in using a VPN. The organization would like you to configure the Chrome Os devices so that the Android VPN clients deployed are automatically configured with the correct hostname. How should you configure this in the Admin Console according to Google best practice? a) Upload JSON file with the configuration into the Google Play Store b) Add a managed configuration using JSON to the Android app c) Download the android app on a Chrome OS device, and the hostname manually, then re-upload the app in the organization's private Google Play and deploy it to all ChromeOs devices d) Contact the VPN provider and ask them to provide you with a custom installable client with the correct configuration pre-configured. Then deploy that installable 58) You need to get to the enterprise enrollment screen. What should you do? a) Hold down the "Ctrl + Alt + E" keys on your keyboard to open the enterprise enrollment page. b) Add an MX verification record. 59) Your C-Level team would like to make sure your company is prepared to take advantage of features not yet publicly released. How can you accomplish this goal? a) To prepare for taking advantage of features not yet publicly released, you can sign up for Early Access Programs (EAPs) offered by your software vendors or publish beta programs to selected customers that are on the lookout for your products usage. b) Add an MX verification record. 60) You are tasked with converting hundreds of Windows & Mac machines across multiple locations to ChromeOS Flex and enrolling them in the Admin console. The available network bandwidth is limited at many of the Iocations and the devices are not currently managed with any endpoint management system. Which two operations are required to perform the task? a) Use Zero Touch Enrollment and Pre-Provisioning to enroll in the Admin console: Zero Touch Enrollment and Pre-Provisioning allow you to enroll devices in the Admin console without requiring users to perform any manual configuration. b) Add an MX verification record. 61) A global organization is deploying a fleet of ChromeOS devices to all their users. Organization policy requires all web traffic to be filtered using an existing proxy service to prevent access to 1 million unauthorized websites. What ChromeOS policy should you configure to meet this requirement? a) "Always use the proxy auto-config specified below", and provide the IP:port information. b) "Always use the proxy specified below", and provide the URL to pac file configuration. c) "Always use a network access control deny" policy to deny the URLS. d) "Always use the proxy specified below", and provide the IP:port to the proxy services 62) You're the lead for the technology department and you're working with your teammate on a hardware refresh in the upcoming year. A major part of the refresh is to consider ChromeOS devices for the majority of the users in the company. What are some organization level objectives you should consider during this hardware refresh in regard to ChromeOS? a) ChromeOS integration with current technological standards and practices can be worked on with trusted Google partners. b) Verifying if all the terms and conditions in the Chrome Online Agreement are applicable to ChromeOS. c) ChromeOS will need a rollout and execution plan commensurate with hardware supply availability. d) ChromeOS allows for advanced security, flexible access, and simplified orchestration within the business. 63) Your administration team is about to deploy a fleet of ChromeOS devices. Your users have their own peripherals and you would like them to use what they have if possible. You also would like to let your users know what peripherals work and what peripherals do not. What should you do for your users? a) Create Change Management documentation that provides them with information on how to check their current peripherals and instructions on how to get new equipment. b) Tell your users that every peripheral works with ChromeOS. c) Tell your users to try what they have and to start an IT support ticket if something isn't working right. d) Send them all new peripherals and have your users send in their old equipment even if the old equipment works. 64) You are migrating an organization from Windows devices. Part of the migration process involves setting up the existing suite of business applications for use with ChromeOS, leveraging cloud technologies whenever possible. Which of these would be the preferred option when choosing the type of solution to deploy? a) Deploy the legacy client in a virtualization solution, and use that to stream the application to the Chrome Os devices b) Go to the Google Play Store and deploy the Android client of the app in question. c) Check to see if there's a web application equivalent that provides all the necessary features, and if so, deploy the URL through the Admin console. d) Write a tutorial on how to install each of the applications using the Linux terminal, and ask users to follow those instructions when first using their new device. 65) Where in the Google Admin console can you make sure all devices re enroll after wiping without user input? a) Under devices settings > Select "Force Device" to Automatically Re Enroll after Wiping" b) Under user and browser settings > Select "Enrollment Controls" c) Under user and browser settings > Select "Force Device to Re Enroll with user credentials after wiping" d) Under devices settings > Select "Force Device to Re Enroll with user credentials after wiping" 66) You have found a possible security issue with an app that your users are using. The severity of this issue requires you to quickly see who is using this app. You have enabled the Chrome Reporting setting. What is the most efficient way to see what users are using the app? a) Under "Security" "Access" and "Data Control"> "API Controls", select "Manage third-party apps access". After the list of connected apps appears, you can now search for the app in question. b) Under "Devices" "Chrome" "Devices" you can manually check each device. Select the device in question, click "Remote Desktop", and audit the device in question. Enter the found data into a Google Sheet for tracking purposes. c) Under "Devices" "Chrome" "Reports", use the "Apps and Extension report to show all used apps in your domain. Click the app in question to get the list of devices that are using the app. Compare those results with the list of devices to see who is using the app. d) Under "Reports"> "Token", download the entire results and place those results into a Google Sheet. Do a search for the app and note who is using the app. You should now have a list of users to reach out to. 67) What is a best practice for admin accounts on the Google Admin console? a) Group Admins should have access to multiple groups b) Super Admins should be used for all changes to the domain c) Super Admins should use a separate user account for day-to-day activities d) Group Admins should have 2FA enabled only if given security policy controls 68) You need to schedule automatic device reboots for all digital signage ChromeOS devices on a weekly basis. You have set up a "Digital Signage child organization to customize your kiosk device policies for this deployment. How would you enforce scheduled reboots for your digital signage devices every Friday? a) In the "Digital Signage child organization, set the policy to always reboot on Friday on user sign-out. b) In the "Digital Signage child organization, set the policy to enable scheduled reboots on Friday. c) In the "Digital Signage child organization, disable scheduled reboots except on Friday. d) In the "Digital Signage child organization, apply reboot after the uptime limit on Friday. 69) Your customer is deploying ChromeOS devices in their environment and requires those ChromeOS devices to adhere to web filtering via TLS (or SSL) inspection. What recommendations should you make to your customer in setting up the requirements for ChromeOS devices? a) Configure a transparent proxy, set up your allowlist to use.google.com, then verify TLS (or SSL) inspection is working. b) Configure a hostname allowlist, set up a TLS (or SSL) certificate, then verify TLS (or SSL) inspection is working. c) Reach out to Google Workspace Security and Compliance for tailored configurations for your customer. d) ChromeOS devices are preconfigured to adhere to company TLS (or SSL) inspection by default and can therefore be deployed with no additional configuration. 70) You require different sets of Chrome Apps and extensions to be pre-installed for different groups of users. How would you accomplish this? a) Force-install apps at each OU to specify the apps to be installed for just that OU b) Manage force-installed apps at the top level OU to specify all the different apps to be installed. c) Ask the users to go to Google Play Store and search for the apps and extensions. 71) You want to apply a set of device policies across multiple organizational units (OUS). What should you do? a) Create a higher level OU where the policies can be applied, then rely on inheritance to propagate the policies to the other OUS b) Use the Directory API to create the policies in each OU c) Create the set of policies in one OU, then use copy and paste to set those policies in the other OUS. d) Export the device list from one OU to a CSV file, then use Google Apps Directory Sync to import your new policies to other OUS 72) Your administration team is about to deploy a fleet of ChromeOS devices. Your users have their own peripherals and you would like them to use what they have if possible. You also would like to let your users know what peripherals work and what peripherals do not. What should you do for your users? a) Tell your users to try what they have and to start an IT support ticket if something isn't working right. b) Create Change Management documentation that provides them with information on how to check their current peripherals and instructions on how to get new equipment. c) Send them all new peripherals and have your users send in their old equipment even if the old equipment works d) Tell your users that every peripheral works with ChromeOS 73) You need to schedule automatic device reboots for all digital signage ChromeOS devices on a weekly basis. You have set up a "Digital Signage child organization to customize your kiosk device policies for this deployment. How would you enforce scheduled reboots for your digital signage devices every Friday? a) In the Digital Signage child organization, set the policy to always reboot on Friday on user sign-out b) In the "Digital Signage child organization, set the policy to enable scheduled reboots on Friday. c) In the "Digital Signage child organization, disable scheduled reboots except on Friday d) In the "Digital Signage child organization, apply reboot after the uptime limit on Friday 74) Which policy should a ChromeOS Administrator enable to protect against phishing, social engineering, malware, and unwanted software? a) Incognito Mode b) Safe Browsing c) SafeSearch d) Search Suggest 75) What should an administrator do to view the number and type of ChromeOS upgrades purchased and in use by their domain? a) Contact partner to verify b) Check reports page for upgrades c) Verify upgrades on devices page d) Check subscriptions in billing 76) You're the lead for the technology department and you're working with your teammate on a hardware refresh in the upcoming year. A major part of the refresh is to consider ChromeOS devices for the majority of the users in the company. What are some organization level objectives you should consider during this hardware refresh in regard to ChromeOS? a) ChromeOS integration with current technological standards and practices can be worked on with trusted Google partners. b) Verifying if all the terms and conditions in the Chrome Online Agreement are applicable to ChromeOS c) ChromeOS allows for advanced security, flexible access, and simplified orchestration within the business. d) ChromeOS will need a rollout and execution plan commensurate with hardware supply availability 77) A global organization is deploying a fleet of ChromeOS devices to all their users. Organization policy requires all web traffic to be filtered using an existing proxy service to prevent access to 1 million unauthorized websites. What ChromeOS policy should you configure to meet this requirement? a) "Always use the proxy specified below, and provide the URL to pac file configuration. b) "Always use the proxy auto-config specified below, and provide the IP port information c) "Always use a network access control deny policy to deny the URLs. d) "Always use the proxy specified below", and provide the IP port to the proxy services. 78) Your leadership team would like to verify that all ChromeOS devices are restarted to apply the new update as quickly as possible. You have 2000 devices and your Admin console is configured with automatic updates enabled. What can you do to ensure the restart with the least amount of admin effort? a) Manually connect to each device using Chrome Remote Desktop and restart the device After the device has started, start up the Chrome Browser, go to chrome //help to verify that the update has taken place. b) Ask Human Resources to create and send out a company memo asking everyone to restart their devices within 24 hours c) In the Admin console, in "Device Settings", under "AutoUpdate Settings", configure "Device Updates" to "Allow updates". d) In "User and Browser Settings", under "Chrome Updates", configure "Relaunch Notifications" to "Force relaunch after a period" and enter a time period in hours. 79) At a specific location in your organization, users cannot log in to their ChromeOS devices. The ChromeOS Administrator has also noticed that devices have not synced in the past 24 hours. You have updated policies in the Admin console for your fleet of ChromeOS devices, but the devices are not getting the updated policies. What is a probable change in the environment that can cause these issues? a) Your network administrator has blocked all network traffic to Google services. b) Your root Certificate Authority expired. c) Your organization's licenses have recently expired d) A different location enrolled a large number of new devices. 80) Your organization is using a third-party IdP. Users report that they can only log in to the device when connected to the Internet. Which setting is causing this problem? a) Online revocation checks b) Single sign-on cookie behavior c) Single sign-on IdP redirection d) SAML single sign-on login frequency 81) One of the employees of the organization you're managing is leaving, and you want to prepare the device th been using for adoption by a new user. What is the recommended action you need to take through the Admin console to remove any previous user data from the machine? a) Enable forced-reenrollment on the device OU and then factory reset the device. b) Select "Reset" on the devices overview page, and then "Clear User Profiles." c) Delete the user from the Admin console and powerwash the machine d) Deprovision the device, reset it, and then finally re-enroll it. 82) You are migrating an organization from Windows devices. Part of the migration process involves setting up the existing suite of business applications for use with ChromeOS, leveraging cloud technologies whenever possible. Which of these would be the preferred option when choosing the type of solution to deploy? a) Write a tutorial on how to install each of the applications using the Linux terminal, and ask users to follow those instructions when first using their new device b) Deploy the legacy client in a virtualization solution, and use that to stream the application to the ChromeOS devices c) Go to the Google Play Store and deploy the Android client of the app in question d) Check to see if there's a web application equivalent that provides all the necessary features, and if so, deploy the URL through the Admin console 83) A customer has a mission-critical workload running on ChromeOS and needs devices configured to reduce ChromeOS changes. How can an admin reduce the risk of an unexpected change in an OS update affecting the customer's entire ChromeOS device domain while maintaining security and minimizing admin workload? a) Add an update rollout plan b) Move to a Long-term Support channel. c) Force auto reboot after update d) Enable variations
0%
Prep Test
Share
Share
Share
by
U79826863
I-edit ang Content
I-Print kini
Embed
Uban pa
Assignments
Leaderboard
Show more
Show less
Kini nga leaderboard naka-pribado. Pag-klik sa
Share
aron himuon kini nga publiko.
Kini nga leaderboard gi-disable sa tag-iya sa resource.
Kini nga leaderboard gi-disable tungod ang imong mga kapilian lahi ra sa tag-iya sa resource.
I-revert ang mga Kapilian
Ang
Quiz
usa ka open-ended nga template. Dili kini makamugna ug mga marka sa leaderboard.
Kinahanglan mag log in
Visual style
Fonts
Subscription required
Mga Option
I-switch ang template
Ipakita tanan
Daghang mga format ang mugawas samtang gidula nimo ang activity.
Open results
Copy link
QR code
Mag-delete
I-restore ang gi-autosave:
?
