• Home
  • Articles
  • [Q14-Q31] Real Exam Questions Associate-Google-Workspace-Administrator Dumps Exam Questions in here [Mar-2026]

[Q14-Q31] Real Exam Questions Associate-Google-Workspace-Administrator Dumps Exam Questions in here [Mar-2026]

Share

Real Exam Questions Associate-Google-Workspace-Administrator Dumps Exam Questions in here [Mar-2026]

Get Latest Mar-2026 Conduct effective penetration tests using Associate-Google-Workspace-Administrator


Google Associate-Google-Workspace-Administrator Exam Syllabus Topics:

TopicDetails
Topic 1
  • Data Access and Authentication: This section of the exam evaluates the capabilities of Security Administrators and focuses on configuring policies that secure organizational data across devices and applications. It includes setting up Chrome and Windows device management, implementing context-aware access, and enabling endpoint verification. The section assesses the ability to configure Gmail Data Loss Prevention (DLP) and Access Control Lists (ACLs) to prevent data leaks and enforce governance policies. Candidates must demonstrate an understanding of configuring secure collaboration settings on Drive, managing client-side encryption, and restricting external sharing. It also covers managing third-party applications by controlling permissions, approving Marketplace add-ons, and deploying apps securely within organizational units. Lastly, this section measures the ability to configure user authentication methods, such as two-step verification, SSO integration, and session controls, ensuring alignment with corporate security standards and compliance requirements.
Topic 2
  • Supporting Business Initiatives: This section of the exam measures the skills of Enterprise Data Managers and covers the use of Google Workspace tools to support legal, reporting, and data management initiatives. It assesses the ability to configure Google Vault for retention rules, legal holds, and audits, ensuring compliance with legal and organizational data policies. The section also involves generating and interpreting user adoption and usage reports, analyzing alerts, monitoring service outages, and using BigQuery to derive actionable insights from activity logs. Furthermore, candidates are evaluated on their proficiency in supporting data import and export tasks, including onboarding and offboarding processes, migrating Gmail data, and exporting Google Workspace content to other platforms.
Topic 3
  • Troubleshooting: This section of the exam measures the skills of Technical Support Specialists and focuses on identifying, diagnosing, and resolving issues within Google Workspace services. It tests the ability to troubleshoot mail delivery problems, interpret message headers, analyze audit logs, and determine root causes of communication failures. Candidates are expected to collect relevant logs and documentation for support escalation and identify known issues. The section also evaluates knowledge in detecting and mitigating basic email attacks such as phishing, spam, or spoofing, using Gmail security settings and compliance tools. Additionally, it assesses troubleshooting skills for Google Workspace access, performance, and authentication issues across different devices and applications, including Google Meet and Jamboard, while maintaining service continuity and network reliability.
Topic 4
  • Configuring Services: This section of the exam evaluates the expertise of IT Systems Engineers and emphasizes configuring Google Workspace services according to corporate policies. It involves assigning permissions, setting up organizational units (OUs), managing application and security settings, and delegating Identity and Access Management (IAM) roles. The section also covers creating data compliance rules, applying Drive labels for data organization, and setting up feature releases such as Rapid or Scheduled Release. Candidates must demonstrate knowledge of security configurations for Google Cloud Marketplace applications and implement content compliance and security integration protocols. Furthermore, it includes configuring Gmail settings such as routing, spam control, email delegation, and archiving to ensure communication security and policy alignment across the organization.
Topic 5
  • Managing Objects: This section of the exam measures the skills of Google Workspace Administrators and covers the management of user accounts, shared drives, calendars, and groups within an organization. It assesses the ability to handle account lifecycles through provisioning and deprovisioning processes, transferring ownership, managing roles, and applying security measures when access needs to be revoked. Candidates must understand how to configure Google Cloud Directory Sync (GCDS) for synchronizing user data, perform audits, and interpret logs. Additionally, it tests knowledge of managing Google Drive permissions, lifecycle management of shared drives, and implementing security best practices. The section also focuses on configuring and troubleshooting Google Calendar and Groups for Business, ensuring proper access control, resource management, and the automation of group-related tasks using APIs and Apps Script.

 

NEW QUESTION # 14
Your company's help desk is receiving technical support tickets from employees who report that messages from known external contacts are being sent to the spam label in Gmail. You need to correct the issue and ensure delivery of legitimate emails without introducing additional risk as soon as possible. What should you do?

  • A. Ask employees to select the messages in Gmail that are being delivered to spam and mark them as Not spam.
  • B. Contact the external senders, and tell them to authenticate their sent mail by using domain-based message authentication, reporting, and conformance (DMARC).
  • C. Turn off more aggressive spam filtering in spam policies that are applied to the users' organizational unit and add the senders' mail system IP addresses to the email allowlist.
  • D. Create an address list of approved senders so messages from these users bypass Gmail's spam filters and recipients can decide whether they are spam or not.

Answer: A

Explanation:
Asking employees to mark legitimate emails as "Not spam" helps train Gmail's spam filter to correctly identify these senders as trusted. This is a quick and effective way to correct the issue without introducing any additional risk or changes to the email filtering settings. Over time, Gmail will learn to recognize these senders as legitimate, reducing the likelihood of their messages being misclassified as spam in the future.


NEW QUESTION # 15
You've noticed an increase in phishing emails that contain links to malicious files hosted on external Google Drives. These files often mimic legitimate documents and trick users into granting access to their accounts. You need to prevent users from accessing these malicious external Drive files, but allow them to access legitimate external files. What should you do? (Choose two.)

  • A. Enforce stricter password policies.
  • B. Deploy advanced malware detection software on all user devices to scan and block malicious files.
  • C. Create a Drive trust rule that blocks all external domains except for a pre-approved list of trusted partners.
  • D. Conduct regular security awareness training to educate users.

Answer: C,D

Explanation:
E Implement two-factor authentication for all users
Explanation:
Conduct regular security awareness training to educate users: Educating users about phishing threats and safe online practices can help them recognize and avoid phishing attempts, reducing the chances of them falling for such scams.
Create a Drive trust rule that blocks all external domains except for a pre-approved list of trusted partners: By setting up a Drive trust rule to limit access to files from external domains, you can block links to malicious files hosted on untrusted external Google Drives while still allowing access to legitimate external files from trusted sources.


NEW QUESTION # 16
The human resources department notified you of a legal investigation that was started for an employee in the finance department. You need to ensure that this employee's Google Drive data is preserved for at least one year and does not get deleted by the user or by other means. The Google Vault default retention rules for Drive are set for five years. What should you do?

  • A. Confirm that the Vault default retention rule is set for five years.
  • B. Change the Vault default retention rule to one year instead of five.
  • C. Create a hold in Vault for the employee's Drive.
  • D. Place the employee into a separate organizational unit (OU). Create a custom one-year retention rule for this OU.

Answer: C

Explanation:
When there's a legal investigation, the priority is to ensure that relevant data is preserved and not deleted, regardless of retention policies or user actions. A "hold" (also known as a litigation hold or legal hold) in Google Vault is specifically designed for this purpose. It overrides all retention rules (both default and custom) and prevents any data covered by the hold from being purged, even if a user attempts to delete it.
Here's why the other options are not the correct or best solution:
A . Change the Vault default retention rule to one year instead of five. Changing the default retention rule would affect all Drive data in your organization, not just this specific employee's. It's a broad change and not suitable for a targeted legal hold. Moreover, it wouldn't guarantee preservation against user deletions.
B . Place the employee into a separate organizational unit (OU). Create a custom one-year retention rule for this OU. While creating custom retention rules for OUs is possible, it's not the primary mechanism for a legal hold. Retention rules define when data can be deleted, but a hold prevents deletion irrespective of the retention period. If the employee deletes the data, a retention rule won't stop it from moving to trash (and eventually being purged) unless a hold is in place. Furthermore, a one-year retention rule isn't the goal; the goal is to preserve for "at least one year" (meaning indefinitely until the hold is released). The default five-year rule is already longer than one year, but doesn't override user deletion.
D . Confirm that the Vault default retention rule is set for five years. The question states that the default retention rule for Drive is already set for five years. While this is good for general data retention, it does not prevent a user from deleting their own files from Drive, nor does it specifically address the need for a legal hold where data must be absolutely preserved. A default retention rule does not override user deletion or ensure data preservation for legal purposes.
Reference from Google Workspace Administrator:
Holds in Google Vault: This is the core concept. Holds prevent data from being purged from Google systems, regardless of retention rules or user actions, until the hold is released. They are specifically used for legal discovery or investigation purposes.
Reference:
Retention rules in Google Vault: While relevant to data management, retention rules define when data can be deleted if no hold applies. They do not prevent users from deleting data or ensure preservation for legal holds.


NEW QUESTION # 17
Your company has purchased Gemini licenses for a subset of employees. You need to ensure that only users in the marketing and sales departments have access to Gemini features by using the most efficient approach. What should you do?

  • A. Enable Gemini for the entire organization. Instruct users in other departments not to use Gemini.
  • B. Create an organizational unit (OU) for marketing and sales. Assign the Gemini licenses to that OU, and enable Gemini for that OU only.
  • C. Assign Gemini licenses to each user in the marketing and sales departments.
  • D. Create a script to assign a Gemini license to new users if they are in marketing or sales. Run the script daily.

Answer: B

Explanation:
Creating separate organizational units (OUs) for marketing and sales allows you to apply the Gemini licenses to only those departments. By enabling Gemini for just that OU, you ensure that only the employees in marketing and sales have access to Gemini features, ensuring an efficient and scalable solution. This avoids the need for manual assignment or unnecessary instructions to users in other departments.


NEW QUESTION # 18
You are investigating a potential data breach. You need to see which devices are accessing corporate data and the applications used. What should you do?

  • A. Analyze the security investigation tool to access device log data.
  • B. Analyze the User Accounts section in the Google Admin console.
  • C. Analyze the Google Workspace reporting section of the Admin console.
  • D. Analyze the audit log in the Admin console for device and application activity.

Answer: D


NEW QUESTION # 19
You are managing the buildings and resources for your organization. You need to create several conference rooms with a capacity of 10 people each, equipped with a whiteboard and projector, and wheelchair accessible. You want to ensure the process is efficient. What should you do?

  • A. Automate room creation by using a third-party app from the Google Workspace Marketplace.
  • B. Create each conference room individually in the Google Admin console. Add the features for each room.
  • C. Create a CSV file and add all resources. Write a script using the Workspace API to reference the CSV file and create all the resources.
  • D. Use the Google Admin console to bulk upload the rooms. Create a resource with the specified features and apply the features to that resource.

Answer: C

Explanation:
Using a CSV file to list all the conference rooms and a script to automate their creation via the Workspace API is the most efficient solution. This approach allows you to batch-create the rooms with the specified attributes (capacity, whiteboard, projector, wheelchair accessible) without manually inputting each room individually. It minimizes manual effort and ensures consistency across all room configurations.


NEW QUESTION # 20
Your organization allows employees to use their personal devices for work purposes. You want to ensure these devices follow the company's security policies. You need to choose a mobile management solution that provides minimal passcode enforcement and allows for an admin to remotely wipe a user's account from the device. You also want to avoid having to install agents on employees' personal devices. What should you do?

  • A. Implement Google's basic management on mobile devices.
  • B. Enforce a strong password policy, and enforce the password policy at the next sign-in.
  • C. Deploy a third-party mobile device management (MDM) solution.
  • D. Implement Google's advanced management on mobile devices.

Answer: A

Explanation:
Google's basic management for mobile devices allows administrators to enforce minimal security policies, such as passcode enforcement, without requiring the installation of any agents on employees' personal devices. This solution also allows for remotely wiping a user's account from the device if needed, ensuring data security while maintaining a less intrusive management approach for personal devices.


NEW QUESTION # 21
Your organization needs an approval application for purchases where a user can enter information on the purchase required and then submit it for management approval. You need to suggest a solution to create the application that must be available on both the web and mobile devices. Your organization does not have software developers or the budget to hire a third party. What should you do?

  • A. Suggest the organization use AppSheet to create the application.
  • B. Suggest that the organization develop an application internally with a database, a backend service for data retrieval, and a frontend service for the application's user interface.
  • C. Suggest that the organization use AppScript to create forms linked to a Google Sheet to store the purchase data.
  • D. Suggest that the organization continue to approve requests manually until budget is available to use a third-party application provider.

Answer: A

Explanation:
AppSheet is a no-code platform that allows users to create custom applications without the need for software development skills. It is capable of building applications that can be used both on the web and mobile devices. AppSheet would allow the organization to create the approval application efficiently, meeting the requirements of the purchase process, and would be a cost-effective solution that does not require hiring developers or using a third-party application provider.


NEW QUESTION # 22
You are employed at a multinational organization with offices around the world. You want to ensure that employees in each region receive region-specific emails in a timely manner with minimal administrative burden. When new employees are hired in each region, you want to automate the email distribution process so that staff changes are reflected quickly. What should you do?

  • A. Create a Google Group for each region and set permissions that allow employees to discover and join the groups.
  • B. Create a Google Group for each region and add the respective employees to the appropriate group.
  • C. Create a dynamic group for each region by setting the location as a condition.
  • D. Create a security group for each region, and apply the location label to allow employees to join based on their region.

Answer: C

Explanation:
To automate email distribution to employees based on their region with minimal administrative overhead and ensure that staff changes are reflected quickly, the most efficient solution is to use dynamic groups in Google Workspace. You can create a dynamic group for each region and set membership rules based on a user attribute, such as their location. When a new employee is added and their location is correctly set in their user profile, they will automatically be added to the corresponding dynamic group.
Here's why option B is the best choice and why the others are less suitable for automation:
B . Create a dynamic group for each region by setting the location as a condition.
Dynamic groups automatically manage their membership based on criteria you define using user attributes in the Google Workspace directory (e.g., department, location). By creating a dynamic group for each region and setting the condition to match the employees' location as specified in their user profiles, new hires will be automatically added to the correct regional email distribution list when their account is created with the appropriate location. Similarly, if an employee's location changes in their profile, their group membership will be updated automatically. This minimizes manual administrative work and ensures timely updates to the email lists.
Associate Google Workspace Administrator topics guides or documents reference: The official Google Workspace Admin Help documentation on "About dynamic groups" (or similar titles) explains the benefits and functionality of dynamic groups. It highlights their ability to automatically manage membership based on user attributes, reducing the need for manual additions and removals. The documentation also details how to create dynamic groups and set up membership rules based on various user profile fields, including location.
A . Create a Google Group for each region and add the respective employees to the appropriate group.
While standard Google Groups can be used for email distribution, they require manual addition and removal of members. This approach does not automate the process when new employees are hired or when employees move between regions, leading to administrative overhead and potential delays in updating the email lists.
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin Help documentation on "Create a group" explains how to create and manage standard Google Groups. It emphasizes manual member management unless used in conjunction with other tools or processes.
C . Create a Google Group for each region and set permissions that allow employees to discover and join the groups.
Allowing employees to discover and join groups can reduce some administrative burden, but it relies on employees to actively find and join the correct regional group. This is not as reliable or immediate as automatic membership based on a defined attribute. Additionally, it might lead to employees joining incorrect groups.
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin Help documentation on "Choose who can join your group" outlines the different join settings for Google Groups. While self-joining can be useful for certain types of groups, it doesn't guarantee that all relevant employees will join the correct regional distribution lists automatically upon hiring.
D . Create a security group for each region, and apply the location label to allow employees to join based on their region.
Security groups in Google Workspace are primarily used for managing access to resources and services, not typically for email distribution lists in the same way as Google Groups. While you can add security groups to email lists, the mechanism for employees to join based on a "location label" isn't a standard automated feature of security groups. Dynamic groups are specifically designed for automatic membership based on user attributes.
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin Help documentation on "About security groups" explains their purpose in managing access and permissions. While they can contain users based on attributes, the automatic, attribute-based membership management for email distribution is the core functionality of dynamic groups.
Therefore, the most effective and automated solution to ensure region-specific email distribution with minimal administrative burden is to create a dynamic group for each region by setting the location as a condition. This ensures that new employees are automatically added to the correct regional email list based on their user profile information.


NEW QUESTION # 23
You are designing a group structure for your company that will be used to grant access to a specific shared drive. You need this solution to automatically add and remove employees based on their job role. What should you do?

  • A. Create a dynamic group. Set the membership criteria to the desired job role. Grant the dynamic group access to the shared drive.
  • B. Create a configuration group. Add users on an exception basis. Grant the configuration group access to the shared drive.
  • C. Create a distribution list. Add all employees with the desired job role. Grant the distribution list access to the shared drive.
  • D. Create a security group. Add all employees with the desired job role. Grant the security group access to the shared drive.

Answer: A

Explanation:
A dynamic group automatically manages its membership based on user attributes, such as job role. This approach ensures that employees are automatically added or removed from the group based on their role, minimizing manual effort and ensuring that the group always reflects the current team composition. Granting this dynamic group access to the shared drive ensures that the right users have the appropriate permissions without requiring constant manual updates.


NEW QUESTION # 24
Your organization has a Shared Drive with 150 users organized as a group. All users of the group need to be able to add and edit files, but the ability to move, delete, and share content must be limited to a single user. You need to configure the shared drive to meet these requirements efficiently.
What should you do?
Your organization has a Shared Drive with 150 users organized as a group. All users of the group need to be able to add and edit files, but the ability to move, delete, and share content must be limited to a single user. You need to configure the shared drive to meet these requirements efficiently.
What should you do?

  • A. Create a folder inside the shared drive. Share the folder link with the group.
  • B. In the Admin console, assign Contributor access for the shared drive to each user. Assign Content Manager access for the shared drive to the single user.
  • C. Create a folder inside the shared drive. Share the files with the group by using the share function.
  • D. In the Admin console, assign Contributor access for the shared drive to the group. Assign Content Manager access for the shared drive to the single user.

Answer: D

Explanation:
By assigning Contributor access to the group, all 150 users will be able to add and edit files in the shared drive. Assigning Content Manager access to the single user ensures that only that person has the ability to move, delete, and share content within the shared drive. This approach efficiently meets the requirement of limiting certain administrative privileges while allowing the group to collaborate on content.


NEW QUESTION # 25
Your organization has hired temporary employees to work on a sensitive internal project. You need to ensure that the sensitive project data in Google Drive is limited to only internal domain sharing. You do not want to be overly restrictive. What should you do?

  • A. Restrict the Drive sharing options for the domain to allowlisted domains.
  • B. Configure the Drive sharing options for the domain to internal only.
  • C. Turn off the Drive sharing setting from the Team dashboard.
  • D. Create a Drive DLP rule, and use the sensitive internal Project name as the detector.

Answer: B

Explanation:
By configuring the Drive sharing options for your domain to "internal only," you ensure that sensitive project data is restricted to your organization's internal users. This prevents any external sharing while allowing your team members to collaborate freely within the organization. It strikes the right balance between maintaining security and avoiding unnecessary restrictions on collaboration.


NEW QUESTION # 26
Your company has recently migrated from an on-premises email solution to Google Workspace. You have successfully added and verified the new primary domain. However, you also want to continue receiving emails sent to your former on-premises email server for a transitional period. You need to ensure that emails sent to your former domain are still delivered to your on-premises server, even though your primary email system is now Google Workspace. What should you do?

  • A. Add the former domain as a domain alias for the primary domain.
  • B. Configure MX records for the former domain to point to your on-premises email servers.
  • C. Add the former domain as a secondary domain in your Google Workspace settings and verify the domain.
  • D. Adjust the TTL (Time-to-Live) for the former domain to ensure a smooth transition.

Answer: B

Explanation:
To ensure that emails sent to your former domain are still delivered to your on-premises server during a transitional period after migrating your primary email to Google Workspace, you need to configure the MX (Mail Exchanger) records for the former domain to point to your on-premises email servers.
Here's why the other options are incorrect and why configuring MX records is the correct approach, based on the principles of email routing and domain management within Google Workspace:
A . Configure MX records for the former domain to point to your on-premises email servers.
MX records are DNS records that specify the mail servers responsible for accepting email messages on behalf of a domain. 1 By configuring the MX records for your former domain to point to the IP addresses or hostnames of your on-premises email servers, you are instructing the internet's DNS system that any email addressed to users on your former domain should be routed to those specific servers. This ensures that mail for the former domain bypasses Google Workspace and continues to be delivered to your existing infrastructure.
Associate Google Workspace Administrator topics guides or documents reference: While the exact phrasing might vary across different Google Workspace support articles and documentation, the core concept of MX records and their role in email routing is fundamental to domain setup and management. The official Google Workspace Admin Help documentation on "Set up MX records for Google Workspace" (or similar titles) explicitly explains how MX records control where email for a domain is delivered. In this scenario, you are essentially managing the MX records for a domain that is not the primary Google Workspace domain to direct its mail flow.
B . Add the former domain as a secondary domain in your Google Workspace settings and verify the domain.
Adding a domain as a secondary domain within Google Workspace allows you to create separate user accounts with email addresses on that domain, all managed within your Google Workspace organization. This would mean that Google Workspace would handle the email for the former domain, which is the opposite of what you need in this scenario (you want the emails to go to your on-premises server).
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin Help documentation on "Add a domain or domain alias" clearly distinguishes between secondary domains and domain aliases and their respective functionalities. Secondary domains are for managing separate sets of users, not for routing mail to external servers.
C . Adjust the TTL (Time-to-Live) for the former domain to ensure a smooth transition.
TTL is the amount of time a DNS record is cached by resolving name servers. While adjusting TTL can be important when making DNS changes (like switching MX records to Google Workspace), it doesn't directly control where email is delivered. Lowering the TTL before making MX changes to point to Google Workspace helps with a faster transition, but in this case, you are not pointing the former domain's mail to Google Workspace. Therefore, adjusting the TTL alone will not achieve the desired outcome.
Associate Google Workspace Administrator topics guides or documents reference: Information on TTL is typically found within the context of DNS management best practices in Google Workspace Admin Help, often related to domain verification or MX record changes to Google. It doesn't serve as a mechanism for routing mail to external, non-Google Workspace servers for a domain that isn't managed by Google Workspace for email.
D . Add the former domain as a domain alias for the primary domain.
Adding a domain as a domain alias means that emails sent to addresses on the alias domain will be delivered to the corresponding user accounts on your primary Google Workspace domain. This is useful when you want users to receive email at multiple domain names within your Google Workspace environment. It does not route email to an external, on-premises server.
Associate Google Workspace Administrator topics guides or documents reference: The Google Workspace Admin Help documentation on "Add a domain or domain alias" clearly explains the functionality of domain aliases. It emphasizes that email sent to a domain alias is received by the users on the primary domain, not an external system.
Therefore, the only way to ensure emails sent to your former domain are still delivered to your on-premises server is by configuring the MX records for that former domain to point to your on-premises mail server.


NEW QUESTION # 27
Your company provides shared Chromebook workstations for employees to access sensitive company dat a. You must configure the devices to ensure no sensitive data is stored locally and that browsing data is cleared after each use. What should you do?

  • A. Force ephemeral mode in Chrome. Disable offline access for sensitive Workspace apps like Docs, Sheets, and Drive.
  • B. Force ephemeral mode in Chrome. Allow offline access for all Workspace apps with strict expiration times.
  • C. Disable offline access for all Workspace apps. Enable incognito mode for Chrome browsing sessions.
  • D. Enable the Manage Guest Session functionality, and set the maximum user session length.

Answer: A

Explanation:
Enabling ephemeral mode in Chrome ensures that all browsing data is cleared after each session, and nothing is stored locally on the Chromebook. Disabling offline access for sensitive Workspace apps, such as Docs, Sheets, and Drive, ensures that users cannot download or store sensitive data locally. This combination provides a secure environment, preventing the retention of any sensitive data on the device after use.


NEW QUESTION # 28
Your organization's users are reporting that a large volume of legitimate emails are being misidentified as spam in Gmail. You want to troubleshoot this problem while following Google-recommended practices. What should you do?

  • A. Disable spam filtering for all users.
  • B. Advise users to individually allowlist senders.
  • C. Adjust the organization's mail content compliance settings in the Admin console.
  • D. Contact Google Workspace support and report a suspected system-wide spam filter malfunction.

Answer: D

Explanation:
If legitimate emails are being misidentified as spam across the organization, it suggests that there may be a broader issue with the spam filtering system. Contacting Google Workspace support to investigate and resolve the problem is the recommended approach. Disabling spam filtering or adjusting individual settings may not resolve the root cause and could potentially lead to further issues.


NEW QUESTION # 29
Your organization acquired a small agency. You need to create user accounts for these new employees. The new users must be able to use their new organization's email address and their email address with the sub-agency domain name. What should you do?
Your organization acquired a small agency. You need to create user accounts for these new employees. The new users must be able to use their new organization's email address and their email address with the sub-agency domain name. What should you do?

  • A. Set up the acquired agency as a user alias domain from the Manage domains page.
  • B. Set up the acquired agency as a secondary domain from the Manage domains page.
  • C. Redirect the acquired domain to Google's MX records and add the account as a "send as" address.
  • D. Set up the acquired agency as a secondary domain and swap it to the primary domain.

Answer: A

Explanation:
Setting up the acquired agency as a user alias domain allows users to have their new organization's email address while still being able to send and receive emails using their previous email address with the sub-agency domain. This approach efficiently ensures they can use both email addresses without requiring additional configuration for separate accounts.


NEW QUESTION # 30
Your company wants to enable single sign-on (SSO) for its employees to access a newly acquired cloud-based marketing platform. The marketing platform vendor has confirmed SAML 2.0 compatibility and provided the necessary metadat a. You need to streamline user access and centralize authentication through Google Workspace. What should you do?

  • A. Request an API key from the marketing platform vendor for SAML integration.
  • B. Instruct employees to log in to the marketing platform using the Sign In with Google functionality.
  • C. Create a new SAML application in the Google Admin console.
  • D. Enable two-factor authentication for all users to enhance security before implementing SSO.

Answer: C

Explanation:
To enable single sign-on (SSO) through Google Workspace, you need to create a new SAML application in the Google Admin console. This allows users to authenticate centrally through Google Workspace when accessing the marketing platform, leveraging SAML 2.0 compatibility. You can then upload the metadata provided by the marketing platform vendor to complete the integration. This approach ensures streamlined access and centralized authentication for your employees.


NEW QUESTION # 31
......

Authentic Best resources for Associate-Google-Workspace-Administrator Online Practice Exam: https://guidetorrent.dumpstorrent.com/Associate-Google-Workspace-Administrator-exam-prep.html

Related Articles

more
Google Associate-Google-Workspace-Administrator Certification Practice Exam

Copyright © 2026 DumpsTorrent NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy