Google Professional ChromeOS Administrator Exam Practice Test

Page: 1 / 14
Total 117 questions
Question 1

A customer wants to deploy kiosks in approximately 1000 retail stores. The customer has decided they would like to use ChromeOS devices for this deployment. The customer requires the ability to run a managed Chrome Browser along with a custom-developed Chrome application. How would an administrator satisfy the customer requirements?



Answer : D

To deploy ChromeOS devices as kiosks, the best approach is to implement Kiosk Mode policies. Kiosk Mode allows a ChromeOS device to run a single app (like a custom-developed Chrome application) in full-screen mode without user interference. This setup is ideal for retail environments where users should interact only with the kiosk application.

Verified Answer from Official Source:

The correct answer is verified from the Google ChromeOS Kiosk Mode Configuration Guide, which states that Kiosk Mode is specifically designed for running dedicated apps in a controlled environment.

'Kiosk Mode enables ChromeOS devices to automatically start in a full-screen application, suitable for customer interactions and single-use applications.'

Kiosk Mode ensures that the device remains dedicated to the application, preventing users from accessing other system features or settings, thus maintaining security and user focus.

Objectives:

Deploy ChromeOS devices as kiosks.

Run custom applications in a managed, locked-down environment.


Google ChromeOS Kiosk Mode Configuration Guide

Question 2

You are using a third-party service for SSO. Users are confused when signing onto a Chrome device because they are asked for Google account details before being redirected to the sign-In screen for your SSO provider Which setting must be changed so managed devices open the SSO provider login page by default?



Answer : D

The Single sign-on IdP redirection setting controls whether managed devices directly open the login page of the third-party SSO provider (Identity Provider) or first prompt for Google account credentials. By enabling this setting, you streamline the login process for users and eliminate the confusion caused by the extra Google account prompt.

Option A is incorrect because it controls the frequency of re-authentication for SAML SSO, not the initial login page.

Option B is incorrect because it relates to password synchronization between Google and the IdP, not the login page redirection.

Option C is incorrect because it deals with how cookies are handled for SSO, not the login page redirection.


Question 3

Which site isolation policy will enable site isolation for your entire organization?



Answer : A

The SitePerProcess policy enables site isolation for the entire organization. This means that each website opened in Chrome will run in its own dedicated process, improving security and stability by isolating potential vulnerabilities and preventing one compromised site from affecting others.

Option B (IsolateOrigins) and Option D (SiteOrigins) are not valid policy names.

Option C (IsolatePerProcess) is close but not the exact name of the policy.


Site Isolation in Google Chrome: https://www.chromium.org/Home/chromium-security/site-isolation/

Question 4

Within what time frame does the ChromeOS Flex upgrade transfer program support reusing Chrome Education/Enterprise Upgrades?



Answer : C

The ChromeOS Flex upgrade transfer program allows organizations to reuse Chrome Education or Enterprise Upgrades within 1 year of deprovisioning or transferring the device. This policy is designed to ensure that licenses can be reused efficiently when upgrading or replacing devices.

Verified Answer from Official Source:

The correct answer is verified from the ChromeOS Flex Upgrade Transfer Policy, which states that licenses can be reused within a 1-year period following device deprovisioning.

'The ChromeOS Flex upgrade transfer program permits reuse of licenses within one year of the device being deprovisioned or transferred.'

This policy helps organizations maintain cost efficiency when transitioning from older ChromeOS devices to ChromeOS Flex devices.

Objectives:

Efficient license management during device transitions.

Maximize the use of Chrome Education/Enterprise Upgrades.


ChromeOS Flex Upgrade Transfer Policy

Question 5

A school wants all new Chromebooks to be enrolled through zero-touch enrollment (ZTE) in their parent organization unit. An admin needs to create tokens.

Where will the admin go to generate the enrollment tokens for Chromebooks?



Answer : A

To set up Zero-Touch Enrollment (ZTE), an administrator must go to Devices > Chrome > Enroll within the Admin console. This is where they can generate the necessary enrollment tokens for automatic enrollment of devices when they first connect to the Internet.

Verified Answer from Official Source:

The correct answer is verified from the Google ChromeOS Zero-Touch Enrollment Guide, which specifies the steps to generate enrollment tokens.

'To create Zero-Touch Enrollment tokens, go to Devices > Chrome > Enroll in the Admin console.'

Zero-Touch Enrollment simplifies the setup process for educational institutions by automatically enrolling devices into management without manual intervention.

Objectives:

Automate device enrollment using Zero-Touch.

Simplify ChromeOS deployment in educational environments.


Google ChromeOS Zero-Touch Enrollment Guide

Question 6

You have been asked to explain the built-in security features of ChromeOS. What i3 the benefit of having verified boot enabled on a ChromeOS device?



Answer : A

Verified Boot in ChromeOS is a security mechanism that checks the integrity of the operating system during startup. If it detects any unauthorized modifications or compromises, it can initiate recovery processes to restore the OS to a known good state, ensuring that the device boots up with a secure and untampered operating system.

Option B is incorrect because background updates are a separate feature.

Option C is incorrect because dual-boot is not related to Verified Boot.

Option D is incorrect because Verified Boot doesn't install a backup OS but verifies the existing one.


Verified Boot: https://www.chromium.org/chromium-os/chromiumos-design-docs/verified-boot/

Question 7

An admin wants to use a custom extension to install a client certificate on a ChromeOS device so that it can connect to the corporate WI-FI.

Which step Is necessary to accomplish this?



Answer : C

To install a client certificate on a ChromeOS device for corporate Wi-Fi connectivity, it's necessary to force-install the custom extension containing the certificate. This ensures the extension is installed and activated on the device, enabling it to use the certificate for authentication. Here's how it works:

Custom Extension: The admin creates or obtains a custom extension that includes the client certificate.

Force-Installation: Using the Google Admin console, the admin configures a policy to force-install the extension on ChromeOS devices within the organization.

Device Activation: Once the device receives the policy, the extension is automatically installed and activated, even if the user doesn't manually add it.

Wi-Fi Authentication: The installed extension allows the device to use the client certificate for authentication when connecting to the corporate Wi-Fi network.

Option A is incorrect because guest mode installations are not persistent and won't apply the certificate to the device's Wi-Fi settings.

Option B is incorrect because distributing through the Chrome Web Store is not necessary for a custom extension intended for internal use.

Option D is incorrect because while the certificate encoding is important, it's not the primary step for enabling Wi-Fi authentication.


About ChromeOS device management: https://support.google.com/chrome/a/answer/1289314?hl=en

pen_spark

Page:    1 / 14   
Total 117 questions