Google ChromeOS Administrator Exam Practice Test Instant Access

Question 1

A user reports that their Chrome device has been stolen. What should the administrator do?

AUse the Google Admin console to turn on the stolen Chromebook's webcam

BUse the Google Android Device Manager to locate the Chromebook

CSet the stolen Chromebook lo disabled mode to prevent user sign-ins

DRemotely wipe user data from the Chromebook

Answer : C

When a Chrome device is reported stolen, the administrator should immediately take action to protect the data and prevent unauthorized access. The most effective step is to disable the device through the Google Admin console. This will prevent anyone from signing in to the device, rendering it unusable.

Here's how to disable a stolen Chrome device:

Navigate to Devices: Go to Devices > Chrome > Devices.

Locate the Device: Find the stolen device using its serial number or other identifying information.

Disable the Device: Click on the device and select 'Disable.'

This will disable the device and prevent anyone from signing in, even if they try to reset the device.

Question 2

Your administration team is about to deploy a fleet of ChromeOS devices. Your users have their own peripherals, and you would like them to use what they have if possible. You also would like to let your users know what peripherals work and what peripherals do not. What should you do for your users?

ASend them all new peripherals and have your users send in their old equipment even if the old equipment works

BTell your users that every peripheral works with ChromeOS

CCreate Change Management documentation that provides them with information on how to check their current peripherals and instructions on how to get new equipment

DTell your users to try what they have and to start an IT support ticket if something isn't working right

Answer : C

The best way to handle this situation is to create Change Management documentation that clearly outlines how users can check the compatibility of their peripherals with ChromeOS. This documentation should also include instructions on how to obtain new peripherals if needed. This proactive approach reduces confusion and ensures that users know how to verify their existing equipment.

Verified Answer from Official Source:

The correct answer is verified from the Google Workspace Deployment Guide, which emphasizes proactive user communication through change management documentation during device rollouts.

'To ensure smooth transitions, provide users with detailed change management documentation, including steps to verify peripheral compatibility and obtain replacements if necessary.'

Creating clear documentation helps reduce support requests and empowers users to verify their own equipment, streamlining the deployment process.

Objectives:

Facilitate smooth ChromeOS device rollout.

Enhance user self-service with comprehensive guidance.

Google Workspace Deployment Guide

Question 3

What should an administrator do to view the number and type of ChromeOS upgrades purchased and in use by their domain?

AVerify upgrades on devices page

BCheck subscriptions in billing

CContact partner to verify

DCheck reports page for upgrades

Answer : B

To view the number and type of ChromeOS upgrades purchased and in use, administrators should check the 'Subscriptions' section in the billing area of the Google Admin console. This section provides a clear overview of the organization's ChromeOS upgrade subscriptions and usage.

Other options are incorrect because they don't directly provide information about ChromeOS upgrade subscriptions:

Option A (Verify upgrades on devices page): Shows upgrades on individual devices, not the overall purchase and usage.

Option C (Contact partner to verify): Unnecessary if the information is readily available in the Admin console.

Option D (Check reports page for upgrades): Might provide some usage data, but not the purchase details.

Question 4

Your security department wants to mitigate the risk of data loss in the case of stolen equipment. As a ChromeOS Administrator, you want to ensure that your ChromeOS devices will be able to stay enterprise-managed. What should you do?

AAdd a disabled device return instruction message.

BEnable the Autocomplete domain feature.

CForce devices to automatically re-enroll after wiping.

DAllow users into your organization to enroll new or re-enroll existing devices.

Answer : C

Enabling Forced Re-enrollment ensures that even if a device is wiped (Powerwashed), it will automatically re-enroll into the management domain once it connects to the internet. This feature is crucial for maintaining control and management over devices, particularly in cases of theft or loss.

Verified Answer from Official Source:

The correct answer is verified from the Google ChromeOS Management Best Practices, where it states that forced re-enrollment helps maintain device management post-wipe.

'When forced re-enrollment is enabled, devices that are wiped are automatically re-enrolled into your domain when connected to the internet.'

This setting ensures that the device will always be managed by the organization, regardless of whether it has been wiped, thus mitigating data loss risks.

Objectives:

Manage device security and data integrity.

Implement forced re-enrollment for ChromeOS devices.

ChromeOS Management Best Practices

Question 5

You are tasked with reducing the risk of a breach of your organization's identities. What should you do to minimize the risk?

AConnect your LDAP

BConfigure individual Google Accounts

CSet up Single Sign-On (SSO)

DSet up Client-side encryption

Answer : C

Setting up Single Sign-On (SSO) significantly reduces identity risks by centralizing authentication through a secure, verified identity provider (IdP). This method helps ensure consistent password policies, multi-factor authentication (MFA), and robust security practices. It also minimizes the risk of password reuse and phishing.

Verified Answer from Official Source:

The correct answer is verified from the Google Workspace Security Guide, which recommends implementing SSO to manage authentication securely.

'Single Sign-On (SSO) allows users to access multiple applications with a single set of credentials, reducing the risk of identity breaches by centralizing authentication.'

SSO enhances security by integrating with trusted IdPs, implementing MFA, and reducing credential exposure across multiple applications.

Objectives:

Strengthen identity and access management (IAM).

Implement secure authentication practices with SSO.

Google Workspace Security Guide

Question 6

You are asked why ChromeOS devices do not require additional antivirus software. How should you respond?

AEvery time ChromeOS updates, it automatically updates the antivirus software on the device

BEvery ChromeOS device is pre-installed with antivirus software which automatically updates during the life of the device

CAs part of a multi-layered security approach ChromeOS uses a read-only operating system which cannot be affected by viruses

DThe Admin console automatically deploys antivirus software to enrolled ChromeOS devices and is included in the Chrome Enterprise/Education Upgrade

Answer : C

ChromeOS is designed with multiple layers of security to protect against malware and viruses:

Read-only file system: Most of the operating system is stored in a read-only partition, making it difficult for malware to modify critical files.

Verified boot: Ensures the integrity of the operating system during bootup, preventing tampering by unauthorized software.

Sandboxing: Isolates different processes and websites, limiting the potential damage of any malware that manages to get through.

Automatic updates: Regularly delivers security patches and updates to address vulnerabilities.

While ChromeOS doesn't come with traditional antivirus software, its built-in security features provide robust protection against most threats.

Question 7

A user has left the organization. What should you do to maintain the device enrollment status and policies but wipe the user's data when reassigning the device?

ADelete the user

BFactory reset the device

CRemove force re-enrollment

DClear user profiles

Answer : D

Clearing user profiles from the device removes all personal data and settings while keeping the device enrolled and managed. This is the most efficient way to prepare a device for reassignment while maintaining its management status.

Verified Answer from Official Source:

The correct answer is verified from the ChromeOS Device Management Documentation, which outlines clearing user profiles as a method to reset user data without affecting device enrollment.

'To reassign a device while keeping it enrolled, clear user profiles from the device. This process wipes user data but retains management policies.'

This method is preferable because it maintains the device's enterprise management, ensuring that it remains enrolled and policy-compliant.

Objectives:

Efficiently reassign managed devices.

Retain enrollment while wiping user data.

ChromeOS Device Management Documentation

Google Professional ChromeOS Administrator Exam Practice Test