Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Google Exam Google Workspace Administrator Topic 14 Question 42 Discussion

Actual exam question for Google's Google Workspace Administrator exam
Question #: 42
Topic #: 14
[All Google Workspace Administrator Questions]

Your organization has a group of users who interact with sensitive information and their accounts contain valuable files You need to protect these users from targeted online attacks What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: D

Understanding the Requirement:

The scenario involves a group of users who handle sensitive information and have valuable files in their accounts.

The goal is to protect these users from targeted online attacks.

Options Analysis:

Option A: Enable 2-Step Verification for those users and recommend they use Google Authenticator

2-Step Verification (2SV) enhances security by adding an extra layer of authentication. Google Authenticator is a reliable method, but it may not be sufficient against highly targeted attacks.

Option B: Enable 2-Step Verification for those users and recommend they use SMS codes

While SMS codes are a form of 2SV, they are considered less secure than other methods due to potential vulnerabilities like SIM swapping.

Option C: Disable password recovery for end users

Disabling password recovery can prevent unauthorized access through recovery options but does not provide active protection against targeted attacks.

Option D: Enroll all accounts for those users in the Advanced Protection Program

The Advanced Protection Program (APP) is designed specifically to protect users at high risk of targeted attacks. It includes strong measures such as requiring a physical security key for login, blocking unauthorized access attempts, and restricting access to sensitive data.

Recommended Solution:

Enrolling users in the Advanced Protection Program (APP):

Step 1: Identify High-Risk Users:

Identify users who handle sensitive information and have valuable files.

Step 2: Enroll in APP:

Go to the Google Admin console.

Navigate to the Security section and find the Advanced Protection Program.

Enroll the identified high-risk users in APP.

Step 3: Implement Security Keys:

Ensure users have security keys (e.g., Titan Security Keys) for login.

Guide users through the process of setting up and using security keys.

Step 4: User Education:

Educate users on the importance of APP and how it protects their accounts.

Provide training on recognizing phishing attempts and other security best practices.

Benefits of APP:

Enhanced Security:

APP provides the highest level of security for Google accounts, requiring security keys for authentication.

Protection Against Phishing:

Security keys are highly resistant to phishing attacks, which are common in targeted online attacks.

Limited Access:

APP restricts access to sensitive data, ensuring that only trusted apps and services can interact with the protected accounts.


Google Workspace Admin Help: Advanced Protection Program

Google Workspace Security: Advanced Protection Program

Google Security Blog: Advanced Protection Program

Contribute your Thoughts:

Tanja
2 months ago
I'd say go for option E: Wrap all the users in bubble wrap and keep them in a secure bunker. No more targeted attacks, but also no more work getting done. Problem solved!
upvoted 0 times
Andree
1 months ago
D) Enroll all accounts for those users in the Advanced Protection Program
upvoted 0 times
...
Raylene
1 months ago
Haha, bubble wrap might be a bit extreme!
upvoted 0 times
...
Samuel
1 months ago
B) Enable 2-Step Verification for those users and recommend they use SMS codes
upvoted 0 times
...
Leonor
1 months ago
A) Enable 2-Step Verification for those users and recommend they use Google Authenticator
upvoted 0 times
...
...
Gerald
2 months ago
I'm all for C. Who needs password recovery when you've got 2-step verification and the Advanced Protection Program? Hackers ain't getting anywhere near those files!
upvoted 0 times
Tyisha
1 months ago
D) Enroll all accounts for those users in the Advanced Protection Program
upvoted 0 times
...
Man
2 months ago
B) Enable 2-Step Verification for those users and recommend they use SMS codes
upvoted 0 times
...
Von
2 months ago
A) Enable 2-Step Verification for those users and recommend they use Google Authenticator
upvoted 0 times
...
...
Allene
3 months ago
I'm not sure about Google Authenticator, I think SMS codes might be easier for the users to use.
upvoted 0 times
...
Cherelle
3 months ago
Disabling password recovery? That's a bit extreme, don't you think? I'd stick with A and D - the best of both worlds.
upvoted 0 times
...
Tarra
3 months ago
I'd go with B and D. SMS codes are more convenient than Google Authenticator, and the Advanced Protection Program is a great way to lock down those valuable accounts.
upvoted 0 times
Pamella
2 months ago
D) Enroll all accounts for those users in the Advanced Protection Program
upvoted 0 times
...
Brandee
2 months ago
B) Enable 2-Step Verification for those users and recommend they use SMS codes
upvoted 0 times
...
Eladia
2 months ago
A) Enable 2-Step Verification for those users and recommend they use Google Authenticator
upvoted 0 times
...
...
Kate
3 months ago
I agree with Gabriele, Google Authenticator provides an additional layer of protection.
upvoted 0 times
...
Gabriele
3 months ago
I think we should enable 2-Step Verification with Google Authenticator for extra security.
upvoted 0 times
...
Thora
3 months ago
A and D seem like the best options to me. 2-step verification is a must, and the Advanced Protection Program provides additional security for sensitive accounts.
upvoted 0 times
Patrick
2 months ago
A and D seem like the best options to me. 2-step verification is a must, and the Advanced Protection Program provides additional security for sensitive accounts.
upvoted 0 times
...
Virgina
2 months ago
D) Enroll all accounts for those users in the Advanced Protection Program
upvoted 0 times
...
Hollis
2 months ago
A) Enable 2-Step Verification for those users and recommend they use Google Authenticator
upvoted 0 times
...
...

Save Cancel