Google Exam Google Workspace Administrator Topic 8 Question 9 Discussion

Actual exam question for Google's Google Workspace Administrator exam

Question #: 9
Topic #: 8

[All Google Workspace Administrator Questions]

Your organization has just appointed a new CISO. They have signed up to receive admin alerts and just received an alert for a suspicious login attempt. They are trying to determine how frequently suspicious login attempts occur within the organization. The CISO has asked you to provide details for each user account that has had a suspicious login attempt in the past year and the number of times it occurred for each account.

What action should you take to meet these requirements?

AUse the login audit report to export all suspicious login details for analysis.

BCreate a custom dashboard with the security investigation tool showing suspicious logins.

CUse the account activity report to export all suspicious login details for analysis.

DCreate a custom query in BigQuery showing all suspicious login details.

Show Suggested Answer

Suggested Answer: A

Login audit log Track user sign-in activity You can use the Login audit log to track user sign-ins to your domain. You can review all sign-ins from web browsers. If a user signs in from an email client or a non-browser application, you can only review reports of suspicious attempts. Forward log event data to the Google Cloud Platform You can opt in to share the log event data with Google Cloud Platform. If you turn on sharing, data is forwarded to Cloud Logging, where you can query and view your logs, and control how you route and store your logs https://support.google.com/a/answer/4580120?hl=en

by Sheron at Oct 28, 2022, 08:43 PM

Limited Time Offer

25%

Off

Get Premium Google Workspace Administrator Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!