ChromeOS-Administrator Google Exam Questions and Free Practice Test

Question 7

You want to enterprise enroll a device that has existing consumer accounts. What should you do first?

A. Contact Google support to convert the device into an enterprise device

B. Delete all consumer accounts, and then follow the same steps for enrolling a brand new device

C. follow the same steps for enrolling a brand new device

D. Wipe the device

Correct Answer:B
✑ Device State: Before you can enroll a ChromeOS device into an enterprise environment, it's crucial that it's not associated with any personal Google accounts. Existing consumer accounts can interfere with the enrollment process and the application of enterprise policies.
✑ Data Backup (Optional): If the existing consumer accounts on the device contain important data, advise the users to back up their information before proceeding.
✑ Account Removal: Sign in to the device with each consumer account and remove the account from the device. This ensures a clean slate for the enterprise enrollment process.
✑ Powerwash (Optional): While not strictly necessary after removing
accounts, performing a powerwash (factory reset) is a recommended step. It further erases any remaining data or configurations linked to the consumer accounts, ensuring a completely fresh start for the device.
✑ Enrollment: Once the consumer accounts are removed (and optionally, after
powerwashing), follow the standard enterprise enrollment steps for your organization. This typically involves entering enterprise credentials at the login screen, or using a unique enrollment token, depending on your company's setup.
References:
Enroll ChromeOS devices: https://support.google.com/chrome/a/answer/1360534?hl=en This guide provides step-by-step instructions on enrolling ChromeOS devices into an
enterprise environment, including details on prerequisites and different enrollment methods.

Question 8

As a ChromeOS Administrator, you are tasked with blocking incognito mode in the ChromeOS Browser. How would you prevent users from using incognito mode?

A. Navigate to "Users & Browser Security Settings' and set the "Disallow incognito mode" policy

B. Go ,0 "User & Browser Settings' to restrict sign-in to pattern and "Disallow incognito mode "

C. From "Device Settings' change Kiosk settings to "Disallow incognito mode "

D. ln "Enrollment Settings" disable vended access and incognito mode (or content protection

Correct Answer:A
✑ Access the Google Admin Console:Sign in to the Admin console using your ChromeOS administrator credentials.
✑ Locate User Settings:Navigate to "Device Management" > "Chrome Management"
> "User & browser settings".
✑ Find Incognito Mode Policy:Within the settings, search for "Incognito mode".
✑ Disable Incognito Mode:Select the option to "Disallow incognito mode".
✑ Save Changes:Click "Save" to apply the policy to the designated users or organizational units.
References:
Set up Chrome browser on managed devices:
https://support.google.com/chrome/a/answer/3523633?hl=en

Question 9

You have been tasked with selecting a 3rd party IdP to allow logging into ChromeOS
devices. Your ChromeOS devices are displaying an "Unable to sign in to Google" message. How should you troubleshoot this?

A. Check Multi-Factor Authentication for the user account in the Google Admin console.

B. Ensure the identity provider is using an SAML compliant connection.

C. Apply the SSO certificate to the ChromeOS device.

D. Disable the SSO connection in the Google Admin console.

Correct Answer:B
The error message "Unable to sign in to Google" typically indicates an issue with the SAML configuration. ChromeOS devices require the identity provider (IdP) to be SAML-compliant to function properly. Checking the SAML connection ensures that the IdP is properly configured to authenticate users when they log in.
Verified Answer from Official Source:
The correct answer is verified based on theGoogle Workspace Identity and Access Management Guide, which specifies that ChromeOS requires a SAML-compliant IdP for successful authentication.
"When setting up Single Sign-On (SSO) for ChromeOS devices, it is essential that the
third-party IdP uses a SAML-compliant connection to ensure compatibility and prevent login errors."
If the IdP is not SAML-compliant, users will encounter login issues because ChromeOS devices rely on this protocol for authentication. Verifying and correcting the SAML configuration resolves the issue.
Objectives:
✑ Implement third-party IdP for ChromeOS authentication.
✑ Troubleshoot login issues related to SAML.
References:
Google Workspace Admin Help - SSO Setup for ChromeOS

Question 10

How do you validate Chrome policies on a managed device?

A. Go to the admin console and look up the policies

B. Download device logs

C. In the browser, go to chrome://policy to confirm that the device is receiving both user and device policy

D. In the browser, go to policy://chrome to confirm that the device is receiving both user and device policy

Correct Answer:C
To check which policies are applied to a ChromeOS device, navigate tochrome://policyin the Chrome browser. This page displays a list of all policies applied to the device, including both user-specific and device-specific policies. This is the most accurate way to verify that the device is receiving the correct policies from the Google Admin console.
Verified Answer from Official Source:
The correct answer is verified from theGoogle Chrome Enterprise Policy Guide, which recommends using thechrome://policyURL to review current policy settings on a device.
"To see the policies applied to a ChromeOS device, open Chrome and go to chrome://policy. This page lists both user and device policies that are currently enforced."
This method allows administrators to validate the application of policies directly on the device, confirming that updates from the Admin console have been successfully applied. Objectives:
✑ Validate policy application on managed ChromeOS devices.
✑ Use chrome://policy to troubleshoot policy issues.
References:
Google Chrome Enterprise Policy Guide

Question 11

What should an administrator do to view the number and type of ChromeOS upgrades purchased and in use by their domain?

A. Verify upgrades on devices page

B. Check subscriptions in billing

C. Contact partner to verify

D. Check reports page for upgrades

Correct Answer:B
To view the number and type of ChromeOS upgrades purchased and in use, administrators should check the "Subscriptions" section in the billing area of the Google Admin console. This section provides a clear overview of the organization's ChromeOS upgrade subscriptions and usage.
Other options are incorrectbecause they don't directly provide information about ChromeOS upgrade subscriptions:
✑ Option A (Verify upgrades on devices page):Shows upgrades on individual
devices, not the overall purchase and usage.
✑ Option C (Contact partner to verify):Unnecessary if the information is readily available in the Admin console.
✑ Option D (Check reports page for upgrades):Might provide some usage data, but not the purchase details.
Sign in to your Admin console:
https://support.google.com/chrome/a/answer/182076?hl=en

Question 12

Within what time frame does the ChromeOS Flex upgrade transfer program support reusing Chrome Education/Enterprise Upgrades?

A. 3 years

B. 6 months

C. 1 year

D. 2 years

Correct Answer:C
TheChromeOS Flex upgrade transfer programallows organizations to reuse Chrome Education or Enterprise Upgrades within1 yearof deprovisioning or transferring the device. This policy is designed to ensure that licenses can be reused efficiently when upgrading or replacing devices.
Verified Answer from Official Source:
The correct answer is verified from theChromeOS Flex Upgrade Transfer Policy, which states that licenses can be reused within a 1-year period following device deprovisioning.
"The ChromeOS Flex upgrade transfer program permits reuse of licenses within one year of the device being deprovisioned or transferred."
This policy helps organizations maintain cost efficiency when transitioning from older ChromeOS devices to ChromeOS Flex devices.
Objectives:
✑ Efficient license management during device transitions.
✑ Maximize the use of Chrome Education/Enterprise Upgrades.
References:
ChromeOS Flex Upgrade Transfer Policy

START ChromeOS-Administrator EXAM