Professional ChromeOS AdministratorPreview

A customer has a mission-critical workload running on ChromeOS and needs devices configured to reduce ChromeOS changes. How can an admin reduce the risk of an unexpected change in an OS update affecting the customer’s entire ChromeOS device domain while maintaining security and minimizing admin workload?

As a ChromeOS Administrator, you are tasked with blocking incognito mode in the ChromeOS Browser. How would you prevent users from using incognito mode?

As an administrator, you would like the ability to see and test upcoming changes to the Google Admin console. How would an admin get access to pre-release features and upcoming ChromeOS device management changes to the Admin console?

What are two ways customers can open a support case for ChromeOS? (Choose two.)

An admin wants to use a custom extension to install a client certificate on a ChromeOS device so that it can connect to the corporate Wi-Fi.
Which step is necessary to accomplish this?

Which management feature makes ChromeOS devices a popular choice for IT administrators in educational organizations and enterprises?

As a ChromeOS Administrator, you have been asked to enroll all of your devices into a specific device OU using Zero-Touch Enrollment (ZTE). What are the next steps? (Choose two.)

What is a feature of Verified Boot?

The security department has been informed that a ChromeOS device was stolen out of an employee’s car. What should you do in the Admin console to ensure the device is rendered inoperable while still maintaining management of the device?

How would you deploy your "Terms of Services" page to all managed ChromeOS devices?

You have a number of applications that you rely upon. You want to ensure that your applications continue to run smoothly with each new version of Chrome. What should you do?

A customer deploys a large number of ChromeOS devices and would like to start the process of turning on Zero-Touch Enrollment (ZTE) to streamline their deployment process. As an administrator, what would be required to enable ZTE?

What should an administrator do to view the number and type of ChromeOS upgrades purchased and in use by their domain?

Which setting is required to restrict Chrome Remote Desktop use to only accounts on your domain?

You want users to sign in to ChromeOS devices via SAML Single Sign-On and be able to access websites and cloud services that rely on the same identity provider without having to re-enter credentials. How should you configure SAML?

An organization was recently hacked through an admin's choice of an operating system. Leadership decides to move to Chromebooks for their security.
While the organization waits for Chromebooks to be delivered, what will allow them to continue using their existing devices securely?

You want to enterprise enroll a device that has existing consumer accounts. What should you do first?

Your network administrator wants to block Google services traffic. What is the result?

Your customer is deploying ChromeOS devices in their environment and requires those ChromeOS devices to adhere to web filtering via TLS (or SSL) inspection. What recommendations should you make to your customer in setting up the requirements for ChromeOS devices?

Your security team asks you to deploy on ChromeOS only a specific Android app for your security department. As a ChromeOS Administrator, you need to find a way to block all other Android apps except the one that you need. How are you going to proceed?

Which remote command is required to remove a device from management policy updates?

To allow remote users to securely connect to an internal network, the organization you’re supporting is using a VPN. The organization would like you to configure the ChromeOS devices so that the Android VPN clients deployed are automatically configured with the correct hostname. How should you configure this in the Admin Console according to Google best practice?

You need to get to the enterprise enrollment screen. What should you do?

You are using a third-party service for SSO. Users are confused when signing onto a Chrome device because they are asked for Google account details before being redirected to the sign-in screen for your SSO provider. Which setting must be changed so managed devices open the SSO provider login page by default?