Free Google-Workspace-Administrator Actual Exam Questions - Question 10 Discussion
employee can only be signed in to by that employee and no one else.
What two things should you do? (Choose two.)
A/E? Disabling guest and public sessions cuts off quick access, and restricting sign-in to the employee’s email makes sure no one else can log on. Seems like the cleanest combo to lock down the device.
A and E, Guest Mode off plus restricting sign-in to just that user.
Maybe D and E. Disabling Multiple Sign In Access (D) to just that employee's email stops others from signing in alongside or instead of them, which seems key here. Then E makes sure the device itself restricts sign-ins to only that email. A is good but I think D adds a tighter control at the user policy level, preventing multiple users signing in on the same device altogether. Not sure if C really helps since 2FA is about verifying identity, not restricting who can sign in on that device specifically.
It’s definitely A and E for me. Disabling Guest Mode and Public Sessions blocks any easy way for someone else to jump on the device. Then restricting sign-in to just that employee’s email ensures no other accounts can get in. The other options seem more about additional security layers or multi-sign-ins rather than locking down the device to one user only. So, focusing on those two device policies makes the most sense here.
That makes sense, I agree with A and E for locking the device to one user.
A/E looks right, guest mode must be off and restrict sign-ins to one user.