Google Workspace Professional Administrator — Question 33

Your organization recently deployed Google Workspace. Your admin team has been very focused on configuring the core services for your environment, which has left you little time to pay attention to other areas. Your security team has just informed you that many users are leveraging unauthorized add-ons, and they are concerned about data exfiltration. The admin team wants you to cut off all add-ons access to Workspace data immediately and block all future add-ons until further notice. However, they approve of users leveraging their Workspace accounts to sign into third-party sites. What should you do?

Answer options

• A. Modify your Marketplace Settings to block users from installing any app from the Marketplace.
• B. Set all API services to “restricted access” and ensure that all connected apps have limited access.
• C. Remove all client IDs and scopes from the list of domain-wide delegation API clients.
• D. Block each connected app's access.

Correct answer: B

Explanation

The correct answer is B because setting all API services to 'restricted access' limits the permissions of connected apps, which addresses the security team's concern about unauthorized add-ons and potential data exfiltration. Option A would prevent users from installing add-ons but does not address the current unauthorized use. Option C focuses on domain-wide delegation, which is less relevant to the immediate issue. Option D lacks the broader approach of managing API service access effectively.