New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Google ChromeOS Administrator Exam - Topic 3 Question 35 Discussion

Actual exam question for Google's ChromeOS Administrator exam
Question #: 35
Topic #: 3
[All ChromeOS Administrator Questions]

As your organization's administrator, you want to assign a delegated admin custom role in order to perform a limited set of ChromeOS device management tasks only for the Marketing organizational unit. What should you do?

Show Suggested Answer Hide Answer
Suggested Answer: C

To delegate ChromeOS device management specifically for the Marketing OU, create a custom role with 'Chrome Management permissions' and assign it specifically to the Marketing devices OU. This ensures that the delegated admin can manage only the devices within that specific OU without impacting the entire organization.

Verified Answer from Official Source:

The correct answer is verified from the Google Admin Console Role Management Guide, which recommends assigning roles at the appropriate OU level for granular access control.

'Assign roles to specific OUs to limit administrative control to relevant organizational units, such as the Marketing devices OU.'

By targeting the role to the Marketing devices OU, you ensure that the delegated admin does not have unnecessary access to devices in other parts of the organization, maintaining the principle of least privilege.

Objectives:

Implement delegated administration for specific OUs.

Limit administrative scope to enhance security.


Google Admin Console Role Management Guide

by Lynelle at Nov 22, 2025, 03:10 PM

Limited Time Offer

25%

Off

Get Premium ChromeOS Administrator Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Raul
9 hours ago
Wait, can you really limit it just to Marketing? Sounds cool!
upvoted 0 times
...
Arlen
6 days ago
I think D makes more sense for user management.
upvoted 0 times
...
Rosendo
11 days ago
Haha, super admin role? What is this, the Wild West? C) is clearly the way to go.
upvoted 0 times
...
Allene
16 days ago
C) is the obvious choice, can't have those marketing folks running wild with full admin powers.
upvoted 0 times
...
Willard
21 days ago
B) is the way to go, root OU is where it's at. Who needs those pesky marketing people anyway?
upvoted 0 times
...
Peggy
26 days ago
D) seems like a good option, let's give the marketing team some freedom to manage their own devices.
upvoted 0 times
...
Louvenia
1 month ago
C) is the correct answer. Gotta keep those marketing folks on a tight leash!
upvoted 0 times
...
Elsa
1 month ago
I’m leaning towards option C as well, but I wonder if there’s a reason to consider the users OU instead. It’s a bit confusing!
upvoted 0 times
...
Iesha
1 month ago
I feel like creating a super admin role is too broad for this task. I think we should focus on the custom roles, but I can't recall the exact details.
upvoted 0 times
...
Mitsue
2 months ago
I remember a practice question about custom roles, and it emphasized limiting permissions to specific OUs. So, C sounds right, but I could be mixing it up.
upvoted 0 times
...
Keneth
2 months ago
I think the key here is to create a custom role with the right permissions and then assign it to the specific OU we want to manage. Option C seems like the best approach to me.
upvoted 0 times
...
Marleen
2 months ago
I'm a bit confused - is it the Marketing devices OU or the Marketing Users OU that we need to target? The question isn't super clear on that.
upvoted 0 times
...
Rickie
2 months ago
Okay, I'm feeling pretty confident about this. We need to create a custom role with the "Chrome Management permissions" and assign it to the Marketing devices OU. That way we can limit the admin access to just that OU.
upvoted 0 times
...
Ceola
2 months ago
I think we need to assign the role specifically for the Marketing OU, so maybe option C? But I'm not completely sure.
upvoted 0 times
...
Doyle
2 months ago
C is the right choice for limited access!
upvoted 0 times
...
Verda
3 months ago
A super admin role is way too much for that task.
upvoted 0 times
...
Mitsue
3 months ago
Hmm, I'm a little unsure about this one. Do we really need to create a custom role, or can we just assign the existing "Chrome Management" permissions to the Marketing OU?
upvoted 0 times
...
Chauncey
3 months ago
I think option C is the way to go here. We need to create a custom role with the right permissions for the Marketing OU specifically, not the whole organization.
upvoted 0 times
Renea
3 months ago
I agree, option C makes the most sense.
upvoted 0 times
...
...

Save Cancel