diff --git a/devices/hololens/index.md b/devices/hololens/index.md
index 3320efb458..abb50c076e 100644
--- a/devices/hololens/index.md
+++ b/devices/hololens/index.md
@@ -18,7 +18,7 @@ ms.date: 07/14/2019
Now, with the introduction of HoloLens 2, every device provides commercial ready management enhanced by the reliability, security, and scalability of cloud and AI services from Microsoft.
- |
+ |
## Guides in this section
diff --git a/windows/client-management/mdm/configuration-service-provider-reference.md b/windows/client-management/mdm/configuration-service-provider-reference.md
index a282ba8384..6889f31898 100644
--- a/windows/client-management/mdm/configuration-service-provider-reference.md
+++ b/windows/client-management/mdm/configuration-service-provider-reference.md
@@ -23,7 +23,7 @@ For information about the bridge WMI provider classes that map to these CSPs, se
Additional lists:
-- [List of CSPs supported in Windows Holographic](#hololens)
+- [List of CSPs supported in HoloLens devices](#hololens)
- [List of CSPs supported in Microsoft Surface Hub](#surfacehubcspsupport)
- [List of CSPs supported in Windows 10 IoT Core](#iotcoresupport)
@@ -2709,37 +2709,40 @@ You can download the DDF files for various CSPs from the links below:
- [Download all the DDF files for Windows 10, version 1607](https://download.microsoft.com/download/2/3/E/23E27D6B-6E23-4833-B143-915EDA3BDD44/Windows10_1607_DDF.zip)
-## CSPs supported in Windows Holographic
+## CSPs supported in HoloLens devices
-The following list shows the configuration service providers supported in Windows Holographic editions.
+The following list shows the CSPs supported in HoloLens devices:
-| Configuration service provider | Windows Holographic edition | Windows Holographic for Business edition |
-|--------|--------|------------|
-| [AccountManagement CSP](accountmanagement-csp.md) |  | 4 |
-| [Accounts CSP](accounts-csp.md) |  | 
-| [AppLocker CSP](applocker-csp.md) |  |  |
-| [AssignedAccess CSP](assignedaccess-csp.md) |  | 4 |
-| [CertificateStore CSP](certificatestore-csp.md) |  | |
-| [ClientCertificateInstall CSP](clientcertificateinstall-csp.md) |  |  |
-| [DevDetail CSP](devdetail-csp.md) |  |  |
-| [DeveloperSetup CSP](developersetup-csp.md) |  | 2 (runtime provisioning via provisioning packages only; no MDM support)|
-| [DeviceStatus CSP](devicestatus-csp.md) |  |  |
-| [DevInfo CSP](devinfo-csp.md) |  |  |
-| [DiagnosticLog CSP](diagnosticlog-csp.md) |  |  |
-| [DMAcc CSP](dmacc-csp.md) |  |  |
-| [DMClient CSP](dmclient-csp.md) |  |  |
-| [EnterpriseModernAppManagement CSP](enterprisemodernappmanagement-csp.md) |  |  |
-| [NodeCache CSP](nodecache-csp.md) |  |  |
-[PassportForWork CSP](passportforwork-csp.md) |  |  |
-| [Policy CSP](policy-configuration-service-provider.md) |  |  |
-| [RemoteFind CSP](remotefind-csp.md) |  | 4 |
-| [RemoteWipe CSP](remotewipe-csp.md) |  | 4 |
-| [RootCATrustedCertificates CSP](rootcacertificates-csp.md) |  |  |
-| [Update CSP](update-csp.md) |  |  |
-| [VPN2 CSP](vpnv2-csp.md) |  |  |
-| [WiFi CSP](wifi-csp.md) |  |  |
-| [WindowsLicensing CSP](windowslicensing-csp.md) |  |  |
+| Configuration service provider | HoloLens (1st gen) Development Edition | HoloLens (1st gen) Commercial Suite | HoloLens 2 |
+|------|--------|--------|--------|
+| [AccountManagement CSP](accountmanagement-csp.md) |  | 4 | 
+| [Accounts CSP](accounts-csp.md) |  |  |  |
+| [ApplicationControl CSP](applicationcontrol-csp.md) |  |  |  |
+| [AppLocker CSP](applocker-csp.md) |  |  |  |
+| [AssignedAccess CSP](assignedaccess-csp.md) |  | 4 |  |
+| [CertificateStore CSP](certificatestore-csp.md) |  | |  |
+| [ClientCertificateInstall CSP](clientcertificateinstall-csp.md) |  |  |  |
+| [DevDetail CSP](devdetail-csp.md) |  |  |  |
+| [DeveloperSetup CSP](developersetup-csp.md) |  | 2 (runtime provisioning via provisioning packages only; no MDM support)|  |
+| [DeviceManageability CSP](devicemanageability-csp.md) |  |  |  |
+| [DeviceStatus CSP](devicestatus-csp.md) |  |  |  |
+| [DevInfo CSP](devinfo-csp.md) |  |  |  |
+| [DiagnosticLog CSP](diagnosticlog-csp.md) |  |  |  |
+| [DMAcc CSP](dmacc-csp.md) |  |  |  |
+| [DMClient CSP](dmclient-csp.md) |  |  |  |
+| [EnterpriseModernAppManagement CSP](enterprisemodernappmanagement-csp.md) |  |  |  |
+| [NetworkProxy CSP](networkproxy-csp.md) |  |  |  |
+| [NodeCache CSP](nodecache-csp.md) |  |  |  |
+[PassportForWork CSP](passportforwork-csp.md) |  |  |  |
+| [Policy CSP](policy-configuration-service-provider.md) |  |  |  |
+| [RemoteFind CSP](remotefind-csp.md) |  | 4 |  |
+| [RemoteWipe CSP](remotewipe-csp.md) |  | 4 |  |
+| [RootCATrustedCertificates CSP](rootcacertificates-csp.md) |  |  |  |
+| [Update CSP](update-csp.md) |  |  |  |
+| [VPNv2 CSP](vpnv2-csp.md) |  |  |  |
+| [WiFi CSP](wifi-csp.md) |  |  |  |
+| [WindowsLicensing CSP](windowslicensing-csp.md) |  |  |  |
## CSPs supported in Microsoft Surface Hub
diff --git a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
index 9bdbebc8e4..34d2a618b4 100644
--- a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
+++ b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
@@ -1891,6 +1891,7 @@ How do I turn if off? | The service can be stopped from the "Services" console o
|New or updated topic | Description|
|--- | ---|
+|[Policy CSP](policy-configuration-service-provider.md)|Added the following list:
Policies supported by HoloLens 2|
|[ApplicationControl CSP](applicationcontrol-csp.md)|Added new CSP in Windows 10, version 1903.|
|[Policy CSP - Privacy](policy-csp-privacy.md)|Added the following new policies:
LetAppsActivateWithVoice, LetAppsActivateWithVoiceAboveLock|
|Create a custom configuration service provider|Deleted the following documents from the CSP reference because extensibility via CSPs is not currently supported:
Create a custom configuration service provider
Design a custom configuration service provider
IConfigServiceProvider2
IConfigServiceProvider2::ConfigManagerNotification
IConfigServiceProvider2::GetNode
ICSPNode
ICSPNode::Add
ICSPNode::Clear
ICSPNode::Copy
ICSPNode::DeleteChild
ICSPNode::DeleteProperty
ICSPNode::Execute
ICSPNode::GetChildNodeNames
ICSPNode::GetProperty
ICSPNode::GetPropertyIdentifiers
ICSPNode::GetValue
ICSPNode::Move
ICSPNode::SetProperty
ICSPNode::SetValue
ICSPNodeTransactioning
ICSPValidate
Samples for writing a custom configuration service provider|
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 39b8a79e8c..05ec05440b 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -9,7 +9,7 @@ ms.topic: article
ms.prod: w10
ms.technology: windows
author: manikadhiman
-ms.date: 07/09/2019
+ms.date: 07/18/2019
---
# Policy CSP
@@ -2563,6 +2563,18 @@ The following diagram shows the Policy configuration service provider in tree fo
Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception
+
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps
+
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps
+
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps
+
Privacy/LetAppsAccessCalendar
@@ -5163,8 +5175,75 @@ The following diagram shows the Policy configuration service provider in tree fo
- [WirelessDisplay/AllowProjectionToPC](./policy-csp-wirelessdisplay.md#wirelessdisplay-allowprojectiontopc)
- [WirelessDisplay/RequirePinForPairing](./policy-csp-wirelessdisplay.md#wirelessdisplay-requirepinforpairing)
+## Policies supported by HoloLens 2
+
+- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection)
+- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps)
+- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate)
+- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock)
+- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect)
+- [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname)
+- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode)
+- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename)
+- [Browser/AllowAutofill](#browser-allowautofill)
+- [Browser/AllowCookies](#browser-allowcookies)
+- [Browser/AllowDoNotTrack](#browser-allowdonottrack)
+- [Browser/AllowPasswordManager](#browser-allowpasswordmanager)
+- [Browser/AllowPopups](#browser-allowpopups)
+- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar)
+- [Browser/AllowSmartScreen](#browser-allowsmartscreen)
+- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth)
+- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection)
+- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword)
+- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword)
+- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired)
+- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled)
+- [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration)
+- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory)
+- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts)
+- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock)
+- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters)
+- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength)
+- [Experience/AllowCortana](#experience-allowcortana)
+- [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment)
+- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization)
+- [Privacy/LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo)
+- [Privacy/LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps)
+- [Privacy/LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps)
+- [Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps)
+- [Privacy/LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception)
+- [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps)
+- [Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps)
+- [Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps)
+- [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera)
+- [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation)
+- [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone)
+- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation)
+- [Security/RequireDeviceEncryption](#security-requiredeviceencryption)
+- [Settings/AllowDateTime](#settings-allowdatetime)
+- [Settings/AllowVPN](#settings-allowvpn)
+- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate)
+- [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline)
+- [System/AllowLocation](#system-allowlocation)
+- [System/AllowStorageCard](#system-allowstoragecard)
+- [System/AllowTelemetry](#system-allowtelemetry)
+- [Update/AllowAutoUpdate](#update-allowautoupdate)
+- [Update/AllowUpdateService](#update-allowupdateservice)
+- [Update/BranchReadinessLevel](#update-branchreadinesslevel)
+- [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays)
+- [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays)
+- [Update/ManagePreviewBuilds](#update-managepreviewbuilds)
+- [Update/PauseFeatureUpdates](#update-pausefeatureupdates)
+- [Update/PauseQualityUpdates](#update-pausequalityupdates)
+- [Update/ScheduledInstallDay](#update-scheduledinstallday)
+- [Update/ScheduledInstallTime](#update-scheduledinstalltime)
+- [Update/UpdateServiceUrl](#update-updateserviceurl)
+- [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration)
+
+
+
-## Policies supported by Windows Holographic for Business
+## Policies supported by HoloLens (1st gen) Commercial Suite
- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection)
- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps)
@@ -5213,7 +5292,7 @@ The following diagram shows the Policy configuration service provider in tree fo
-## Policies supported by Windows Holographic
+## Policies supported by HoloLens (1st gen) Development Edition
- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection)
- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate)
diff --git a/windows/client-management/mdm/policy-csp-accounts.md b/windows/client-management/mdm/policy-csp-accounts.md
index 25e17cdd51..871c434dca 100644
--- a/windows/client-management/mdm/policy-csp-accounts.md
+++ b/windows/client-management/mdm/policy-csp-accounts.md
@@ -197,18 +197,24 @@ The following list shows the supported values:
-
-## Accounts policies supported by Windows Holographic
+
+## Accounts policies supported by HoloLens 2
- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection)
-
+
-## Accounts policies supported by Windows Holographic for Business
+## Accounts policies supported by HoloLens (1st gen) Commercial Suite
- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection)
+
+## Accounts policies supported by HoloLens (1st gen) Development Edition
+
+- [Accounts/AllowMicrosoftAccountConnection](#accounts-allowmicrosoftaccountconnection)
+
+
Footnotes:
diff --git a/windows/client-management/mdm/policy-csp-applicationmanagement.md b/windows/client-management/mdm/policy-csp-applicationmanagement.md
index 4327691dee..5ce6a56526 100644
--- a/windows/client-management/mdm/policy-csp-applicationmanagement.md
+++ b/windows/client-management/mdm/policy-csp-applicationmanagement.md
@@ -1042,22 +1042,32 @@ XSD:
-
-## ApplicationManagement policies supported by Windows Holographic
+
+## ApplicationManagement policies supported by HoloLens 2
+
+- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps)
- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate)
- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock)
-- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps)
-
+
+
-## ApplicationManagement policies supported by Windows Holographic for Business
+## ApplicationManagement policies supported by HoloLens (ist gen) Commercial Suite
+- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps)
- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate)
- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock)
-- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps)
+
+## ApplicationManagement policies supported by HoloLens (1st gen) Development Edition
+
+- [ApplicationManagement/AllowAllTrustedApps](#applicationmanagement-allowalltrustedapps)
+- [ApplicationManagement/AllowAppStoreAutoUpdate](#applicationmanagement-allowappstoreautoupdate)
+- [ApplicationManagement/AllowDeveloperUnlock](#applicationmanagement-allowdeveloperunlock)
+
+
Footnotes:
@@ -1067,4 +1077,4 @@ Footnotes:
- 3 - Added in Windows 10, version 1709.
- 4 - Added in Windows 10, version 1803.
- 5 - Added in Windows 10, version 1809.
-- 6 - Added in the next major release of Windows 10.
+- 6 - Added in Windows 10, version 1903.
diff --git a/windows/client-management/mdm/policy-csp-authentication.md b/windows/client-management/mdm/policy-csp-authentication.md
index 3b5cfe28d0..6ce830a730 100644
--- a/windows/client-management/mdm/policy-csp-authentication.md
+++ b/windows/client-management/mdm/policy-csp-authentication.md
@@ -501,18 +501,28 @@ Value type is string.
-
-## Authentication policies supported by Windows Holographic
+
+
+## Authentication policies supported by HoloLens 2
- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect)
-
+- [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname)
+
-## Authentication policies supported by Windows Holographic for Business
+## Authentication policies supported by HoloLens (1st gen) Commercial Suite
- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect)
- [Authentication/PreferredAadTenantDomainName](#authentication-preferredaadtenantdomainname)
+
+
+## Authentication policies supported by HoloLens (1st gen) Development Edition
+
+- [Authentication/AllowFastReconnect](#authentication-allowfastreconnect)
+
+
+
Footnotes:
diff --git a/windows/client-management/mdm/policy-csp-bluetooth.md b/windows/client-management/mdm/policy-csp-bluetooth.md
index 883cf16ab7..2475975ca6 100644
--- a/windows/client-management/mdm/policy-csp-bluetooth.md
+++ b/windows/client-management/mdm/policy-csp-bluetooth.md
@@ -344,30 +344,31 @@ The default value is an empty string. For more information, see [ServicesAllowed
+
+## Bluetooth policies supported by HoloLens 2
+
+- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode)
+- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename)
+
+
+
+## Bluetooth policies supported by HoloLens (1st gen) Commercial Suite
+
+- [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising)
+- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode)
+- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename)
+
+
-## Bluetooth policies supported by Windows Holographic
+## Bluetooth policies supported by HoloLens (1st gen) Development Edition
- [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising)
- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode)
- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename)
-
-## Bluetooth policies supported by Windows Holographic for Business
-
-- [Bluetooth/AllowAdvertising](#bluetooth-allowadvertising)
-- [Bluetooth/AllowDiscoverableMode](#bluetooth-allowdiscoverablemode)
-- [Bluetooth/LocalDeviceName](#bluetooth-localdevicename)
-
-Footnotes:
-
-- 1 - Added in Windows 10, version 1607.
-- 2 - Added in Windows 10, version 1703.
-- 3 - Added in Windows 10, version 1709.
-- 4 - Added in Windows 10, version 1803.
-- 5 - Added in Windows 10, version 1809.
## ServicesAllowedList usage guide
@@ -481,3 +482,13 @@ Disabling file transfer shall have the following effects
- Fsquirt shall not allow receiving of files
- Fsquirt shall display error message informing user of policy preventing file transfer
- 3rd-party apps shall not be permitted to send or receive files using MSFT Bluetooth API
+
+
+Footnotes:
+
+- 1 - Added in Windows 10, version 1607.
+- 2 - Added in Windows 10, version 1703.
+- 3 - Added in Windows 10, version 1709.
+- 4 - Added in Windows 10, version 1803.
+- 5 - Added in Windows 10, version 1809.
+- 6 - Added in Windows 10, version 1903.
\ No newline at end of file
diff --git a/windows/client-management/mdm/policy-csp-browser.md b/windows/client-management/mdm/policy-csp-browser.md
index aad7447b3e..6553368bef 100644
--- a/windows/client-management/mdm/policy-csp-browser.md
+++ b/windows/client-management/mdm/policy-csp-browser.md
@@ -13,10 +13,6 @@ manager: dansimp
# Policy CSP - Browser
-> [!WARNING]
-> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
-
-
@@ -3968,28 +3964,40 @@ Most restricted value: 0
-
-## Browser policies supported by Windows Holographic
-
-- [Browser/AllowDoNotTrack](#browser-allowdonottrack)
-- [Browser/AllowPasswordManager](#browser-allowpasswordmanager)
-- [Browser/AllowPopups](#browser-allowpopups)
-- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar)
-- [Browser/AllowSmartScreen](#browser-allowsmartscreen)
-- [Browser/AllowCookies](#browser-allowcookies)
-
-
-
-## Browser policies supported by Windows Holographic for Business
+
+## Browser policies supported by HoloLens 2
- [Browser/AllowAutofill](#browser-allowautofill)
+- [Browser/AllowCookies](#browser-allowcookies)
- [Browser/AllowDoNotTrack](#browser-allowdonottrack)
- [Browser/AllowPasswordManager](#browser-allowpasswordmanager)
- [Browser/AllowPopups](#browser-allowpopups)
- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar)
- [Browser/AllowSmartScreen](#browser-allowsmartscreen)
+
+
+
+## Browser policies supported by HoloLens (1st gen) Commercial Suite
+
+- [Browser/AllowAutofill](#browser-allowautofill)
- [Browser/AllowCookies](#browser-allowcookies)
-
+- [Browser/AllowDoNotTrack](#browser-allowdonottrack)
+- [Browser/AllowPasswordManager](#browser-allowpasswordmanager)
+- [Browser/AllowPopups](#browser-allowpopups)
+- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar)
+- [Browser/AllowSmartScreen](#browser-allowsmartscreen)
+
+
+
+## Browser policies supported by HoloLens (1st gen) Development Edition
+
+- [Browser/AllowCookies](#browser-allowcookies)
+- [Browser/AllowDoNotTrack](#browser-allowdonottrack)
+- [Browser/AllowPasswordManager](#browser-allowpasswordmanager)
+- [Browser/AllowPopups](#browser-allowpopups)
+- [Browser/AllowSearchSuggestionsinAddressBar](#browser-allowsearchsuggestionsinaddressbar)
+- [Browser/AllowSmartScreen](#browser-allowsmartscreen)
+
@@ -4000,3 +4008,4 @@ Footnotes:
- 3 - Added in Windows 10, version 1709.
- 4 - Added in Windows 10, version 1803.
- 5 - Added in Windows 10, version 1809.
+- 6 - Added in Windows 10, version 1903.
diff --git a/windows/client-management/mdm/policy-csp-connectivity.md b/windows/client-management/mdm/policy-csp-connectivity.md
index f1fc3f9445..d86d214339 100644
--- a/windows/client-management/mdm/policy-csp-connectivity.md
+++ b/windows/client-management/mdm/policy-csp-connectivity.md
@@ -966,20 +966,27 @@ ADMX Info:
-
-## Connectivity policies supported by Windows Holographic
+
+## Connectivity policies supported by HoloLens 2
- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth)
- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection)
-
+
-## Connectivity policies supported by Windows Holographic for Business
+## Connectivity policies supported by HoloLens (1st gen) Commercial Suite
- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth)
- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection)
+
+## Connectivity policies supported by HoloLens (1st gen) Development Edition
+
+- [Connectivity/AllowBluetooth](#connectivity-allowbluetooth)
+- [Connectivity/AllowUSBConnection](#connectivity-allowusbconnection)
+
+
Footnotes:
@@ -989,6 +996,4 @@ Footnotes:
- 3 - Added in Windows 10, version 1709.
- 4 - Added in Windows 10, version 1803.
- 5 - Added in Windows 10, version 1809.
-
-
-
+- 6 - Added in Windows 10, version 1903.
\ No newline at end of file
diff --git a/windows/client-management/mdm/policy-csp-devicelock.md b/windows/client-management/mdm/policy-csp-devicelock.md
index 78f0468640..524745b05b 100644
--- a/windows/client-management/mdm/policy-csp-devicelock.md
+++ b/windows/client-management/mdm/policy-csp-devicelock.md
@@ -1210,34 +1210,51 @@ Most restricted value is 0.
-
-## DeviceLock policies supported by Windows Holographic
+
+## DeviceLock policies supported by HoloLens 2
+- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword)
- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword)
+- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired)
+- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled)
+- [DeviceLock/DevicePasswordExpiration](#devicelock-devicepasswordexpiration)
+- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory)
- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts)
- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock)
-- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength)
-- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory)
-- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired)
- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters)
-- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword)
-- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled)
-
+- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength)
+
+
-## DeviceLock policies supported by Windows Holographic for Business
+## DeviceLock policies supported by HoloLens (1st gen) Commercial Suite
+- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword)
- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword)
+- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired)
+- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled)
+- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory)
- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts)
- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock)
-- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength)
-- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory)
-- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired)
- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters)
-- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword)
-- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled)
+- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength)
+
+## DeviceLock policies supported by HoloLens (1st gen) Development Edition
+
+- [DeviceLock/AllowIdleReturnWithoutPassword](#devicelock-allowidlereturnwithoutpassword)
+- [DeviceLock/AllowSimpleDevicePassword](#devicelock-allowsimpledevicepassword)
+- [DeviceLock/AlphanumericDevicePasswordRequired](#devicelock-alphanumericdevicepasswordrequired)
+- [DeviceLock/DevicePasswordEnabled](#devicelock-devicepasswordenabled)
+- [DeviceLock/DevicePasswordHistory](#devicelock-devicepasswordhistory)
+- [DeviceLock/MaxDevicePasswordFailedAttempts](#devicelock-maxdevicepasswordfailedattempts)
+- [DeviceLock/MaxInactivityTimeDeviceLock](#devicelock-maxinactivitytimedevicelock)
+- [DeviceLock/MinDevicePasswordComplexCharacters](#devicelock-mindevicepasswordcomplexcharacters)
+- [DeviceLock/MinDevicePasswordLength](#devicelock-mindevicepasswordlength)
+
+
+
Footnotes:
@@ -1247,3 +1264,4 @@ Footnotes:
- 3 - Added in Windows 10, version 1709.
- 4 - Added in Windows 10, version 1803.
- 5 - Added in Windows 10, version 1809.
+- 6 - Added in Windows 10, version 1903.
diff --git a/windows/client-management/mdm/policy-csp-experience.md b/windows/client-management/mdm/policy-csp-experience.md
index f0e081e3ae..7e61e7696e 100644
--- a/windows/client-management/mdm/policy-csp-experience.md
+++ b/windows/client-management/mdm/policy-csp-experience.md
@@ -1642,18 +1642,25 @@ Supported values:
-
-## Experience policies supported by Windows Holographic
+
+## Experience policies supported by HoloLens 2
- [Experience/AllowCortana](#experience-allowcortana)
-
+- [Experience/AllowManualMDMUnenrollment](#experience-allowmanualmdmunenrollment)
+
-## Experience policies supported by Windows Holographic for Business
+## Experience policies supported by HoloLens (1st gen) Commercial Suite
- [Experience/AllowCortana](#experience-allowcortana)
+
+## Experience policies supported by HoloLens (1st gen) Development Edition
+
+- [Experience/AllowCortana](#experience-allowcortana)
+
+
Footnotes:
diff --git a/windows/client-management/mdm/policy-csp-privacy.md b/windows/client-management/mdm/policy-csp-privacy.md
index c7585eb14e..65dea5a83d 100644
--- a/windows/client-management/mdm/policy-csp-privacy.md
+++ b/windows/client-management/mdm/policy-csp-privacy.md
@@ -49,6 +49,18 @@ manager: dansimp
Privacy/LetAppsAccessAccountInfo_UserInControlOfTheseApps
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception
+
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps
+
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps
+
+
+ Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps
+
Privacy/LetAppsAccessCalendar
@@ -863,6 +875,260 @@ ADMX Info:
+
+**Privacy/LetAppsAccessBackgroundSpatialPerception**
+
+
+
+
+ | Home |
+ Pro |
+ Business |
+ Enterprise |
+ Education |
+ Mobile |
+ Mobile Enterprise |
+
+
+  |
+ |
+ |
+ |
+ |
+ |
+ |
+
+
+
+
+
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+
+
+
+
+Added in Windows 10, version 1903.
+> [!NOTE]
+> Currently, this policy is supported only in HoloLens 2.
+
+Specifies whether Windows apps can access the movement of the user's head, hands, motion controllers, and other tracked objects, while the apps are running in the background.
+
+Value type is integer.
+
+
+
+ADMX Info:
+- GP English name: Let Windows apps access background spatial perception
+- GP name: LetAppsAccessBackgroundSpatialPerception
+- GP element: LetAppsAccessBackgroundSpatialPerception_Enum
+- GP path: Windows Components/App Privacy
+- GP ADMX file name: AppPrivacy.admx
+
+
+
+
+The following list shows the supported values:
+
+- 0 (default) – User in control.
+- 1 – Force allow.
+- 2 - Force deny.
+
+
+
+
+
+
+
+**Privacy/LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps**
+
+
+
+
+ | Home |
+ Pro |
+ Business |
+ Enterprise |
+ Education |
+ Mobile |
+ Mobile Enterprise |
+
+
+ |
+ |
+ |
+ |
+ |
+ |
+ |
+
+
+
+
+
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+
+
+
+
+Added in Windows 10, version 1903.
+> [!NOTE]
+> Currently, this policy is supported only in HoloLens 2.
+
+List of semi-colon delimited Package Family Names of Windows Store Apps. Listed apps are allowed access to the user's movements while the apps are running in the background. This setting overrides the default LetAppsAccessBackgroundSpatialPerception policy setting for the specified apps.
+
+Value type is chr.
+
+
+
+ADMX Info:
+- GP English name: Let Windows apps access background spatial perception
+- GP name: LetAppsAccessBackgroundSpatialPerception
+- GP element: LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps_List
+- GP path: Windows Components/App Privacy
+- GP ADMX file name: AppPrivacy.admx
+
+
+
+
+
+
+
+
+
+
+
+**Privacy/LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps**
+
+
+
+
+ | Home |
+ Pro |
+ Business |
+ Enterprise |
+ Education |
+ Mobile |
+ Mobile Enterprise |
+
+
+ |
+ |
+ |
+ |
+ |
+ |
+ |
+
+
+
+
+
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+
+
+
+
+Added in Windows 10, version 1903.
+> [!NOTE]
+> Currently, this policy is supported only in HoloLens 2.
+
+List of semi-colon delimited Package Family Names of Windows Store Apps. Listed apps are denied access to the user's movements while the apps are running in the background. This setting overrides the default LetAppsAccessBackgroundSpatialPerception policy setting for the specified apps.
+
+Value type is chr.
+
+
+
+ADMX Info:
+- GP English name: Let Windows apps access background spatial perception
+- GP name: LetAppsAccessBackgroundSpatialPerception
+- GP element: LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps_List
+- GP path: Windows Components/App Privacy
+- GP ADMX file name: AppPrivacy.admx
+
+
+
+
+
+
+
+
+
+
+
+
+
+**Privacy/LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps**
+
+
+
+
+ | Home |
+ Pro |
+ Business |
+ Enterprise |
+ Education |
+ Mobile |
+ Mobile Enterprise |
+
+
+ |
+ |
+ |
+ |
+ |
+ |
+ |
+
+
+
+
+
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+
+
+
+
+Added in Windows 10, version 1903.
+> [!NOTE]
+> Currently, this policy is supported only in HoloLens 2.
+
+List of semi-colon delimited Package Family Names of Windows Store Apps.
+The user is able to control the user movements privacy setting for the listed apps. This setting overrides the default LetAppsAccessBackgroundSpatialPerception policy setting for the specified apps.
+
+Value type is chr.
+
+
+
+ADMX Info:
+- GP English name: Let Windows apps access background spatial perception
+- GP name: LetAppsAccessBackgroundSpatialPerception
+- GP element: LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps_List
+- GP path: Windows Components/App Privacy
+- GP ADMX file name: AppPrivacy.admx
+
+
+
+
+
+
+
+
**Privacy/LetAppsAccessCalendar**
@@ -4978,18 +5244,34 @@ ADMX Info:
-
-## Privacy policies supported by Windows Holographic
+
+## Privacy policies supported by HoloLens 2
- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization)
-
+- [LetAppsAccessAccountInfo](#privacy-letappsaccessaccountinfo)
+- [LetAppsAccessAccountInfo_ForceAllowTheseApps](#privacy-letappsaccessaccountinfo-forceallowtheseapps)
+- [LetAppsAccessAccountInfo_ForceDenyTheseApps](#privacy-letappsaccessaccountinfo-forcedenytheseapps)
+- [LetAppsAccessAccountInfo_UserInControlOfTheseApps](#privacy-letappsaccessaccountinfo-userincontroloftheseapps)
+- [LetAppsAccessBackgroundSpatialPerception](#privacy-letappsaccessbackgroundspatialperception)
+- [LetAppsAccessBackgroundSpatialPerception_ForceAllowTheseApps](#privacy-letappsaccessbackgroundspatialperception-forceallowtheseapps)
+- [LetAppsAccessBackgroundSpatialPerception_ForceDenyTheseApps](#privacy-letappsaccessbackgroundspatialperception-forcedenytheseapps)
+- [LetAppsAccessBackgroundSpatialPerception_UserInControlOfTheseApps](#privacy-letappsaccessbackgroundspatialperception-userincontroloftheseapps)
+- [Privacy/LetAppsAccessCamera](#privacy-letappsaccesscamera)
+- [Privacy/LetAppsAccessLocation](#privacy-letappsaccesslocation)
+- [Privacy/LetAppsAccessMicrophone](#privacy-letappsaccessmicrophone)
+
-## Privacy policies supported by Windows Holographic for Business
+## Privacy policies supported by HoloLens (1st gen) Commercial Suite
- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization)
+
+## Privacy policies supported by HoloLens (1st gen) Development Edition
+
+- [Privacy/AllowInputPersonalization](#privacy-allowinputpersonalization)
+
## Privacy policies supported by Windows 10 IoT Core
- [Privacy/LetAppsActivateWithVoice](#privacy-letappsactivatewithvoice)
diff --git a/windows/client-management/mdm/policy-csp-search.md b/windows/client-management/mdm/policy-csp-search.md
index d5903f1493..f551f810e3 100644
--- a/windows/client-management/mdm/policy-csp-search.md
+++ b/windows/client-management/mdm/policy-csp-search.md
@@ -921,18 +921,24 @@ The following list shows the supported values:
-
-## Search policies supported by Windows Holographic
+
+## Search policies supported by HoloLens 2
- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation)
-
+
-## Search policies supported by Windows Holographic for Business
+## Search policies supported by HoloLens (1st gen) Commercial Suite
- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation)
+
+## Search policies supported by HoloLens (1st gen) Development Edition
+
+- [Search/AllowSearchToUseLocation](#search-allowsearchtouselocation)
+
+
Footnotes:
diff --git a/windows/client-management/mdm/policy-csp-security.md b/windows/client-management/mdm/policy-csp-security.md
index 4467309f6d..22bddbe478 100644
--- a/windows/client-management/mdm/policy-csp-security.md
+++ b/windows/client-management/mdm/policy-csp-security.md
@@ -744,18 +744,24 @@ The following list shows the supported values:
-
-## Security policies supported by Windows Holographic
+
+## Security policies supported by HoloLens 2
- [Security/RequireDeviceEncryption](#security-requiredeviceencryption)
-
+
-## Security policies supported by Windows Holographic for Business
+## Security policies supported by HoloLens (1st gen) Commercial Suite
- [Security/RequireDeviceEncryption](#security-requiredeviceencryption)
+
+## Security policies supported by HoloLens (1st gen) Development Edition
+
+- [Security/RequireDeviceEncryption](#security-requiredeviceencryption)
+
+
Footnotes:
@@ -765,4 +771,4 @@ Footnotes:
- 3 - Added in Windows 10, version 1709.
- 4 - Added in Windows 10, version 1803.
- 5 - Added in Windows 10, version 1809.
-- 6 - Added in the next major release of Windows 10.
+- 6 - Added in Windows 10, version 1903.
diff --git a/windows/client-management/mdm/policy-csp-settings.md b/windows/client-management/mdm/policy-csp-settings.md
index 0c2b8a9c14..e2a1e35daf 100644
--- a/windows/client-management/mdm/policy-csp-settings.md
+++ b/windows/client-management/mdm/policy-csp-settings.md
@@ -844,20 +844,27 @@ To validate on Desktop, do the following:
-
-## Settings policies supported by Windows Holographic
+
+## Settings policies supported by HoloLens 2
- [Settings/AllowDateTime](#settings-allowdatetime)
- [Settings/AllowVPN](#settings-allowvpn)
-
+
-## Settings policies supported by Windows Holographic for Business
+## Settings policies supported by HoloLens (1st gen) Commercial Suite
- [Settings/AllowDateTime](#settings-allowdatetime)
- [Settings/AllowVPN](#settings-allowvpn)
+
+## Settings policies supported by HoloLens (1st gen) Development Edition
+
+- [Settings/AllowDateTime](#settings-allowdatetime)
+- [Settings/AllowVPN](#settings-allowvpn)
+
+
Footnotes:
@@ -867,3 +874,4 @@ Footnotes:
- 3 - Added in Windows 10, version 1709.
- 4 - Added in Windows 10, version 1803.
- 5 - Added in Windows 10, version 1809.
+- 6 - Added in Windows 10, version 1903.
diff --git a/windows/client-management/mdm/policy-csp-speech.md b/windows/client-management/mdm/policy-csp-speech.md
index 9d1d87faa3..0f385479cb 100644
--- a/windows/client-management/mdm/policy-csp-speech.md
+++ b/windows/client-management/mdm/policy-csp-speech.md
@@ -87,18 +87,24 @@ The following list shows the supported values:
-
-## Speech policies supported by Windows Holographic
+
+## Speech policies supported by HoloLens 2
- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate)
-
+
-## Speech policies supported by Windows Holographic for Business
+## Speech policies supported by HoloLens (1st gen) Commercial Suite
- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate)
+
+## Speech policies supported by HoloLens (1st gen) Development Edition
+
+- [Speech/AllowSpeechModelUpdate](#speech-allowspeechmodelupdate)
+
+
Footnotes:
@@ -108,3 +114,4 @@ Footnotes:
- 3 - Added in Windows 10, version 1709.
- 4 - Added in Windows 10, version 1803.
- 5 - Added in Windows 10, version 1809.
+- 6 - Added in Windows 10, version 1903.
diff --git a/windows/client-management/mdm/policy-csp-system.md b/windows/client-management/mdm/policy-csp-system.md
index 11e0ca009c..65f8aca2b1 100644
--- a/windows/client-management/mdm/policy-csp-system.md
+++ b/windows/client-management/mdm/policy-csp-system.md
@@ -1581,20 +1581,29 @@ The following list shows the supported values:
-
-## System policies supported by Windows Holographic
+
+## System policies supported by HoloLens 2
-- [System/AllowTelemetry](#system-allowtelemetry)
+- [System/AllowCommercialDataPipeline](#system-allowcommercialdatapipeline)
- [System/AllowLocation](#system-allowlocation)
-
+- [System/AllowStorageCard](#system-allowstoragecard)
+- [System/AllowTelemetry](#system-allowtelemetry)
+
-## System policies supported by Windows Holographic for Business
+## System policies supported by HoloLens (1st gen) Commercial Suite
-- [System/AllowTelemetry](#system-allowtelemetry)
- [System/AllowLocation](#system-allowlocation)
+- [System/AllowTelemetry](#system-allowtelemetry)
+
+## System policies supported by HoloLens (1st gen) Development Edition
+
+- [System/AllowLocation](#system-allowlocation)
+- [System/AllowTelemetry](#system-allowtelemetry)
+
+
Footnotes:
diff --git a/windows/client-management/mdm/policy-csp-update.md b/windows/client-management/mdm/policy-csp-update.md
index 6548aba8fa..fbef0fce58 100644
--- a/windows/client-management/mdm/policy-csp-update.md
+++ b/windows/client-management/mdm/policy-csp-update.md
@@ -3958,21 +3958,25 @@ ADMX Info:
-
-## Update policies supported by Windows Holographic
+
+## Update policies supported by HoloLens 2
- [Update/AllowAutoUpdate](#update-allowautoupdate)
- [Update/AllowUpdateService](#update-allowupdateservice)
-- [Update/RequireDeferUpgrade](#update-requiredeferupgrade)
-- [Update/RequireUpdateApproval](#update-requireupdateapproval)
+- [Update/BranchReadinessLevel](#update-branchreadinesslevel)
+- [Update/DeferFeatureUpdatesPeriodInDays](#update-deferfeatureupdatesperiodindays)
+- [Update/DeferQualityUpdatesPeriodInDays](#update-deferqualityupdatesperiodindays)
+- [Update/ManagePreviewBuilds](#update-managepreviewbuilds)
+- [Update/PauseFeatureUpdates](#update-pausefeatureupdates)
+- [Update/PauseQualityUpdates](#update-pausequalityupdates)
- [Update/ScheduledInstallDay](#update-scheduledinstallday)
- [Update/ScheduledInstallTime](#update-scheduledinstalltime)
- [Update/UpdateServiceUrl](#update-updateserviceurl)
-
+
-## Update policies supported by Windows Holographic for Business
+## Update policies supported by HoloLens (1st gen) Commercial Suite
- [Update/AllowAutoUpdate](#update-allowautoupdate)
- [Update/AllowUpdateService](#update-allowupdateservice)
@@ -3984,6 +3988,19 @@ ADMX Info:
+
+## Update policies supported by HoloLens (1st gen) Development Edition
+
+- [Update/AllowAutoUpdate](#update-allowautoupdate)
+- [Update/AllowUpdateService](#update-allowupdateservice)
+- [Update/RequireDeferUpgrade](#update-requiredeferupgrade)
+- [Update/RequireUpdateApproval](#update-requireupdateapproval)
+- [Update/ScheduledInstallDay](#update-scheduledinstallday)
+- [Update/ScheduledInstallTime](#update-scheduledinstalltime)
+- [Update/UpdateServiceUrl](#update-updateserviceurl)
+
+
+
## Update policies supported by IoT Core
diff --git a/windows/client-management/mdm/policy-csp-wifi.md b/windows/client-management/mdm/policy-csp-wifi.md
index ec997ee27b..9bc832c1ff 100644
--- a/windows/client-management/mdm/policy-csp-wifi.md
+++ b/windows/client-management/mdm/policy-csp-wifi.md
@@ -391,18 +391,24 @@ Supported operations are Add, Delete, Get, and Replace.
- [Wifi/AllowWiFi](#wifi-allowwifi)
-
-## Wifi policies supported by Windows Holographic
+
+## Wifi policies supported by HoloLens 2
- [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration)
-
-
+
+
-## Wifi policies supported by Windows Holographic for Business
+## Wifi policies supported by HoloLens (1st gen) Commercial Suite
- [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration)
+
+## Wifi policies supported by HoloLens (1st gen) Development Edition
+
+- [Wifi/AllowManualWiFiConfiguration](#wifi-allowmanualwificonfiguration)
+
+
## Wifi policies supported by IoT Core
@@ -427,3 +433,4 @@ Footnotes:
- 3 - Added in Windows 10, version 1709.
- 4 - Added in Windows 10, version 1803.
- 5 - Added in Windows 10, version 1809.
+- 6 - Added in Windows 10, version 1903.
diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 46b0e3fd88..d42055564e 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -135,6 +135,7 @@
### [What's new in Microsoft Defender ATP](microsoft-defender-atp/whats-new-in-microsoft-defender-atp.md)
### [Minimum requirements](microsoft-defender-atp/minimum-requirements.md)
### [Validate licensing and complete setup](microsoft-defender-atp/licensing.md)
+### [Evaluation lab](microsoft-defender-atp/evaluation-lab.md)
### [Preview features](microsoft-defender-atp/preview.md)
### [Data storage and privacy](microsoft-defender-atp/data-storage-privacy.md)
### [Assign user access to the portal](microsoft-defender-atp/assign-portal-access.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md b/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md
new file mode 100644
index 0000000000..cbeed1d1ea
--- /dev/null
+++ b/windows/security/threat-protection/microsoft-defender-atp/evaluation-lab.md
@@ -0,0 +1,150 @@
+---
+title: Microsoft Defender ATP evaluation lab
+description: Learn about Microsoft Defender ATP capabilities, run attack simulations, and see how it prevents, detects, and remediates threats.
+keywords:
+search.product: eADQiWindows 10XVcnh
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: macapara
+author: mjcaparas
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: M365-security-compliance
+ms.topic: article
+---
+
+# Microsoft Defender ATP evaluation lab
+**Applies to:**
+- [Microsoft Defender Advanced Threat Protection (Windows Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+
+Conducting a comprehensive security product evaluation can be a complex process requiring cumbersome environment and machine configuration before an end-to-end attack simulation can actually be done. Adding to the complexity is the challenge of tracking where the simulation activities, alerts, and results are reflected during the evaluation.
+
+The Microsoft Defender ATP evaluation lab is designed to eliminate the complexities of machine and environment configuration so that you can
+ focus on evaluating the capabilities of the platform, running simulations, and seeing the prevention, detection, and remediation features in action.
+
+When you get started with the lab, you'll be guided through a simple set-up process where your tenant will be provisioned with test machines. These test machines will come pre-configured to have the latest and greatest Windows 10 version with the right security components in place and Office 2019 Standard installed.
+
+With the simplified set-up experience, you can focus on running your own test scenarios and the pre-made simulations to see how Microsoft Defender ATP performs.
+
+You'll have full access to all the powerful capabilities of the platform such as automated investigations, advanced hunting, and threat analytics, allowing you to test the comprehensive protection stack that Microsoft Defender ATP offers.
+
+
+## Get started with the lab
+You can access the lab from the menu. In the navigation menu, select **Evaluation and tutorials > Evaluation lab**.
+
+
+
+When you access the evaluation lab for the first time, you'll find an introduction page with a link to the evaluation guide. The guide contains tips and recommendations to keep in mind when evaluating an advanced threat protection product.
+
+It's a good idea to read the guide before starting the evaluation process so that you can conduct a thorough assessment of the platform.
+
+
+## Evaluation setup
+When you add a machine to your environment, Microsoft Defender ATP sets up a well-configured machine with connection details. The machine will be configured with the most up to date version of Windows 10 and Office 2019 Standard as well as other apps such as Java, Python, and SysIntenals.
+
+The machine will automatically be onboarded to your tenant with the recommended Windows security components turned on and in audit mode - with no effort on your side.
+
+ The following security components are pre-configured in the test machines:
+
+ - [Attack Surface Reduction](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-exploit-guard/attack-surface-reduction-exploit-guard)
+ - [Block at first sight](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-antivirus/configure-block-at-first-sight-windows-defender-antivirus)
+ - [Controlled Folder Access](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-exploit-guard/controlled-folders-exploit-guard)
+ - [Exploit Protection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-exploit-guard/enable-exploit-protection)
+ - [Network Protection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-exploit-guard/network-protection-exploit-guard)
+ - [Potentially unwanted application detection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-antivirus/detect-block-potentially-unwanted-apps-windows-defender-antivirus)
+ - [Cloud-delivered protection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-antivirus/utilize-microsoft-cloud-protection-windows-defender-antivirus)
+ - [Windows Defender SmartScreen](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-smartscreen/windows-defender-smartscreen-overview)
+
+ >[!NOTE]
+ > Windows Defender Antivirus will be on (not in audit). If Windows Defender Antivirus blocks you from running your simulation, you may turn off real-time protection on the machine through Windows Security. For more information, see [Configure always-on protection](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-antivirus/configure-real-time-protection-windows-defender-antivirus).
+
+Automated investigation settings will be dependent on tenant settings. It will be configured to be semi-automated by default. For more information, see [Overview of Automated investigations](automated-investigations.md).
+
+
+1. In the navigation pane, select **Evaluation and tutorials > Evaluation lab**.
+
+2. Select **Prepare lab**.
+
+ 
+
+3. Select **Add machine**.
+
+ >[!NOTE]
+ > The evaluation environment can only be provisioned up to three test machines. Each machine will only be available for three days from the day of activation.
+
+ 
+
+ >[!NOTE]
+ >If something goes wrong with the machine creation process, you'll be notified and you'll need to submit a new request. If the machine creation fails, it will not be counted against the overall allowed quota.
+
+4. The connection details are displayed. Select **Copy** to save the password for the machine.
+
+ >[!NOTE]
+ >The password is only displayed once. Be sure to save it for later use.
+
+5. Machine set up begins. This can take up to approximately 30 minutes.
+
+The environment will reflect your test machine status through the evaluation - including risk score, exposure score, and alerts created through the simulation.
+
+
+
+## Simulate attack scenarios
+Use the test machines to run attack simulations by connecting to them.
+
+If you are looking for a pre-made simulation, you can use our ["Do It Yourself" attack scenarios](https://securitycenter.windows.com/tutorials). These scripts are safe, documented, and easy to use. These scenarios will reflect Microsoft Defender ATP capabilities and walk you through investigation experience.
+
+You can also use [Advanced hunting](advanced-hunting.md) to query data and [Threat analytics](threat-analytics.md) to view reports about emerging threats.
+
+1. Connect to your machine and run an attack simulation by selecting **Connect**.
+
+ 
+
+2. Save the RDP file and launch it by selecting **Connect**.
+
+ 
+
+ >[!NOTE]
+ >If you don't have a copy of the password saved during the initial setup, you can reset the password by selecting **Reset password** from the menu:
+ > 
+ > The machine will change it’s state to “Executing password reset", then you’ll be presented with your new password in a few minutes.
+
+3. Enter the password that was displayed during the machine creation step.
+
+ 
+
+4. Run simulations on the machine.
+
+After running your simulations, we encourage you to walk through the lab progress bar and explore Microsoft Defender ATP features. See if your attacks triggered an automated investigation and remediation, check out the evidence collected and analyzed by the feature.
+
+
+Hunt for attack evidence through Advanced hunting by using the rich query language and raw telemetry and check out some world-wide threats documented in Threat analytics.
+
+
+## Simulation results
+Get a full overview of the simulation results, all in one place, allowing you to drill down to the relevant pages with every detail you need.
+
+View the machine details page by selecting the machine from the table. You'll be able to drill down on relevant alerts and investigations by exploring the rich context provided on the attack simulation.
+
+### Evaluation report
+The lab reports summarize the results of the simulations conducted on the machines.
+
+
+
+At a glance, you'll quickly be able to see:
+- Incidents that were triggered
+- Generated alerts
+- Assessments on exposure level
+- Threat categories observed
+- Detection sources
+- Automated investigations
+
+## Provide feedback
+Your feedback helps us get better in protecting your environment from advanced attacks. Share your experience and impressions from product capabilities and evaluation results.
+
+Let us know what you think, by selecting **Provide feedback**.
+
+
+
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/alerts-incidents.png b/windows/security/threat-protection/microsoft-defender-atp/images/alerts-incidents.png
new file mode 100644
index 0000000000..d08b3efdd9
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/alerts-incidents.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/connection-details.png b/windows/security/threat-protection/microsoft-defender-atp/images/connection-details.png
new file mode 100644
index 0000000000..10679a453d
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/connection-details.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/enter-password.png b/windows/security/threat-protection/microsoft-defender-atp/images/enter-password.png
new file mode 100644
index 0000000000..40f7d094e8
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/enter-password.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/eval-feedback.png b/windows/security/threat-protection/microsoft-defender-atp/images/eval-feedback.png
new file mode 100644
index 0000000000..f58eafd166
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/eval-feedback.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/eval-lab-dashboard.png b/windows/security/threat-protection/microsoft-defender-atp/images/eval-lab-dashboard.png
new file mode 100644
index 0000000000..c1fc9da53f
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/eval-lab-dashboard.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/eval-machines.png b/windows/security/threat-protection/microsoft-defender-atp/images/eval-machines.png
new file mode 100644
index 0000000000..a4f8efb652
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/eval-machines.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/eval-report.png b/windows/security/threat-protection/microsoft-defender-atp/images/eval-report.png
new file mode 100644
index 0000000000..b9d1d0dd29
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/eval-report.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/evaluation-add-machine.png b/windows/security/threat-protection/microsoft-defender-atp/images/evaluation-add-machine.png
new file mode 100644
index 0000000000..2355d08e52
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/evaluation-add-machine.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/evaluation-lab-menu.png b/windows/security/threat-protection/microsoft-defender-atp/images/evaluation-lab-menu.png
new file mode 100644
index 0000000000..3fcbe01abc
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/evaluation-lab-menu.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/evaluation.png b/windows/security/threat-protection/microsoft-defender-atp/images/evaluation.png
new file mode 100644
index 0000000000..4fcff122d2
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/evaluation.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/provide-feedback.png b/windows/security/threat-protection/microsoft-defender-atp/images/provide-feedback.png
new file mode 100644
index 0000000000..200c324200
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/provide-feedback.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/remote-connection.png b/windows/security/threat-protection/microsoft-defender-atp/images/remote-connection.png
new file mode 100644
index 0000000000..bc85a983d0
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/remote-connection.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/reset-password-test-machine.png b/windows/security/threat-protection/microsoft-defender-atp/images/reset-password-test-machine.png
new file mode 100644
index 0000000000..b2842092e8
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/reset-password-test-machine.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/test-machine-table.png b/windows/security/threat-protection/microsoft-defender-atp/images/test-machine-table.png
new file mode 100644
index 0000000000..2ff6a038af
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/test-machine-table.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/welcome-eval-lab.png b/windows/security/threat-protection/microsoft-defender-atp/images/welcome-eval-lab.png
new file mode 100644
index 0000000000..6500487918
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/welcome-eval-lab.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/welcome-evaluation-lab.png b/windows/security/threat-protection/microsoft-defender-atp/images/welcome-evaluation-lab.png
new file mode 100644
index 0000000000..9b632529aa
Binary files /dev/null and b/windows/security/threat-protection/microsoft-defender-atp/images/welcome-evaluation-lab.png differ
diff --git a/windows/security/threat-protection/microsoft-defender-atp/oldTOC.md b/windows/security/threat-protection/microsoft-defender-atp/oldTOC.md
index e716d3a9e1..35d03646ca 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/oldTOC.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/oldTOC.md
@@ -142,9 +142,11 @@
## [Get started]()
### [What's new in Microsoft Defender ATP](whats-new-in-microsoft-defender-atp.md)
+### [Preview features](preview.md)
+### [Evaluation lab](evaluation-lab.md)
### [Minimum requirements](minimum-requirements.md)
### [Validate licensing and complete setup](licensing.md)
-### [Preview features](preview.md)
+
### [Data storage and privacy](data-storage-privacy.md)
### [Assign user access to the portal](assign-portal-access.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/preview.md b/windows/security/threat-protection/microsoft-defender-atp/preview.md
index ebc7ab056b..354e205f5a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/preview.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/preview.md
@@ -42,6 +42,8 @@ Turn on the preview experience setting to be among the first to try upcoming fea
## Preview features
The following features are included in the preview release:
+- [Evaluation lab](evaluation-lab.md)
The Microsoft Defender ATP evaluation lab is designed to eliminate the complexities of machine and environment configuration so that you can
+ focus on evaluating the capabilities of the platform, running simulations, and seeing the prevention, detection, and remediation features in action.
- [Windows Server 2008 R2 SP1](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016)
You can now onboard Windows Server 2008 R2 SP1.
- [Microsoft Defender ATP for Mac](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac)
Microsoft Defender ATP for Mac brings the next-generation protection, and endpoint detection and response coverage to Mac devices. Core components of the unified endpoint security platform will now be available for Mac devices.