From 172c0f2aaa6d86be4c362c2f85161625558f93e5 Mon Sep 17 00:00:00 2001
From: isbrahm <43386070+isbrahm@users.noreply.github.com>
Date: Thu, 7 May 2020 17:25:33 -0700
Subject: [PATCH] Clarify custom oma-uri Base64 requirement

Multiple customers have been under the impression that they need to convert their policy to Base64 before uploading to Intune, when really the policy needs to be a .bin
---
 ...indows-defender-application-control-policies-using-intune.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
index 6fae4bfadf..2ec54bcba7 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
@@ -60,7 +60,7 @@ The steps to use Intune's Custom OMA-URI functionality to leverage the [Applicat
 5. Add a row, then give your policy a name and use the following settings:
     - **OMA-URI**: ./Vendor/MSFT/ApplicationControl/Policies/_Policy GUID_/Policy
     - **Data type**: Base64
-    - **Certificate file**: upload your binary format policy file
+    - **Certificate file**: upload your binary format policy file. You do not need to upload a Base64 file, as Intune will convert the uploaded .bin file to Base64 on your behalf.
 
     ![Configure custom WDAC](images/wdac-intune-custom-oma-uri.png)