Merged PR 10011: 7/23 AM Pubish

browsers/edge/TOC.md

@@ -2,6 +2,13 @@
 
 ##[New Microsoft Edge Group Policies and MDM settings](new-policies.md)
 
+##Group Policy configuration options
+###[Home button](group-policies/home-button-gp.md)
+###[Prelaunch Microsoft Edge and preload tabs](group-policies/prelaunch-preload-gp.md)
+###[Start pages](group-policies/start-pages-gp.md)
+###[Sync browser settings](group-policies/sync-browser-settings-gp.md)
+
+
 ##[Deploy Microsoft Edge kiosk mode](microsoft-edge-kiosk-mode-deploy.md)
 
 ##[Change history for Microsoft Edge](change-history-for-microsoft-edge.md)

browsers/edge/available-policies.md

@@ -24,9 +24,11 @@ By using Group Policy and Intune, you can set up a policy setting once, and then
 > For more info about the tools you can use to change your Group Policy objects, see the Internet Explorer 11 topics, [Group Policy and the Group Policy Management Console (GPMC)](https://go.microsoft.com/fwlink/p/?LinkId=617921), [Group Policy and the Local Group Policy Editor](https://go.microsoft.com/fwlink/p/?LinkId=617922), [Group Policy and the Advanced Group Policy Management (AGPM)](https://go.microsoft.com/fwlink/p/?LinkId=617923), and [Group Policy and Windows PowerShell](https://go.microsoft.com/fwlink/p/?LinkId=617924).
 
 
-Microsoft Edge works with the following Group Policy settings to help you manage your company's web browser configurations. The Group Policy settings are found in the Group Policy Editor in the following location: 
 
-Computer Configuration\Administrative Templates\Windows Components\Microsoft Edge\
+>*You can find the Microsoft Edge Group Policy settings in the following location of the Group Policy Editor:*
+> 
+>      *Computer Configuration\\Administrative Templates\\Windows Components\\Microsoft Edge\\*
+<p>
 
 ## Allow a shared books folder
 [!INCLUDE [allow-shared-folder-books-include.md](includes/allow-shared-folder-books-include.md)] 
@@ -64,9 +66,6 @@ Computer Configuration\Administrative Templates\Windows Components\Microsoft Edg
 ## Allow search engine customization
 [!INCLUDE [allow-search-engine-customization-include.md](includes/allow-search-engine-customization-include.md)]
 
-## Allow Start and New Tab page preload
-[!INCLUDE [allow-tab-preloading-include](includes/allow-tab-preloading-include.md)]
-
 ## Allow web content on New Tab page
 [!INCLUDE [allow-web-content-new-tab-page-include.md](includes/allow-web-content-new-tab-page-include.md)]
 

browsers/edge/group-policies/home-button-gp.md

@@ -0,0 +1,26 @@
+---
+title: Microsoft Edge - Home button configuration options
+description: Microsoft Edge shows the home button and by clicking it the Start page loads by default.
+ms.author: pashort
+author: shortpatti
+ms.date: 07/20/2018
+---
+
+# Home button configuration options
+Microsoft Edge shows the home button and by clicking it the Start page loads by default. You can configure the Home button to load the New tab page or a URL defined in the Set Home button URL policy. You can also configure Microsoft Edge to hide the home button. 
+
+## Policies
+- [Configure Home button](../new-policies.md#configure-home-button)
+  
+- [Set Home button URL](../new-policies.md#set-home-button-url)
+  
+- [Unlock Home Button](../new-policies.md#unlock-home-button)
+
+## Configuration options
+
+![Show home button and load Start page or New tab page](../images/home-button-start-new-tab-page-v4-sm.png)
+
+![Show home button and load custom URL](../images/home-buttom-custom-url-v4-sm.png)
+
+![Hide home button](../images/home-button-hide-v4-sm.png)
+

browsers/edge/group-policies/index.md

@@ -0,0 +1,205 @@
+### YamlMime:YamlDocument
+
+documentType: LandingData
+
+title: Microsoft Edge Group Policy configuration options 
+
+metadata:
+
+  document_id: 
+
+  title: Microsoft Edge Group Policy configuration options  
+
+  description: Learn about the different configuration options available in Microsoft Edge on Windows 10.
+
+  text: Some of the features coming to Microsoft Edge gives you the ability to set a custom URL for the New tab page or Home button. Another new feature allows you to hide or show the Favorites bar, giving you more control over the favorites bar. 
+
+  keywords: Microsoft Edge, Windows 10
+
+  ms.localizationpriority: high
+
+  author: shortpatti
+
+  ms.author: pashort
+
+  ms.date: 07/23/2018
+
+  ms.topic: article
+
+  ms.devlang: na
+
+sections:
+
+- title: Learn about... 
+
+- items:
+
+  - type: markdown
+
+    text: Get ready to deploy Microsoft Edge. 
+
+- items:
+
+  - type: list
+
+    style: cards
+
+    className: cardsE
+
+    columns: 3
+
+    items:
+
+    - href: \browsers\edge\group-policies
+
+      html: <p>Learn about the Always On VPN deployment and where to get started.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_get-started.svg
+      
+      title: Begin your journey
+
+    - href: \windows-server\remote\remote-access\vpn\vpn-map-da
+
+      html: <p>Learn how Always On VPN has expanded the VPN functionality beyond the capabilities of DirectAccess.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_quick-start.svg
+
+      title: DirectAccess and Always On VPN feature comparison
+
+    - href: \windows-server\remote\remote-access\vpn\always-on-vpn\always-on-vpn-enhancements
+
+      html: <p>Learn about the key improvements in integration, security, connectivity, networking control, and compatibility.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_whats-new.svg
+
+      title: Enhancements in Always On VPN
+
+    - href: \windows-server\remote\remote-access\vpn\always-on-vpn\always-on-vpn-technology-overview
+
+      html: <p>Learch about the technologies used in the Always On VPN deployment.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_overview.svg
+
+      title: Technology overview
+
+    - href: \windows-server\remote\remote-access\vpn\always-on-vpn\deploy\always-on-vpn-adv-options
+
+      html: <p>Learn about the advanced VPN features you can add to improve the security and availability of your VPN connection.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_advanced.svg
+
+      title: Extend Always On VPN with advanced features            
+
+- title: Get started... 
+
+  items:
+
+  - type: paragraph
+
+    text: 'Deploy Always On VPN connections for domain-joined Windows 10 client computers. You can also migrate from DirectAccess to Always On VPN and configure conditional access using Azure AD.'
+
+  - type: list
+
+    style: cards
+
+    className: cardsE
+
+    columns: 3
+
+    items:
+
+    - href: \windows-server\remote\remote-access\vpn\always-on-vpn\deploy\always-on-vpn-deploy-deployment
+
+      html: <p>Discover what's needed to deploy VPN connections.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_architecture.svg
+      
+      title: Deployment workflow and scenarios
+
+    - href: \windows-server\remote\remote-access\da-always-on-vpn-migration\da-always-on-migration-overview
+    
+      html: <p>Start planning the migration from DirectAccess to Always On VPN.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_upgrade.svg
+      
+      title: Migrate from DirectAccess
+
+    - href: \windows-server\remote\remote-access\vpn\always-on-vpn\deploy\always-on-vpn-deploy-planning
+    
+      html: <p>Start planning and preparing your Always On VPN deployment.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_guidelines.svg
+      
+      title: Plan the Always On VPN deployment 
+
+    - href: \windows-server\remote\remote-access\vpn\always-on-vpn\deploy\vpn-deploy-server-infrastructure
+    
+      html: <p>Start setting up and configuring the VPN infrastructure along with the Windows 10 client VPN connectivity.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_setup.svg
+      
+      title: Deploy the VPN infrastructure
+
+    - href: \windows-server\remote\remote-access\vpn\ad-ca-vpn-connectivity-windows10
+    
+      html: <p>Fine-tune how VPN users access your resources using Azure AD conditional access.</p>
+
+      image:
+
+        src: https://docs.microsoft.com/media/common/i_setup.svg
+      
+      title: Configure conditional access
+
+- items:
+
+  - type: list
+
+    style: cards
+
+    className: cardsL
+
+    items:
+
+    - title: Troubleshoot Always On VPN
+
+      html: <p><a class="barLink" href="/windows-server/remote/remote-access/vpn/always-on-vpn/deploy/always-on-vpn-deploy-troubleshooting#vpnprofileps1-script-issues">VPN_Profile.ps1 script issues</a></p>
+
+            <p><a class="barLink" href="/windows-server/remote/remote-access/vpn/always-on-vpn/deploy/always-on-vpn-deploy-troubleshooting#always-on-vpn-client-connection-issues">Always On VPN client connection issues</a></p>
+
+            <p><a class="barLink" href="/windows-server/remote/remote-access/vpn/always-on-vpn/deploy/always-on-vpn-deploy-troubleshooting#azure-ad-conditional-access-connection-issues">Azure AD Conditional Access connection issues</a></p>
+
+            <p><a class="barLink" href="/windows-server/remote/remote-access/vpn/always-on-vpn/deploy/always-on-vpn-deploy-troubleshooting#error-codes">Error codes</a></p><br>
+
+            <p><a class="barLink" href="/windows-server/remote/remote-access/vpn/always-on-vpn/deploy/always-on-vpn-deploy-troubleshooting#logs">Log files</a></p></div>
+
+    - title: Additional resources 
+
+      html: <p><a class="barLink" href="https://docs.microsoft.com/windows/access-protection/vpn/vpn-guide">Windows 10 VPN Technical Guide</a></p>
+        
+            <p><a class="barLink" href="https://msdn.microsoft.com/windows/hardware/commercialize/customize/mdm/vpnv2-csp">VPNv2 CSP</a></p>
+
+            <p><a class="barLink" href="https://technet.microsoft.com/library/hh831740.aspx">Active Directory Certificate Services Overview</a></p>
+
+            <p><a class="barLink" href="https://technet.microsoft.com/library/cc730705.aspx">Certificate Templates</a></p>
+       
+            <p><a class="barLink" href="https://social.technet.microsoft.com/wiki/contents/articles/2901.public-key-infrastructure-design-guidance.aspx">Public Key Infrastructure Design Guidance</a></p><p></p>
+
+            <p><a class="barLink" href="https://social.technet.microsoft.com/wiki/contents/articles/15037.ad-cs-step-by-step-guide-two-tier-pki-hierarchy-deployment.aspx">AD CS Step by Step Guide - Two Tier PKI Hierarchy Deployment</a></p>

browsers/edge/group-policies/new-tab-page-gp.md

@@ -0,0 +1,17 @@
+---
+title: New tab page 
+description: Microsoft Edge loads the default New tab page by default. You can configure Microsoft Edge to load a New tab page URL and prevent users from changing it. 
+ms.author: pashort
+author: shortpatti
+ms.date: 07/20/2018
+---
+
+
+
+
+
+# New tab page 
+
+Microsoft Edge loads the default New tab page by default. You can configure Microsoft Edge to load a New tab page URL and prevent users from changing it.  When you enable this policy, and you disable the Allow web content on New tab page policy, Microsoft Edge ignores any URL specified in this policy and opens about:blank. 
+
+Policy: Set New Tab page URL 

browsers/edge/group-policies/prelaunch-preload-gp.md

@@ -0,0 +1,27 @@
+---
+title: Microsoft Edge - Prelaunch and tab preload configuration options
+description: Microsoft Edge shows the home button and by clicking it the Start page loads by default.
+ms.author: pashort
+author: shortpatti
+ms.date: 07/20/2018
+---
+
+# Prelaunch Microsoft Edge and preload tabs in the background  
+
+Microsoft Edge pre-launches as a background process during Windows startup when the system is idle waiting to be launched by the user.  Pre-launching helps the performance of Microsoft Edge and minimizes the amount of time required to start up Microsoft Edge. You can also configure Microsoft Edge to prevent Microsoft Edge from pre-launching.  
+
+Additionally, Microsoft Edge preloads the Start and New tab pages during Windows sign in, which minimizes the amount of time required to start Microsoft Edge and load a new tab.  You can also configure Microsoft Edge to prevent preloading of tabs. 
+
+
+## Policies
+- [Allow Microsoft Edge to start and load the Start and New Tab page at Windows startup and each time Microsoft Edge is closed](../new-policies.md#allow-microsoft-edge-to-start-and-load-the-start-and-new-tab-page-at-windows-startup-and-each-time-microsoft-edge-is-closed)
+
+- [Allow Prelaunch ](../new-policies.md#allow-prelaunch)
+
+## Configuration options
+
+![Only preload the Start and New tab pages during Windows startup](../images/preload-tabs-only-sm.png)
+
+![Prelauch Microsoft Edge and preload Start and New tab pages](../images/prelaunch-edge-and-preload-tabs-sm.png)
+
+![Only prelaunch Microsoft Edge during Windows startup](../images/prelaunch-edge-only-sm.png)

browsers/edge/group-policies/start-pages-gp.md

@@ -0,0 +1,36 @@
+---
+title: Start pages 
+description: Configure Microsoft Edge to load either the Start page, New tab page, previously opened pages, or a specific page or pages.
+ms.author: pashort
+author: shortpatti
+ms.date: 07/20/2018
+---
+
+# Start pages 
+
+Microsoft Edge loads the pages specified in App settings as the default Start pages.   You can configure Microsoft Edge to load either the Start page, New tab page, previously opened pages, or a specific page or pages.  You can also configure Microsoft Edge to prevent users from making changes. 
+
+
+## Policies 
+
+- [Configure Open Microsoft Edge With](../new-policies.md#configure-open-microsoft-edge-with) 
+
+- [Configure Start Pages](../available-policies.md#configure-start-pages) 
+
+- [Disable Lockdown of Start Pages](../available-policies.md#configure-windows-defender-smartscreen) 
+
+## Configuration options
+
+![Load URLs defined in Configure Start Pages](../images/load-urls-defined-in-configure-open-edge-with-main-sm.png)
+
+
+| **Configure Open Microsoft Edge With** | **Configure Start Pages** | **Disabled Lockdown of Start Pages** | **Outcome** |
+| --- | --- | --- | --- |
+| Enabled (applies to all options) | Enabled – String | Enabled (all configured start pages are editable) | Load URLs defined in the Configure Open Microsoft Edge With policy, and allow users to make changes. |
+| Disabled or not configured | Enabled – String | Enabled (any Start page configured in the Configured Start Pages policy) |  Load any start page and let users make changes .|
+| Enabled (Start page) | Enabled – String | Blank or not configured | Load Start page(s) and prevent users from making changes. |
+| Enabled (New tab page) | Enabled – String | Blank or not configured | Load New tab page and prevent users from making changes. |
+| Enabled (Previous pages) | Enabled – String | Blank or not configured | Load previously opened pages and prevent users from making changes. |
+| Enabled (A specific page or pages) | Enabled – String | Blank or not configured | Load a specific page or pages and prevent users from making changes. |
+| Enabled (A specific page or pages) | Enabled – String | Enabled (any Start page configured in Configure Start Pages policy) | Load a specific page or pages and let users make changes. |
+---

browsers/edge/group-policies/sync-browser-settings-gp.md

@@ -0,0 +1,31 @@
+---
+title: Microsoft Edge - Sync browser settings
+description: By default, the “browser” group syncs automatically between the user’s devices, letting users make changes.
+ms.author: pashort
+author: shortpatti
+ms.date: 07/20/2018
+---
+
+# Sync browser settings  
+
+By default, the “browser” group syncs automatically between the user’s devices, letting users make changes. The “browser” group uses the Sync your Settings option in Settings to sync information like history and favorites. You can configure Microsoft Edge to prevent the “browser” group from syncing and prevent users from turning on the Sync your Settings toggle in Settings. If you want syncing turned off by default but not disabled, select the _Allow users to turn “browser” syncing_ option in the Do not sync browser policy. 
+
+
+## Policies
+- [Do not sync browser settings](../available-policies.md#do-not-sync-browser-settings) 
+
+- [Prevent users from turning on browser syncing](../new-policies.md#prevent-users-from-turning-on-browser-syncing) 
+
+
+## Configuration options
+
+![Sync browser settings automatically](../images/sync-browser-settings-automatically-sm.png)
+
+![Prevent syncing of browser settings](../images/prevent-syncing-browser-settings-sm.png)
+
+
+## Verify the configuration
+To verify if syncing is turned on or off:
+1. In the upper-right corner of Microsoft Edge, click the ellipses \(**...**\).
+2. Click **Settings**.
+3. Under Account, see if the setting is toggled on or off.<p>![Verify configuration](../images/sync-settings.PNG)

browsers/edge/includes/allow-full-screen-include.md

@@ -22,7 +22,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[AllowFullscreen](../new-policies.md#allow-fullscreen-mode)
+- **MDM name:** Browser/[AllowFullscreen](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-allowfullscreenmode)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/AllowFullscreen 
 - **Data type:** Integer

browsers/edge/includes/allow-prelaunch-include.md

@@ -12,6 +12,10 @@
 |Disabled |0 |0 |Prevented/not allowed |![Most restrictive value](../images/check-gn.png) |
 |Enabled or not configured<br>**(default)** |1 |1 |Allowed | |
 ---
+### Configuration options
+
+For more details about configuring the prelaunch and preload options, see [Prelaunch Microsoft Edge and preload tabs in the background](../group-policies/prelaunch-preload-gp.md).
+
 
 ### ADMX info and settings
 
@@ -22,7 +26,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[AllowPrelaunch](../new-policies.md#allow-prelaunch)
+- **MDM name:** Browser/[AllowPrelaunch](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-allowprelaunch)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/AllowPrelaunch 
 - **Data type:** Integer

browsers/edge/includes/allow-printing-include.md

@@ -21,7 +21,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[AllowPrinting](../new-policies.md#allow-printing)
+- **MDM name:** Browser/[AllowPrinting](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-allowprinting)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/AllowPrinting 
 - **Data type:** Integer

browsers/edge/includes/allow-saving-history-include.md

@@ -21,7 +21,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[AllowSavingHistory](../new-policies.md#allow-saving-history)
+- **MDM name:** Browser/[AllowSavingHistory](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-allowsavinghistory)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/AllowSavingHistory 
 - **Data type:** Integer

browsers/edge/includes/allow-sideloading-extensions-include.md

@@ -21,7 +21,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[AllowSideloadingExtensions](../new-policies.md#allow-sideloading-of-extensions)
+- **MDM name:** Browser/[AllowSideloadingExtensions](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-allowsideloadingofextensions)
 - **Supported devices:** Desktop 
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/AllowSideloadingExtensions 
 - **Data type:** Integer

browsers/edge/includes/allow-tab-preloading-include.md

@@ -12,6 +12,10 @@
 |Disabled |1 |1 |Prevented/not allowed. |![Most restricted value](../images/check-gn.png) |
 ---
 
+### Configuration options
+
+For more details about configuring the prelaunch and preload options, see [Prelaunch Microsoft Edge and preload tabs in the background](../group-policies/prelaunch-preload-gp.md).
+
 ### ADMX info and settings
 
 #### ADMX info
@@ -21,7 +25,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[AllowTabPreloading](../new-policies.md#allow-microsoft-edge-to-start-and-load-the-start-and-new-tab-page-at-windows-startup-and-each-time-microsoft-edge-is-closed)
+- **MDM name:** Browser/[AllowTabPreloading](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-allowtabpreloading)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/AllowTabPreloading 
 - **Data type:** Integer

browsers/edge/includes/configure-browser-telemetry-for-m365-analytics-include.md

@@ -28,7 +28,7 @@
 
 
 #### MDM settings
-- **MDM name:** Browser/[ConfigureTelemetryForMicrosoft365Analytics](../new-policies.md#configure-collection-of-browsing-data-for-microsoft-365-analytics)
+- **MDM name:** Browser/[ConfigureTelemetryForMicrosoft365Analytics](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-configuretelemetryformicrosoft365analytics)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/ConfigureTelemetryForMicrosoft365Analytics
 - **Data type:** Integer

browsers/edge/includes/configure-cookies-include.md

@@ -28,8 +28,8 @@
 - **Data type:** Integer
 
 #### Registry settings
-** |<ul><li>**Path:** HKLM\\Software\\Policies\\Microsoft\\MicrosoftEdge\\Main 
-**Value name:** Cookies
-**Value type:** REG_DWORD
+- **Path:** HKLM\\Software\\Policies\\Microsoft\\MicrosoftEdge\\Main 
+- **Value name:** Cookies
+- **Value type:** REG_DWORD
 
 <hr>

browsers/edge/includes/configure-do-not-track-include.md

@@ -8,9 +8,9 @@
 
 |Group Policy  |MDM |Registry |Description |Most restricted |
 |---|:---:|:---:|---|:---:|
-|Not configured |Blank |Blank |Do not send tracking information but let users choose to send tracking information to sites they visit. | |
+|Not configured<br>**(default)** |Blank |Blank |Do not send tracking information but let users choose to send tracking information to sites they visit. | |
 |Disabled |1 |1 |Never send tracking information. | |
-|Enabled<br>**(default)** |1 |1 |Send tracking information. |![Most restricted value](../images/check-gn.png) |
+|Enabled |1 |1 |Send tracking information. |![Most restricted value](../images/check-gn.png) |
 ---
 
 ### ADMX info and settings

browsers/edge/includes/configure-edge-kiosk-reset-idle-timeout-include.md

@@ -21,7 +21,7 @@ You must set the Configure kiosk mode policy to enabled (1 - InPrivate public br
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[ConfigureKioskResetAfterIdleTimeout](../new-policies.md#configure-kiosk-reset-after-idle-timeout)
+- **MDM name:** Browser/[ConfigureKioskResetAfterIdleTimeout](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-configurekioskresetafteridletimeout)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/ConfigureKioskResetAfterIdleTimeout 
 - **Data type:** Integer

browsers/edge/includes/configure-enterprise-mode-site-list-include.md

@@ -7,10 +7,10 @@
 
 ### Supported values
 
-|Group Policy  |MDM |Registry |Description |Most restricted |
-|---|:---:|:---:|---|:---:|
-|Disabled or not configured<br>**(default)** |0 |0 |Turned off. Microsoft Edge does not check the Enterprise Mode Site List, and in this case, users might experience problems while using legacy apps. | |
-|Enabled |1 |1 |Turned on. Microsoft Edge checks the Enterprise Mode Site List if configured.  If an XML file exists in the cache container, IE11 waits 65 seconds and then checks the local cache for a new version from the server. If the server has a different version, Microsoft Edge uses the server file and stores it in the cache container. If you already use a site list, Enterprise Mode continues to work during the 65 second, but uses the existing file.  To add the location to your site list, enter it in the **{URI}** box.<p>For details on how to configure the Enterprise Mode Site List, see the [Instructions](#instructions) section below.   | |
+|Group Policy  |MDM |Registry |Description |
+|---|:---:|:---:|---|
+|Disabled or not configured<br>**(default)** |0 |0 |Turned off. Microsoft Edge does not check the Enterprise Mode Site List, and in this case, users might experience problems while using legacy apps. | 
+|Enabled |1 |1 |Turned on. Microsoft Edge checks the Enterprise Mode Site List if configured.  If an XML file exists in the cache container, IE11 waits 65 seconds and then checks the local cache for a new version from the server. If the server has a different version, Microsoft Edge uses the server file and stores it in the cache container. If you already use a site list, Enterprise Mode continues to work during the 65 second, but uses the existing file.  To add the location to your site list, enter it in the **{URI}** box.<p>For details on how to configure the Enterprise Mode Site List, see the [Instructions](#instructions) section below.   | 
 ---
 
 ### ADMX info and settings
@@ -70,8 +70,7 @@ which is the equivalent to this Microsoft Edge policy.
 - [Step 1. Turn on Enterprise Mode](#step-1-turn-on-enterprise-mode)
 - [Step 2. (Optional) Import your Enterprise Mode Site List](#step-2-optional-import-your-enterprise-mode-site-list)
 - [Step 3. Add sites to your list](#step-3-add-sites-to-your-list)
-- [Step 4. Turn on Enterprise Mode and use a site list](#step-4-set-up-microsoft-edge-to-use-the-enterprise-mode-site-list)  
-- [Step 5. Send all intranet sites to Internet Explorer 11](#step-5-send-all-intranet-sites-to-internet-explorer-11)
+- [Step 4. Send all intranet sites to Internet Explorer 11](#step-5-send-all-intranet-sites-to-internet-explorer-11)
 
 #### Step 1. Turn on Enterprise Mode
 
@@ -95,11 +94,7 @@ which is the equivalent to this Microsoft Edge policy.
 
 6.  On the **File** menu, go to where you want to save the file, and then click **Save to XML**.<p>You can save the file locally or to a network share. However, you must make sure you deploy it to the location specified in your Group Policy setting.
 
-#### Step 4. Set up Microsoft Edge to use the Enterprise Mode Site List
-
-add the steps here, if there are steps
-
-#### Step 5. Send all intranet sites to Internet Explorer 11
+#### Step 4. Send all intranet sites to Internet Explorer 11
 
 Enabling the Send all intranet sites to Internet Explorer 11 policy automatically opens all intranet sites in IE11, even if the users have Microsoft Edge as their default browser.
 

browsers/edge/includes/configure-favorites-bar-include.md

@@ -23,7 +23,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[ConfigureFavoritesBar](../new-policies.md#configure-favorites-bar)
+- **MDM name:** Browser/[ConfigureFavoritesBar](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-configurefavoritesbar)
 - **Supported devices:** Desktop and Mobile
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/ConfigureFavoritesBar 
 - **Data type:** Integer

browsers/edge/includes/configure-favorites-include.md

@@ -1,2 +1,4 @@
 <!-- ## Configure Favorites -->
->Use [Provision Favorites](../available-policies.md#provision-favorites) in place of this policy.
+>Use the **[Provision Favorites](../available-policies.md#provision-favorites)** policy in place of Configure Favorites.
+
+<hr>

browsers/edge/includes/configure-home-button-include.md

@@ -1,4 +1,4 @@
-<!-- ## Configure Home Button
+<!-- ## Configure Home button
 >*Supported versions: Microsoft Edge on Windows 10*<br> -->
 >*Default setting: Disabled or not configured (Show home button and load the Start page)*
 
@@ -12,33 +12,28 @@
 |---|:---:|:---:|---|
 |Disabled or not configured<br>**(default)** |0 |0 |Show home button and load the Start page. |
 |Enabled |1 |1 |Show home button and load the New tab page. |
-|Enabled |2 |2 |Show home button and load the custom URL defined in the Set Home Button URL policy. |
+|Enabled |2 |2 |Show home button and load the custom URL defined in the Set Home button URL policy. |
 |Enabled |3 |3 |Hide home button. |
 ---
 
->[!TIP]
->If you want to make changes to this policy:<ol><li>Enable the **Unlock Home Button** policy.</li><li>Make changes to the **Configure Home Button** policy or **Set Home Button URL** policy.</li><li>Disable the **Unlock Home Button** policy.</li></ol>
-
-
-
 ### Configuration options
 
-![Show home button and load Start page or New tab page](../images/home-button-start-new-tab-page-v4-sm.png)
+For more details about configuring the different Home button options, see [Home button](../group-policies/home-button-gp.md).
 
-![Show home button and load custom URL](../images/home-buttom-custom-url-v4-sm.png)
+>[!TIP]
+>If you want to make changes to this policy:<ol><li>Enable the **Unlock Home Button** policy.</li><li>Make changes to the **Configure Home button** policy or **Set Home button URL** policy.</li><li>Disable the **Unlock Home Button** policy.</li></ol>
 
-![Hide home button](../images/home-button-hide-v4-sm.png)
 
 ### ADMX info and settings
 #### ADMX info
-- **GP English name:** Configure Home Button
+- **GP English name:** Configure Home button
 - **GP name:** ConfigureHomeButton
 - **GP element:** ConfigureHomeButtonDropdown
 - **GP path:** Windows Components/Microsoft Edge
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[ConfigureHomeButton](../new-policies.md#configure-home-button)
+- **MDM name:** Browser/[ConfigureHomeButton](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-configurehomebutton)
 - **Supported devices:** Desktop and Mobile
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/ConfigureHomeButton 
 - **Data type:** Integer

browsers/edge/includes/configure-microsoft-edge-kiosk-mode-include.md

@@ -26,7 +26,7 @@ For this policy to work, you must configure Microsoft Edge in assigned access; o
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[ConfigureKioskMode](../new-policies.md#configure-kiosk-mode)
+- **MDM name:** Browser/[ConfigureKioskMode](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-configurekioskmode)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/ConfigureKioskMode 
 - **Data type:** Integer

browsers/edge/includes/configure-open-edge-with-include.md

@@ -20,20 +20,14 @@
 |Enabled<br>**(default)** |3 |3 |Load a specific page or pages. |
 ---
 
+### Configuration options
+
+For more details about configuring the Start pages, see [Start pages](../group-policies/start-pages-gp.md).
+
+
 >[!TIP]
 >If you want to make changes to this policy:<ol><li>Set the **Disabled Lockdown of Start Pages** policy to not configured.</li><li>Make changes to the **Configure Open Microsoft With** policy.</li><li>Enable the **Disabled Lockdown of Start Pages** policy.</li></ol>
 
-### Configuration options
-| **Configure Open Microsoft Edge With** | **Configure Start Pages** | **Disabled Lockdown of Start Pages** | **Outcome** |
-| --- | --- | --- | --- |
-| Enabled (applies to all options) | Enabled – String | Enabled (all configured start pages are editable) | Load URLs defined in the Configure Open Microsoft Edge With policy, and allow users to make changes. |
-| Disabled or not configured | Enabled – String | Enabled (any Start page configured in the Configured Start Pages policy) |  Load any start page and let users make changes .|
-| Enabled (Start page) | Enabled – String | Blank or not configured | Load Start page(s) and prevent users from making changes. |
-| Enabled (New tab page) | Enabled – String | Blank or not configured | Load New tab page and prevent users from making changes. |
-| Enabled (Previous pages) | Enabled – String | Blank or not configured | Load previously opened pages and prevent users from making changes. |
-| Enabled (A specific page or pages) | Enabled – String | Blank or not configured | Load a specific page or pages and prevent users from making changes. |
-| Enabled (A specific page or pages) | Enabled – String | Enabled (any Start page configured in Configure Start Pages policy) | Load a specific page or pages and let users make changes. |
----
 
 
 ### ADMX info and settings
@@ -44,7 +38,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[ConfigureOpenEdgeWith](../new-policies.md#configure-open-microsoft-edge-with)
+- **MDM name:** Browser/[ConfigureOpenEdgeWith](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-configureopenmicrosoftedgewith)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/ConfigureOpenEdgeWith
 - **Data type:** Integer

browsers/edge/includes/configure-password-manager-include.md

@@ -1,6 +1,6 @@
 <!-- ## Configure Password Manager -->
 >*Supported versions: Microsoft Edge on Windows 10*<br>
->*Default setting:  Enabled (Allowed/users can change the setting)
+>*Default setting:  Enabled (Allowed/users can change the setting)*
 
 [!INCLUDE [configure-password-manager-shortdesc](../shortdesc/configure-password-manager-shortdesc.md)]
 

browsers/edge/includes/configure-start-pages-include.md

@@ -9,10 +9,12 @@
 |Group Policy  |MDM |Registry |Description |
 |---|:---:|:---:|---|
 |Not configured |Blank |Blank |Load the pages specified in App settings as the default Start pages. | 
-|Enabled |String |String |Enter the URLs of the pages you want to load as the Start pages, separating each page using angle brackets:<p>\<support.contoso.com\>\<support.microsoft.com\><p>**Version 1703 or later:**<br>If you do not want to send traffic to Microsoft, use the \<about:blank\> value, which honors both domain and non-domain-joined devices when it's the only configured URL.<p>**Version 1810:**<br>When you enable the Configure Open Microsoft Edge With policy with any option selected, and you enable the Configure Start Pages policy, the Configure Open Microsoft Edge With policy takes precedence, ignoring the Configure Start Pages policy.  | 
+|Enabled |String |String |Enter the URLs of the pages you want to load as the Start pages, separating each page using angle brackets:<p><p>&nbsp;&nbsp;&nbsp;&nbsp;\<support.contoso.com\>\<support.microsoft.com\><p>**Version 1703 or later:**<br>If you do not want to send traffic to Microsoft, use the \<about:blank\> value, which honors both domain and non-domain-joined devices when it's the only configured URL.<p>**Version 1810:**<br>When you enable the Configure Open Microsoft Edge With policy with any option selected, and you enable the Configure Start Pages policy, the Configure Open Microsoft Edge With policy takes precedence, ignoring the Configure Start Pages policy.  | 
 ---
 
+### Configuration options
 
+For more details about configuring the Start pages, see [Start pages](../group-policies/start-pages-gp.md).
 
 ### ADMX info and settings
 #### ADMX info

browsers/edge/includes/disable-lockdown-of-start-pages-include.md

@@ -12,6 +12,11 @@
 |Enabled |1 |1 |Unlocked. Users can make changes to all configured start pages.<p><p>When you enable this policy and define a set of URLs in the Configure Start Pages policy, Microsoft Edge uses the URLs defined in the Configure Open Microsoft Edge With policy. | |
 ---
 
+### Configuration options
+
+For more details about configuring the Start pages, see [Start pages](../group-policies/start-pages-gp.md).
+
+
 ### ADMX info and settings
 #### ADMX info
 - **GP English name:** Disable lockdown of Start pages
@@ -20,7 +25,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[DisableLockdownOfStartPages]()
+- **MDM name:** Browser/[DisableLockdownOfStartPages](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-disablelockdownofstartpages)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/DisableLockdownOfStartPages 
 - **Data type:** Integer
@@ -39,9 +44,8 @@
 
 - [Configure Open Microsoft Edge With](../new-policies.md#configure-open-microsoft-edge-with): [!INCLUDE [configure-open-microsoft-edge-with-shortdesc](../shortdesc/configure-open-microsoft-edge-with-shortdesc.md)]
 
-
 ### Related topics
 
-[Microsoft browser extension policy](aka.ms/browser policy)
+[!INCLUDE [browser-extension-policy-shortdesc-include](browser-extension-policy-shortdesc-include.md)]
 
 <hr>

browsers/edge/includes/do-not-sync-browser-settings-include.md

@@ -14,26 +14,9 @@
 
 ### Configuration options
 
-#### Sync the browser settings automatically:
-**Disable** both the Do not sync browser settings Prevent users from turning on browser syncing policies.
+For more details about configuring the browser syncing options, see [Sync browser settings](../group-policies/sync-browser-settings-gp.md).
 
-#### Prevent syncing of browser settings and prevent users from turning it on:
-1. **Enable** the Do not sync browser settings policy.
-2. **Enable** or don’t configure this policy (Prevented/turned off).
 
-#### Prevent syncing of browser settings and give users a choice to turn on syncing:
-1. **Enable** the Do not sync browser settings policy.
-2. **Disable** this policy (Allowed/turned on).
-
-#### Syncing turned off by default but not disabled:
-1. **Enable** the Do not sync browser setting policy.
-2. Select the _Allow users to turn “browser” syncing_ option.
-
-#### Verify configuration
-To verify if syncing is turned on or off:
-1. In the upper-right corner of Microsoft Edge, click the ellipses \(**...**\).
-2. Click **Settings**.
-3. Under Account, see if the setting is toggled on or off.<p>![Verify configuration](../images/sync-settings.PNG)
 
 
 ### ADMX info and settings

browsers/edge/includes/do-not-sync-include.md

@@ -13,10 +13,22 @@
 ---
 
 ### ADMX info and settings
-| |
-|---|
-|**ADMX info**<ul><li>**GP English name:** Do not sync</li><li>**GP name:** AllowSyncMySettings</li><li>**GP path:** Windows Components/Microsoft Edge</li><li>**GP ADMX file name:** MicrosoftEdge.admx</li></ul>**MDM settings**<ul><li>**MDM name:** Experience/[AllowSyncMySettings](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings)</li><li>**Supported devices:** Desktop</li><li>**URI full path:** ./Vendor/MSFT/Policy/Config/Experience/AllowSyncMySettings </li><li>**Data type:** Integer</li></ul>**Registry**<ul><li>**Path:** HKLM\Software\Policies\Microsoft\Windows\SettingSync</li><li>**Value name:** DisableSettingSync</li><li>**Value type:** REG_DWORD</li></ul>  |
----
+#### ADMX info
+- **GP English name:** Do not sync
+- **GP name:** AllowSyncMySettings
+- **GP path:** Windows Components/Sync your settings
+- **GP ADMX file name:** MicrosoftEdge.admx
+
+#### MDM settings
+- **MDM name:** Experience/[AllowSyncMySettings](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-experience#experience-allowsyncmysettings)
+- **Supported devices:** Desktop
+- **URI full path:** ./Vendor/MSFT/Policy/Config/Experience/AllowSyncMySettings
+- **Data type:** Integer
+
+#### Registry settings
+- **Path:** HKLM\Software\Policies\Microsoft\Windows\SettingSync
+- **Value name:** DisableSettingSyn
+- **Value type:** REG_DWORD
 
 ### Related topics 
 [About sync setting on Microsoft Edge on Windows 10 devices](http://windows.microsoft.com/windows-10/about-sync-settings-on-windows-10-devices): Learn about what settings are sync'ed.

browsers/edge/includes/keep-fav-sync-ie-edge-include.md

@@ -12,16 +12,6 @@
 |Enabled |1 |1 |Turned on/syncing.  |![Most restricted value](../images/check-gn.png) |
 ---
 
-### Configuration options
-### Configuration options
-| **Keep favorites in sync between IE and Microsoft Edge** | **Provision Favorites** | **Outcome** |
-| --- | --- | --- |
-| Disabled or not configured (default) | Disabled or not configured (default) | **Turned off/not syncing**. Microsoft Edge prevents users from syncing their favorites. |
-| Enabled (turned on/syncing) | Disabled or not configured (default) | **Turned on/syncing**. Syncs favorites between Internet Explorer and Microsoft Edge. |
-| Enabled (turned on/syncing) | Enabled (provision list of favorites) | **Turned off/not syncing**. Microsoft Edge prevents users from syncing their favorites. |
-| Disabled or not configured (default) | Enabled (provision list of Favorites) | **Turned on/syncing**. Syncs favorites between Internet Explorer and Microsoft Edge. |
----
-
 ### ADMX info and settings
 ### ADMX info
 - **GP English name:** Keep favorites in sync between Internet Explorer and Microsoft Edge 

browsers/edge/includes/prevent-certificate-error-overrides-include.md

@@ -18,13 +18,13 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[PreventCertErrorOverrides](../new-policies.md#prevent-certificate-error-overrides)
+- **MDM name:** Browser/[PreventCertErrorOverrides](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-preventcerterroroverrides)
 - **Supported devices:** Desktop and Mobile
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/PreventCertErrorOverrides 
 - **Data type:** Integer
 
 #### Registry settings
-- **Path:** Software\Policies\Microsoft\MicrosoftEdge\Internet Setting
+- **Path:** HKLM\Software\Policies\Microsoft\MicrosoftEdge\Internet Setting
 - **Value name:** PreventCertErrorOverrides
 - **Value type:** REG_DWORD
 

browsers/edge/includes/prevent-live-tile-pinning-start-include.md

@@ -1,6 +1,6 @@
 <!-- ## Prevent Microsoft Edge from gathering Live Tile information when pinning a site to Start -->
 >*Supported versions: Microsoft Edge on Windows 10, version 1703 or later*<br>
->*Default setting:  Disabled or not configured (Collected and sent)*
+>*Default setting:  Disabled or not configured (Collect and send)*
 
 [!INCLUDE [prevent-edge-from-gathering-live-tile-info-shortdesc](../shortdesc/prevent-edge-from-gathering-live-tile-info-shortdesc.md)]
 
@@ -9,7 +9,7 @@
 |Group Policy  |MDM |Registry |Description |Most restricted |
 |---|:---:|:---:|---|:---:|
 |Disabled or not configured<br>**(default)** |0 |0 |Collect and send Live Tile metadata. | |
-|Enabled |1 |1 |Not collected and sent. |![Most restricted value](../images/check-gn.png) |
+|Enabled |1 |1 |Do not collect. |![Most restricted value](../images/check-gn.png) |
 ---
 
 ### ADMX info and settings
@@ -26,8 +26,8 @@
 - **Data type:** Integer
 
 #### Registry settings
-**<ul><li>**Path:** HKLM\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main
-**Value name:** PreventLiveTileDataCollection
-**Value type:** REG_DWORD
+- **Path:** HKLM\SOFTWARE\Policies\Microsoft\MicrosoftEdge\Main
+- **Value name:** PreventLiveTileDataCollection
+- **Value type:** REG_DWORD
 
 <hr>

browsers/edge/includes/prevent-localhost-address-for-webrtc-include.md

@@ -8,7 +8,7 @@
 
 |Group Policy  |MDM |Registry |Description |Most restricted |
 |---|:---:|:---:|---|:---:|
-|Disabled or not configured<br>**(default)** |0 |0 |Allowed. Shows localhost IP addresses. | |
+|Disabled or not configured<br>**(default)** |0 |0 |Allowed. Show localhost IP addresses. | |
 |Enabled |1 |1 |Prevented. |![Most restricted value](../images/check-gn.png) |
 ---
 

browsers/edge/includes/prevent-users-to-turn-on-browser-syncing-include.md

@@ -13,14 +13,9 @@
 ---
 
 ### Configuration options
-<!-- put the grids in a document that categorizes the policies  -->
-| **Do not sync browser settings** | **Prevent users from turning on browser syncing** | **Result** |
-| --- | --- | --- |
-| Disabled or not configured (0 default) – Turned on. Let users make changes | Disabled (0 default) | Sync browser settings automatically. |
-| Disabled or not configured (0 default) – Turned on. Let users make changes | Enabled or not configured (1) | Sync browser settings automatically. |
-| Enabled (2) – Prevented/turned off  | Disabled (0 default) | Prevent syncing of browser settings and let users choose to turn it on. |
-| Enabled (2) – Turned off | Enabled or not configured (1) | Prevent syncing of browser settings and prevents users from turning on syncing. |
----
+
+For more details about configuring the browser syncing options, see [Sync browser settings](../group-policies/sync-browser-settings-gp.md).
+
 
 ### ADMX info and settings
 #### ADMX info

browsers/edge/includes/provision-favorites-include.md

@@ -15,15 +15,6 @@
 |Enabled |Define a default list of favorites in Microsoft Edge. In this case, the Save a Favorite, Import settings, and context menu options (such as Create a new folder) are turned off.<p>To define a default list of favorites, do the following:<ol><li>In the upper-right corner of Microsoft Edge, click the ellipses (**...**) and select **Settings**.</li><li>Click **Import from another browser**, click **Export to file**, and save the file.</li><li>In the **Options** section of the Group Policy Editor, provide the location that points the file with the list of favorites to provision.  Specify the URL as: <ul><li>HTTP location: "SiteList"=http://localhost:8080/URLs.html</li><li>Local network: "SiteList"="\network\shares\URLs.html"</li><li>Local file: "SiteList"=file:///c:\Users\\Documents\URLs.html</li></ul></li></ol> |![Most restricted value](../images/check-gn.png) | 
 ---
 
-### Configuration options
-| **Keep favorites in sync between IE and Microsoft Edge** | **Provision Favorites** | **Results** |
-| --- | --- | --- |
-| Disabled or not configured (default) | Disabled or not configured (default) | **Turned off/not syncing**. Microsoft Edge prevents users from syncing their favorites. |
-| Enabled (turned on/syncing) | Disabled or not configured (default) | **Turned on/syncing**. Syncs favorites between Internet Explorer and Microsoft Edge. |
-| Enabled (turned on/syncing) | Enabled (provision list of favorites) | **Turned off/not syncing**. Microsoft Edge prevents users from syncing their favorites. |
-| Disabled or not configured (default) | Enabled (provision list of Favorites) | **Turned on/syncing**. Syncs favorites between Internet Explorer and Microsoft Edge. |
----
-
 ### ADMX info and settings
 #### ADMX info
 - **GP English name:** Provision Favorites

browsers/edge/includes/send-all-intranet-sites-ie-include.md

@@ -13,11 +13,9 @@
 |Group Policy  |MDM |Registry |Description |Most restricted |
 |---|:---:|:---:|---|:---:|
 |Disabled or not configured<br>**(default)** |0 |0 |All sites, including intranet sites, open in Microsoft Edge automatically. |![Most restricted value](../images/check-gn.png) |
-|Enabled |1 |1 |Only intranet sites open in Internet Explorer 11 automatically.<p>Enabling this policy automatically opens all intranet sites in IE11, even if the users have Microsoft Edge as their default browser.<ol><li>In Group Policy Editor, navigate to:<br>**Computer Configuration\\Administrative Templates\\Windows Components\\File Explorer\\Set a default associations configuration file**</li><li>Click **Enabled** and then refresh the policy and then vew the affected sites in Microsoft Edge.<br><br>A message displays saying that the page needs to open in IE. At the same time, the page opens in IE11 automatically; in a new frame if it is not yet running, or in a new tab.</li></ol>| |
+|Enabled |1 |1 |Only intranet sites open in Internet Explorer 11 automatically.<p><p>Enabling this policy automatically opens all intranet sites in IE11, even if the users have Microsoft Edge as their default browser.<ol><li>In Group Policy Editor, navigate to:<br><br>**Computer Configuration\\Administrative Templates\\Windows Components\\File Explorer\\Set a default associations configuration file**<p></li><li>Click **Enabled**, refresh the policy, and then view the affected sites in Microsoft Edge.<p><p>A message displays saying that the page needs to open in IE. At the same time, the page opens in IE11 automatically; in a new frame if it is not yet running, or in a new tab.</li></ol>| |
 ---
 
-### Configuration options
-
 
 ### ADMX info and settings
 #### ADMX info

browsers/edge/includes/set-home-button-url-include.md

@@ -1,4 +1,4 @@
-<!-- ## Set Home Button URL
+<!-- ## Set Home button URL
 >*Supported versions: Microsoft Edge on Windows 10, next major version*<br> -->
 >*Default setting: Disabled or not configured (Blank)*
 
@@ -9,35 +9,25 @@
 |Group Policy  |MDM |Registry |Description |
 |---|:---:|:---:|---|
 |Disabled or not configured<br>**(default)** |Blank |Blank |Show the home button and loads the Start page and locks down the home button to prevent users from changing what page loads. |
-|Enabled - String |String |String |A custom URL loads when clicking the home button.  You must also enable the [Configure Home Button](../new-policies.md#configure-home-button) policy and select the _Show home button & set a specific page_ option.<p>Enter a URL in string format, for example, https://www.msn.com.   |
+|Enabled - String |String |String |Load a custom URL for the home button. You must also enable the [Configure Home button](../new-policies.md#configure-home-button) policy and select the _Show home button & set a specific page_ option.<p>Enter a URL in string format, for example, https://www.msn.com.   |
 ---
 
+
 ### Configuration options
 
-#### Show the home button, load a custom URL, and let users make changes:
-1. **Configure Home Button:** Enable and select the _Show the home button & set a specific page_ option.
-2. **Set Home Button URL:** Enter a URL in string format, for example, https://www.bing.com. 
-3. **Unlock Home Button:** Enable to let users make changes.
-
-#### Show the home button, load a custom URL, and prevent users from making changes:
-1. **Configure Home Button:** Enable and select the _Show the home button & set a specific page_ option.
-2. **Set Home Button URL:** Enter a URL in string format, for example, https://www.bing.com.
-3. **Unlock Home Button:** Leave disabled or not configured.
-
-#### Hide the home button:
-Enable the **Configure Home Button** policy and select the _Hide home button_ option.
+For more details about configuring the different Home button options, see [Home button](../group-policies/home-button-gp.md).
 
 
 ### ADMX info and settings
 #### ADMX info
-- **GP English name:** Set Home Button URL
+- **GP English name:** Set Home button URL
 - **GP name:** SetHomeButtonURL
 - **GP element:** SetHomeButtonURLPrompt
 - **GP path:** Windows Components/Microsoft Edge
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[SetHomeButtonURL](../new-policies.md#set-home-button-url)
+- **MDM name:** Browser/[SetHomeButtonURL](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-sethomebuttonurl)
 - **Supported devices:** Desktop and Mobile
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/SetHomeButtonURL 
 - **Data type:** String
@@ -49,7 +39,7 @@ Enable the **Configure Home Button** policy and select the _Hide home button_ op
 
 ### Related policies
 
-- [Configure Home Button](../new-policies.md#configure-home-button): [!INCLUDE [configure-home-button-shortdesc](../shortdesc/configure-home-button-shortdesc.md)]
+- [Configure Home button](../new-policies.md#configure-home-button): [!INCLUDE [configure-home-button-shortdesc](../shortdesc/configure-home-button-shortdesc.md)]
 
 - [Unlock Home button](../new-policies.md#unlock-home-button): [!INCLUDE [unlock-home-button-shortdesc](../shortdesc/unlock-home-button-shortdesc.md)]
 

browsers/edge/includes/set-new-tab-url-include.md

@@ -20,7 +20,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[SetNewTabPageURL](../new-policies.md#set-new-tab-page-url)
+- **MDM name:** Browser/[SetNewTabPageURL](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-setnewtabpageurl)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/SetNewTabPageURL 
 - **Data type:** String

browsers/edge/includes/show-message-opening-sites-ie-include.md

@@ -22,7 +22,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[ShowMessageWhenOpeningSitesInInternetExplorer](../new-policies.md#show-message-when-opening-sites-in-internet-explorer)
+- **MDM name:** Browser/[ShowMessageWhenOpeningSitesInInternetExplorer](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-showmessagewhenopeningsitesininternetexplorer)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/ShowMessageWhenOpeningSitesInInternetExplorer
 - **Data type:** Integer

browsers/edge/includes/unlock-home-button-include.md

@@ -12,6 +12,11 @@
 |Enabled |1 |1 |Let users make changes. | 
 ---
 
+
+### Configuration options
+
+For more details about configuring the different Home button options, see [Home button](../group-policies/home-button-gp.md).
+
 ### ADMX info and settings
 #### ADMX info
 - **GP English name:** Unlock Home Button
@@ -20,7 +25,7 @@
 - **GP ADMX file name:** MicrosoftEdge.admx
 
 #### MDM settings
-- **MDM name:** Browser/[UnlockHomeButton](../new-policies.md#unlock-home-button)
+- **MDM name:** Browser/[UnlockHomeButton](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-unlockhomebutton)
 - **Supported devices:** Desktop
 - **URI full path:** ./Vendor/MSFT/Policy/Config/Browser/UnlockHomeButton
 - **Data type:** Integer
@@ -32,7 +37,7 @@
 
 ### Related policies
 
-- [Configure Home Button](../new-policies.md#configure-home-button): [!INCLUDE [configure-home-button-shortdesc](../shortdesc/configure-home-button-shortdesc.md)] 
+- [Configure Home button](../new-policies.md#configure-home-button): [!INCLUDE [configure-home-button-shortdesc](../shortdesc/configure-home-button-shortdesc.md)] 
  
 - [Set Home button URL](../new-policies.md#set-home-button-url): [!INCLUDE [set-home-button-url-shortdesc](../shortdesc/set-home-button-url-shortdesc.md)]
 

browsers/edge/microsoft-edge-kiosk-mode-deploy.md

@@ -128,6 +128,8 @@ With this method, you can use a provisioning package to configure Microsoft Edge
 
 **_Next steps._** Use your new kiosk. Sign in to the device using the user account that you selected to run the kiosk app.
 
+---
+
 ## Relevant policies
 
 Use any of the Microsoft Edge policies listed below to enhance the kiosk experience depending on the Microsoft Edge kiosk mode type you configure. To learn more about these policies, see [Policy CSP - Browser](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser).
@@ -202,6 +204,7 @@ Use any of the Microsoft Edge policies listed below to enhance the kiosk experie
 &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ![Not supported](images/148766.png) = Not applicable or not supported <br>
 &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ![Supported](images/148767.png) = Supported
 
+---
 
 ## Related topics
 
@@ -223,6 +226,8 @@ Use any of the Microsoft Edge policies listed below to enhance the kiosk experie
 
 -   **[Create a provisioning page for Windows 10](https://docs.microsoft.com/en-us/windows/configuration/provisioning-packages/provisioning-create-package):** Learn to use Windows Configuration Designer (WCD) to create a provisioning package (.ppkg) for configuring devices running Windows 10. The WCD wizard options provide a simple interface to configure desktop, mobile, and kiosk device settings.
 
+---
+
 ## Known issues with RS_PRERELEASE build 17713+
 
 - When you set up Microsoft Edge kiosk mode on a single-app kiosk device you must set the “ConfigureKioskMode” policy because the default behavior is not honored. 
@@ -241,6 +246,7 @@ Use any of the Microsoft Edge policies listed below to enhance the kiosk experie
     - **Expected behavior** – Books are disabled in _Settings and more_ menu. 
     - **Actual behavior** – Books are accessible in _Settings and more_ menu.
 
+---
 
 ## Provide feedback or get support
 
@@ -248,6 +254,8 @@ To provide feedback on Microsoft Edge kiosk mode in Feedback Hub, select **Micro
 
 **_For multi-app kiosk only._** If you have set up the Feedback Hub in assigned access, you can you submit the feedback from the device running Microsoft Edge in kiosk mode in which you can include diagnostic logs. In the Feedback Hub, select **Microsoft Edge** as the **Category**, and **All other issues** as the subcategory.
 
+---
+
 ## Feature comparison of kiosk mode and kiosk browser app
 In the following table, we show you the features available in both Microsoft Edge kiosk mode and Kiosk Browser app available in Microsoft Store. Both kiosk mode and kiosk browser app work in assigned access.
 

browsers/edge/new-policies.md

@@ -24,7 +24,7 @@ We are discontinuing the use of the **Configure Favorites** group policy. Use th
 
 >You can find the Microsoft Edge Group Policy settings in the following location of the Group Policy Editor:
 > 
->>      *Computer Configuration\\Administrative Templates\\Windows Components\\Microsoft Edge\\*
+>      **_Computer Configuration\\Administrative Templates\\Windows Components\\Microsoft Edge\\_**
 <p>
 <!-- add links to the below policies -->
 
@@ -40,7 +40,7 @@ We are discontinuing the use of the **Configure Favorites** group policy. Use th
 | [Allow web content on new tab page](available-policies.md#allow-web-content-on-new-tab-page) | -- | [AllowWebContentOnNewTabPage](https://docs.microsoft.com/en-us/windows/client-management/mdm/policy-csp-browser#browser-allowwebcontentonnewtabpage) | New |
 | [Configure collection of browsing data for Microsoft 365 Analytics](#configure-collection-of-browsing-data-for-microsoft-365-analytics) | New | ConfigureTelemetryForMicrosoft365Analytics | New |
 | [Configure Favorites Bar](#configure-favorites-bar) | New | ConfigureFavoritesBar | New |
-| [Configure Home Button](#configure-home-button) | New | ConfigureHomeButton | New |
+| [Configure Home button](#configure-home-button) | New | ConfigureHomeButton | New |
 | [Configure kiosk mode](#configure-kiosk-mode) | New |  ConfigureKioskMode | New |
 | [Configure kiosk reset after idle timeout](#configure-kiosk-reset-after-idle-timeout) | New |  ConfigureKioskResetAfterIdleTimeout | New |
 | [Configure Open Microsoft Edge With](#configure-open-microsoft-edge-with) | New | ConfigureOpenMicrosoftEdgeWith | New |
@@ -82,7 +82,7 @@ We are discontinuing the use of the **Configure Favorites** group policy. Use th
 ## Configure Favorites Bar
 [!INCLUDE [configure-favorites-bar-include.md](includes/configure-favorites-bar-include.md)]
 
-## Configure Home Button
+## Configure Home button
 [!INCLUDE [configure-home-button-include.md](includes/configure-home-button-include.md)]
 
 ## Configure kiosk mode

browsers/edge/shortdesc/allow-prelaunch-shortdesc.md

@@ -1 +1 @@
-Microsoft Edge pre-launches during Windows startup when the system is idle, and each time Microsoft Edge closes by default. When Microsoft Edge pre-launches, it runs as a background process waiting to be launched by the user. Pre-launching helps the performance of Microsoft Edge and minimizes the amount of time required to start up Microsoft Edge. With this policy, you can configure Microsoft Edge to prevent Microsoft Edge from pre-launching.
+Microsoft Edge pre-launches as a background process during Windows startup when the system is idle waiting to be launched by the user.  Pre-launching helps the performance of Microsoft Edge and minimizes the amount of time required to start up Microsoft Edge. You can also configure Microsoft Edge to prevent Microsoft Edge from pre-launching.

browsers/edge/shortdesc/configure-additional-search-engines-shortdesc.md

@@ -1 +1 @@
-By default, users cannot add, remove, or change any of the search engines in Microsoft Edge, but they can set a default search engine. You can set the default search engine using the [[Set default search engine]](../available-policies.md#set-default-search-engine) policy. With this policy, you can configure up to five additional search engines and set any one of them as the default. If you previously enabled this policy and now want to disable it, disabling deletes all configured search engines. 
+By default, users cannot add, remove, or change any of the search engines in Microsoft Edge, but they can set a default search engine. You can set the default search engine using the Set default search engine policy. With this policy, you can configure up to five additional search engines and set any one of them as the default. If you previously enabled this policy and now want to disable it, disabling deletes all configured search engines. 

browsers/edge/shortdesc/configure-home-button-shortdesc.md

@@ -1 +1 @@
-Microsoft Edge shows the home button and by clicking it the Start page loads by default. With this policy, you can configure the Home button to load the New tab page or a URL defined in the Set Home Button URL policy. You can also configure Microsoft Edge to hide the home button. 
+Microsoft Edge shows the home button and by clicking it the Start page loads by default. With this policy, you can configure the Home button to load the New tab page or a URL defined in the Set Home button URL policy. You can also configure Microsoft Edge to hide the home button. 

browsers/edge/shortdesc/set-home-button-url-shortdesc.md

@@ -1 +1 @@
-By default, Microsoft Edge shows the home button and loads the Start page, and locks down the home button to prevent users from changing what page loads. Enabling this policy loads a custom URL for the home button. When you enable this policy, and enable the Configure Home Button policy with the _Show home button & set a specific page_ option selected, a custom URL loads when the user clicks the home button.
+By default, Microsoft Edge shows the home button and loads the Start page, and locks down the home button to prevent users from changing what page loads. Enabling this policy loads a custom URL for the home button. When you enable this policy, and enable the Configure Home button policy with the _Show home button & set a specific page_ option selected, a custom URL loads when the user clicks the home button.

browsers/edge/shortdesc/unlock-home-button-shortdesc.md

@@ -1 +1 @@
-By default, when you enable the Configure Home Button policy or provide a URL in the Set Home Button URL policy, Microsoft Edge locks down the home button to prevent users from changing the settings.  When you enable this policy, users can make changes to the home button even if you enabled the Configure Home Button or Set Home Button URL policies. 
+By default, when you enable the Configure Home button policy or provide a URL in the Set Home button URL policy, Microsoft Edge locks down the home button to prevent users from changing the settings.  When you enable this policy, users can make changes to the home button even if you enabled the Configure Home button or Set Home button URL policies. 

browsers/internet-explorer/ie11-deploy-guide/install-problems-with-ie11.md

@@ -48,7 +48,7 @@ If you get an error during the Windows Update process, see [Fix the problem with
 
 5.  Try to reinstall IE11 from either Windows Update (if you saw it in Step 3) or from the [Download Internet Explorer 11](https://go.microsoft.com/fwlink/p/?linkid=327753) website.
 
-If these steps didn't fix your problem, see [Troubleshooting a failed installation of Internet Explorer 11](https://go.microsoft.com/fwlink/p/?LinkId=304130).
+
 
  
 

windows/client-management/mdm/policy-configuration-service-provider.md

@@ -534,9 +534,6 @@ The following diagram shows the Policy configuration service provider in tree fo
   <dd>
     <a href="./policy-csp-browser.md#browser-preventsmartscreenpromptoverrideforfiles" id="browser-preventsmartscreenpromptoverrideforfiles">Browser/PreventSmartScreenPromptOverrideForFiles</a>
   </dd>
-  <dd>
-    <a href="./policy-csp-browser.md#browser-preventtabpreloading" id="browser-preventtabpreloading">Browser/PreventTabPreloading</a>
-  </dd>
   <dd>
     <a href="./policy-csp-browser.md#browser-preventusinglocalhostipaddressforwebrtc" id="browser-preventusinglocalhostipaddressforwebrtc">Browser/PreventUsingLocalHostIPAddressForWebRTC</a>
   </dd>
@@ -4098,7 +4095,6 @@ The following diagram shows the Policy configuration service provider in tree fo
 -   [Browser/PreventLiveTileDataCollection](./policy-csp-browser.md#browser-preventlivetiledatacollection)
 -   [Browser/PreventSmartScreenPromptOverride](./policy-csp-browser.md#browser-preventsmartscreenpromptoverride)
 -   [Browser/PreventSmartScreenPromptOverrideForFiles](./policy-csp-browser.md#browser-preventsmartscreenpromptoverrideforfiles)
--   [Browser/PreventTabPreloading](./policy-csp-browser.md#browser-preventtabpreloading)
 -   [Browser/PreventUsingLocalHostIPAddressForWebRTC](./policy-csp-browser.md#browser-preventusinglocalhostipaddressforwebrtc)
 -   [Browser/ProvisionFavorites](./policy-csp-browser.md#browser-provisionfavorites)
 -   [Browser/SendIntranetTraffictoInternetExplorer](./policy-csp-browser.md#browser-sendintranettraffictointernetexplorer)

windows/security/identity-protection/hello-for-business/hello-hybrid-key-whfb-settings-policy.md

@@ -25,7 +25,7 @@ Install the Remote Server Administration Tools for Windows 10 on a computer runn
 
 Alternatively, you can create copy the .ADMX and .ADML files from a Windows 10 Creators Edition (1703) to their respective language folder on a Windows Server or you can create a Group Policy Central Store and copy them their respective language folder. See [How to create and manage the Central Store for Group Policy Administrative Templates in Windows](https://support.microsoft.com/help/3087759/how-to-create-and-manage-the-central-store-for-group-policy-administrative-templates-in-windows) for more information.
 
-Domain controllers of Windows Hello for Business deployments need one Group Policy setting, which enables automatic certificate enrollment for the newly create domain controller authentication certificate. This policy setting ensures domain controllers (new and existing) autoamtically request and renew the correct domain controller certifcate.  
+Domain controllers of Windows Hello for Business deployments need one Group Policy setting, which enables automatic certificate enrollment for the newly create domain controller authentication certificate. This policy setting ensures domain controllers (new and existing) automatically request and renew the correct domain controller certificate.  
 
 Hybrid Azure AD joined devices needs one Group Policy settings:
 * Enable Windows Hello for Business
@@ -36,7 +36,7 @@ Domain controllers automatically request a certificate from the *Domain Controll
 
 To continue automatic enrollment and renewal of domain controller certificates that understand newer certificate template and superseded certificate template configurations, create and configure a Group Policy object for automatic certificate enrollment and link the Group Policy object to the Domain Controllers OU.
 
-#### Create a Domain Controller Automatic Certifiacte Enrollment Group Policy object
+#### Create a Domain Controller Automatic Certificate Enrollment Group Policy object
 
 Sign-in a domain controller or management workstations with _Domain Admin_ equivalent credentials.
 
@@ -47,7 +47,7 @@ Sign-in a domain controller or management workstations with _Domain Admin_ equiv
 5.	Right-click the **Domain Controller Auto Certificate Enrollment** Group Policy object and click **Edit**.
 6.	In the navigation pane, expand **Policies** under **Computer Configuration**.
 7.	Expand **Windows Settings**, **Security Settings**, and click **Public Key Policies**.
-8.	In the details pane, right-click **Certificate Services Client <EFBFBD> Auto-Enrollment** and select **Properties**.
+8.	In the details pane, right-click **Certificate Services Client - Auto-Enrollment** and select **Properties**.
 9.	Select **Enabled** from the **Configuration Model** list.
 10.	Select the **Renew expired certificates**, **update pending certificates**, and **remove revoked certificates** check box.
 11.	Select the **Update certificates that use certificate templates** check box.
@@ -58,7 +58,7 @@ Sign-in a domain controller or management workstations with _Domain Admin_ equiv
 Sign-in a domain controller or management workstations with _Domain Admin_ equivalent credentials.
 
 1.	Start the **Group Policy Management Console** (gpmc.msc)
-2.	In the navigation pane, expand the domain and expand the node that has your Active Directory domain name.  Right-click the **Domain Controllers** organizational unit and click **Link an existing GPO<EFBFBD>**
+2.	In the navigation pane, expand the domain and expand the node that has your Active Directory domain name.  Right-click the **Domain Controllers** organizational unit and click **Link an existing GPO**
 3.	In the **Select GPO** dialog box, select **Domain Controller Auto Certificate Enrollment** or the name of the domain controller certificate enrollment Group Policy object you previously created and click **OK**.
 
 ### Windows Hello for Business Group Policy
@@ -100,16 +100,16 @@ The best way to deploy the Windows Hello for Business Group Policy object is to
 
 The application of the Windows Hello for Business Group Policy object uses security group filtering.  This enables you to link the Group Policy object at the domain, ensuring the Group Policy object is within scope to all users. However, the security group filtering ensures only the users included in the *Windows Hello for Business Users* global group receive and apply the Group Policy object, which results in the provisioning of Windows Hello for Business.
 1. Start the **Group Policy Management Console** (gpmc.msc)
-2. In the navigation pane, expand the domain and right-click the node that has your Active Directory domain name and click **Link an existing GPO<EFBFBD>**
+2. In the navigation pane, expand the domain and right-click the node that has your Active Directory domain name and click **Link an existing GPO**
 3. In the **Select GPO** dialog box, select **Enable Windows Hello for Business** or the name of the Windows Hello for Business Group Policy object you previously created and click **OK**.
 
-Just to reassure, linking the **Windows Hello for Business** Group Policy object to the domain ensures the Group Policy object is in scope for all domain users. However, not all users will have the policy settings applied to them. Only users who are members of the Windows Hello for Business group receive the policy settings. All others users ignore the Group Policy object. 
+Just to reassure, linking the **Windows Hello for Business** Group Policy object to the domain ensures the Group Policy object is in scope for all domain users. However, not all users will have the policy settings applied to them. Only users who are members of the Windows Hello for Business group receive the policy settings. All other users ignore the Group Policy object. 
 
 ## Other Related Group Policy settings
 
 ### Windows Hello for Business
 
-There are other Windows Hello for Business policy settings you can configure to manage your Windows Hello for Business deployment.  These policy settings are computer-based policy setting; so they are applicable to any user that sign-in from a computer with these policy settings. 
+There are other Windows Hello for Business policy settings you can configure to manage your Windows Hello for Business deployment.  These policy settings are computer-based policy setting so they are applicable to any user that sign-in from a computer with these policy settings. 
 
 #### Use a hardware security device
 
@@ -117,7 +117,7 @@ The default configuration for Windows Hello for Business is to prefer hardware p
 
 You can enable and deploy the **Use a hardware security device** Group Policy Setting to force Windows Hello for Business to only create hardware protected credentials.  Users that sign-in from a computer incapable of creating a hardware protected credential do not enroll for Windows Hello for Business.
 
-Another policy setting becomes available when you enable the **Use a hardware security device** Group Policy setting that enables you to prevent Windows Hello for Business enrollment from using version 1.2 Trusted Platform Modules (TPM). Version 1.2 TPMs typically perform cryptographic operations slower than version 2.0 TPMs and are more unforgiven during anti-hammering and PIN lockout activities. Therefore, some organization may want not want slow sign-in performance and management overhead associated with version 1.2 TPMs. To prevent Windows Hello for Business from using version 1.2 TPMs, simply select the TPM 1.2 check box after you enable the Use a hardware security device Group Policy object.
+Another policy setting becomes available when you enable the **Use a hardware security device** Group Policy setting that enables you to prevent Windows Hello for Business enrollment from using version 1.2 Trusted Platform Modules (TPM). Version 1.2 TPMs typically perform cryptographic operations slower than version 2.0 TPMs and are more unforgiven during anti-hammering and PIN lockout activities. Therefore, some organization may not want slow sign-in performance and management overhead associated with version 1.2 TPMs. To prevent Windows Hello for Business from using version 1.2 TPMs, simply select the TPM 1.2 check box after you enable the Use a hardware security device Group Policy object.
 
 #### Use biometrics
 
@@ -144,7 +144,7 @@ Windows 10 provides eight PIN Complexity Group Policy settings that give you gra
 
 ## Add users to the Windows Hello for Business Users group
 
-Users must receive the Windows Hello for Business group policy settings and have the proper permission to provision  Windows Hello for Business . You can provide users with these settings and permissions by adding the users or groups to the **Windows Hello for Business Users** group.   Users and groups who are not members of this group will not attempt to enroll for Windows Hello for Business.
+Users must receive the Windows Hello for Business group policy settings and have the proper permission to provision  Windows Hello for Business. You can provide users with these settings and permissions by adding the users or groups to the **Windows Hello for Business Users** group.   Users and groups who are not members of this group will not attempt to enroll for Windows Hello for Business.
 
 ### Section Review
 > [!div class="checklist"]
@@ -168,4 +168,4 @@ Users must receive the Windows Hello for Business group policy settings and have
 4. [Configure Directory Synchronization](hello-hybrid-key-trust-dirsync.md)
 5. [Configure Azure Device Registration](hello-hybrid-key-trust-devreg.md)
 6. Configure Windows Hello for Business policy settings (*You are here*)
-7. [Sign-in and Provision](hello-hybrid-key-whfb-provision.md)
+7. [Sign-in and Provision](hello-hybrid-key-whfb-provision.md)