From 334c3d689d616d0ff352eba56ef33715eb2c3ff8 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 18 May 2020 15:38:01 -0700
Subject: [PATCH] Update configure-automated-investigations-remediation.md

---
 ...configure-automated-investigations-remediation.md | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md b/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md
index fbead5d7a2..649c28d6a0 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-automated-investigations-remediation.md
@@ -35,7 +35,7 @@ Automated investigation and remediation capabilities mimic the ideal steps that
 
 ## Configure automated investigation and remediation capabilities
 
-To configure automated investigation and remediation, you turn the features on, and then you set up machine groups.
+To configure automated investigation and remediation, you turn the features on, and then you set up device groups.
 
 ### Turn on automated investigation and remediation
 
@@ -44,9 +44,13 @@ To configure automated investigation and remediation, you turn the features on,
 3. In the **General** section, select **Advanced features**.
 4. Turn on both **Automated Investigation** and **Automatically resolve alerts**.
 
-### Set up machine groups
+### Set up device groups
 
-1. In the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)), on the **Settings** page, under **Permissions**, select **Machine groups**.
-2. Select **+ Add machine group**, and create at least one machine group. In the **Automation level list**, select **Full – remediate threats automatically**.
+1. In the Microsoft Defender Security Center ([https://securitycenter.windows.com](https://securitycenter.windows.com)), on the **Settings** page, under **Permissions**, select **Device groups**.
+2. Select **+ Add machine group**.
+3. Create at least one device group, as follows:
+   - Specify a name and description for the device group.
+   - In the **Automation level list**, select a level, such as **Full – remediate threats automatically**.
+   - 
 
 The automation level determines whether remediation actions are taken automatically, or only upon approval. To learn more, see [How threats are remediated](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/automated-investigations#how-threats-are-remediated).
\ No newline at end of file