From 391ba7a0a7270b5f0c1b254fdc53f49d9162c67f Mon Sep 17 00:00:00 2001
From: gkomatsu <gkomatsu@microsoft.com>
Date: Fri, 5 Nov 2021 08:14:50 -0700
Subject: [PATCH 1/7] Removed table from deprecated policy

security/allowautomaticdeviceencryptionforazureadjoineddevices was deprecated in Windows 10. Removed support table to avoid confusion
---
 .../mdm/policy-csp-security.md                | 38 +------------------
 1 file changed, 1 insertion(+), 37 deletions(-)
diff --git a/windows/client-management/mdm/policy-csp-security.md b/windows/client-management/mdm/policy-csp-security.md
index dc8d037b70..7d3222a08b 100644
--- a/windows/client-management/mdm/policy-csp-security.md
+++ b/windows/client-management/mdm/policy-csp-security.md
@@ -123,42 +123,6 @@ The following list shows the supported values:
 <!--Policy-->
 <a href="" id="security-allowautomaticdeviceencryptionforazureadjoineddevices"></a>**Security/AllowAutomaticDeviceEncryptionForAzureADJoinedDevices**  
 
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Edition</th>
-    <th>Windows 10</th>
-    <th>Windows 11</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td>No</td>
-    <td>No</td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td>Yes</td>
-    <td>Yes</td>
-</tr>
-<tr>
-    <td>Business</td>
-
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td>Yes</td>
-    <td>Yes</td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td>Yes</td>
-    <td>Yes</td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
 <!--Description-->
 > [!NOTE]
 > This policy has been deprecated in Windows 10, version 1607
@@ -764,4 +728,4 @@ The following list shows the supported values:
 <hr/>
 
 
-<!--/Policies-->
\ No newline at end of file
+<!--/Policies-->

From 11424f66c1885b35d22b0e174972f042af725f41 Mon Sep 17 00:00:00 2001
From: Paul Huijbregts <30799281+pahuijbr@users.noreply.github.com>
Date: Fri, 5 Nov 2021 09:57:24 -0700
Subject: [PATCH 2/7] Update policy-csp-defender.md

Remove deprecated setting AllowIntrusionPreventionSystem
---
 .../mdm/policy-csp-defender.md                | 74 +------------------
 1 file changed, 1 insertion(+), 73 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-defender.md b/windows/client-management/mdm/policy-csp-defender.md
index fddac52c0c..56cd9f6c18 100644
--- a/windows/client-management/mdm/policy-csp-defender.md
+++ b/windows/client-management/mdm/policy-csp-defender.md
@@ -43,9 +43,6 @@ manager: dansimp
   <dd>
     <a href="#defender-allowioavprotection">Defender/AllowIOAVProtection</a>
   </dd>
-  <dd>
-    <a href="#defender-allowintrusionpreventionsystem">Defender/AllowIntrusionPreventionSystem</a>
-  </dd>
   <dd>
     <a href="#defender-allowonaccessprotection">Defender/AllowOnAccessProtection</a>
   </dd>
@@ -690,75 +687,6 @@ The following list shows the supported values:
 
 <hr/>
 
-<!--Policy-->
-<a href="" id="defender-allowintrusionpreventionsystem"></a>**Defender/AllowIntrusionPreventionSystem**  
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Edition</th>
-    <th>Windows 10</th>
-    <th>Windows 11</th> 
-</tr>
-<tr>
-    <td>Home</td>
-    <td>Yes</td>
-    <td>Yes</td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td>Yes</td>
-    <td>Yes</td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td>Yes</td>
-    <td>Yes</td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td>Yes</td>
-    <td>Yes</td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td>Yes</td>
-    <td>Yes</td>
-</tr>
-</table>
-
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop.
-
-
-Allows or disallows Windows Defender Intrusion Prevention functionality.
-
-<!--/Description-->
-<!--SupportedValues-->
-The following list shows the supported values:
-
--   0 – Not allowed.
--   1 (default) – Allowed.
-
-<!--/SupportedValues-->
-<!--/Policy-->
-
-<hr/>
-
 <!--Policy-->
 <a href="" id="defender-allowonaccessprotection"></a>**Defender/AllowOnAccessProtection**  
 
@@ -3400,4 +3328,4 @@ ADMX Info:
 
 
 
-<!--/Policies-->
\ No newline at end of file
+<!--/Policies-->

From 375aeae4dcf89c13652a7ffdb6cec9d3e3011200 Mon Sep 17 00:00:00 2001
From: Paul Huijbregts <30799281+pahuijbr@users.noreply.github.com>
Date: Fri, 5 Nov 2021 10:00:36 -0700
Subject: [PATCH 3/7] Update wcd-policies.md

Removed deprecrated setting AllowIntrusionPreventionSystem
---
 windows/configuration/wcd/wcd-policies.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/configuration/wcd/wcd-policies.md b/windows/configuration/wcd/wcd-policies.md
index a678186b48..1d9c4d1eee 100644
--- a/windows/configuration/wcd/wcd-policies.md
+++ b/windows/configuration/wcd/wcd-policies.md
@@ -196,7 +196,6 @@ PreventTabPreloading | Prevent Microsoft Edge from starting and loading the Star
 | [AllowEmailScanning](/windows/client-management/mdm/policy-configuration-service-provider#defender-allowemailscanning)  | Allow or disallow scanning of email.  |  ✔️ |  |   |   |  |
 | [AllowFullScanOnMappedNetworkDrives](/windows/client-management/mdm/policy-configuration-service-provider#defender-allowfullscanonmappednetworkdrives) | Allow or disallow a full scan of mapped network drives. | ✔️ |  |  |  |  |
 | [AllowFullScanRemovableDriveScanning](/windows/client-management/mdm/policy-configuration-service-provider#defender-allowfullscanremovabledrivescanning)  | Allow or disallow a full scan of removable drives.  |  ✔️ |  |   |   |  |
-| [AllowIntrusionPreventionSystem](/windows/client-management/mdm/policy-configuration-service-provider#defender-allowintrusionpreventionsystem) | Allow or disallow Windows Defender Intrusion Prevention functionality. | ✔️ |  |  |  |  |
 | [AllowIOAVProtection](/windows/client-management/mdm/policy-configuration-service-provider#defender-allowioavprotection)  | Allow or disallow Windows Defender IOAVP Protection functionality.  |  ✔️ |  |   |   |  |
 | [AllowOnAccessProtection](/windows/client-management/mdm/policy-configuration-service-provider#defender-allowonaccessprotection) | Allow or disallow Windows Defender On Access Protection functionality. | ✔️ |  |  |  |  |
 | [AllowRealtimeMonitoring](/windows/client-management/mdm/policy-configuration-service-provider#defender-allowrealtimemonitoring)  | Allow or disallow Windows Defender Realtime Monitoring functionality.  |  ✔️ |  |   |   |  |
@@ -588,4 +587,4 @@ ConfigureTelemetryOptInSettingsUx | This policy setting determines whether peopl
 
 | Setting | Description | Desktop editions | Mobile editions | Surface Hub | HoloLens | IoT Core |
 | --- | --- | :---: | :---: | :---: | :---: | :---: |
-| [AllowUserInputFromWirelessDisplayReceiver](/windows/client-management/mdm/policy-configuration-service-provider#wirelessdisplay-allowuserinputfromwirelessdisplayreceiver) | This policy controls whether or not the wireless display can send input (keyboard, mouse, pen, and touch, dependent upon display support) back to the source device. For example, a Surface Laptop is projecting wirelessly to a Surface Hub. If input from the wireless display receiver is allowed, users can draw with a pen on the Surface Hub.  | ✔️ | ✔️ |  |  |  |
\ No newline at end of file
+| [AllowUserInputFromWirelessDisplayReceiver](/windows/client-management/mdm/policy-configuration-service-provider#wirelessdisplay-allowuserinputfromwirelessdisplayreceiver) | This policy controls whether or not the wireless display can send input (keyboard, mouse, pen, and touch, dependent upon display support) back to the source device. For example, a Surface Laptop is projecting wirelessly to a Surface Hub. If input from the wireless display receiver is allowed, users can draw with a pen on the Surface Hub.  | ✔️ | ✔️ |  |  |  |

From dfa0c6948fc53ed9d8a9657bbc7480d212921985 Mon Sep 17 00:00:00 2001
From: Mandi Ohlinger <Mandi.Ohlinger@microsoft.com>
Date: Mon, 8 Nov 2021 19:11:46 -0500
Subject: [PATCH 4/7] Combined notes

---
 windows/client-management/mdm/policy-csp-security.md | 10 +++-------
 1 file changed, 3 insertions(+), 7 deletions(-)

diff --git a/windows/client-management/mdm/policy-csp-security.md b/windows/client-management/mdm/policy-csp-security.md
index 7d3222a08b..120e39c49d 100644
--- a/windows/client-management/mdm/policy-csp-security.md
+++ b/windows/client-management/mdm/policy-csp-security.md
@@ -125,13 +125,9 @@ The following list shows the supported values:
 
 <!--Description-->
 > [!NOTE]
-> This policy has been deprecated in Windows 10, version 1607
-
-<br>
-
-> [!NOTE]
-> This policy is only enforced in Windows 10 for desktop and not supported in Windows 10 Mobile.
-
+> 
+> - This policy is deprecated in Windows 10, version 1607.
+> - This policy is only enforced in Windows 10 for desktop.
 
 Specifies whether to allow automatic [device encryption](/windows/security/information-protection/bitlocker/bitlocker-device-encryption-overview-windows-10#bitlocker-device-encryption) during OOBE when the device is Azure AD joined.
 

From af3b59cb78d510666462257d1735a34f12ed2787 Mon Sep 17 00:00:00 2001
From: Mandi Ohlinger <Mandi.Ohlinger@microsoft.com>
Date: Mon, 8 Nov 2021 19:14:53 -0500
Subject: [PATCH 5/7] Add <br> tag since HTML is being used

---
 windows/client-management/mdm/policy-csp-security.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-security.md b/windows/client-management/mdm/policy-csp-security.md
index 120e39c49d..792dab97f1 100644
--- a/windows/client-management/mdm/policy-csp-security.md
+++ b/windows/client-management/mdm/policy-csp-security.md
@@ -126,7 +126,7 @@ The following list shows the supported values:
 <!--Description-->
 > [!NOTE]
 > 
-> - This policy is deprecated in Windows 10, version 1607.
+> - This policy is deprecated in Windows 10, version 1607.<br/>
 > - This policy is only enforced in Windows 10 for desktop.
 
 Specifies whether to allow automatic [device encryption](/windows/security/information-protection/bitlocker/bitlocker-device-encryption-overview-windows-10#bitlocker-device-encryption) during OOBE when the device is Azure AD joined.

From f05320581c93f8b6fa59c73f602123ba461bef73 Mon Sep 17 00:00:00 2001
From: Mandi Ohlinger <Mandi.Ohlinger@microsoft.com>
Date: Mon, 8 Nov 2021 20:23:32 -0500
Subject: [PATCH 6/7] Removed link to #defender-allowintrusionpreventionsystem

---
 .../mdm/policies-in-policy-csp-supported-by-surface-hub.md       | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md
index 13c000e4f5..57cbee7b16 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md
@@ -29,7 +29,6 @@ ms.date: 07/22/2020
 - [Defender/AllowFullScanOnMappedNetworkDrives](policy-csp-defender.md#defender-allowfullscanonmappednetworkdrives)
 - [Defender/AllowFullScanRemovableDriveScanning](policy-csp-defender.md#defender-allowfullscanremovabledrivescanning)
 - [Defender/AllowIOAVProtection](policy-csp-defender.md#defender-allowioavprotection)
-- [Defender/AllowIntrusionPreventionSystem](policy-csp-defender.md#defender-allowintrusionpreventionsystem)
 - [Defender/AllowOnAccessProtection](policy-csp-defender.md#defender-allowonaccessprotection)
 - [Defender/AllowRealtimeMonitoring](policy-csp-defender.md#defender-allowrealtimemonitoring)
 - [Defender/AllowScanningNetworkFiles](policy-csp-defender.md#defender-allowscanningnetworkfiles)

From 353e80e1be244e98401b3e207e4897574b55e32c Mon Sep 17 00:00:00 2001
From: Mandi Ohlinger <Mandi.Ohlinger@microsoft.com>
Date: Mon, 8 Nov 2021 20:24:27 -0500
Subject: [PATCH 7/7] Removed link to #defender-allowintrusionpreventionsystem

---
 .../mdm/policy-configuration-service-provider.md               | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index acf05925b9..bbd3101f94 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -5841,9 +5841,6 @@ dfsdiscoverdc">ADMX_DFS/DFSDiscoverDC</a>
   <dd>
     <a href="./policy-csp-defender.md#defender-allowioavprotection" id="defender-allowioavprotection">Defender/AllowIOAVProtection</a>
   </dd>
-  <dd>
-    <a href="./policy-csp-defender.md#defender-allowintrusionpreventionsystem" id="defender-allowintrusionpreventionsystem">Defender/AllowIntrusionPreventionSystem</a>
-  </dd>
   <dd>
     <a href="./policy-csp-defender.md#defender-allowonaccessprotection" id="defender-allowonaccessprotection">Defender/AllowOnAccessProtection</a>
   </dd>

Edition	Windows 10	Windows 11
Home	Yes	Yes
Pro	Yes	Yes
Business	Yes	Yes
Enterprise	Yes	Yes
Education	Yes	Yes