diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md
index 8eae3591a3..450863a5b1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md
@@ -1,6 +1,6 @@
 ---
 title: Deploy Microsoft Defender ATP for Linux with Ansible
-ms.reviewer: 
+ms.reviewer:
 description: Describes how to deploy Microsoft Defender ATP for Linux using Ansible.
 keywords: microsoft, defender, atp, linux, installation, deploy, uninstallation, puppet, ansible, linux, redhat, ubuntu, debian, sles, suse, centos
 search.product: eADQiWindows 10XVcnh
@@ -14,7 +14,7 @@ author: dansimp
 ms.localizationpriority: medium
 manager: dansimp
 audience: ITPro
-ms.collection: M365-security-compliance 
+ms.collection: M365-security-compliance
 ms.topic: conceptual
 ---
 
@@ -36,14 +36,13 @@ This topic describes how to deploy Microsoft Defender ATP for Linux using Ansibl
 Before you get started, please see [the main Microsoft Defender ATP for Linux page](microsoft-defender-atp-linux.md) for a description of prerequisites and system requirements for the current software version.
 
 - Ansible needs to be installed on at least on one computer (we will call it the master).
-- Passwordless SSH must be configured for the root user between the master and all clients.
+- SSH must be configured for an manager account between the master and all clients.
 - The following software must be installed on all clients:
-  - Python-apt
-  - Curl
-  - Unzip
+  - curl
+  - unzip
 
 - All host must be listed in the following format in the `/etc/ansible/hosts` file:
-    
+
     ```bash
     [servers]
     host1 ansible_ssh_host=10.171.134.39
@@ -67,7 +66,7 @@ Download the onboarding package from Microsoft Defender Security Center:
     ![Microsoft Defender Security Center screenshot](images/atp-portal-onboarding-linux-2.png)
 
 4. From a command prompt, verify that you have the file. Extract the contents of the archive:
-  
+
     ```bash
     $ ls -l
     total 8
@@ -84,7 +83,6 @@ Create subtask or role files that contribute to an actual task. Create the follo
 - Copy the onboarding package to all client machines:
 
     ```bash
-    $ cat /etc/ansible/roles/copy_onboarding_pkg.yml
     - name: Copy the zip file
         copy:
             src:  /root/WindowsDefenderATPOnboardingPackage.zip
@@ -92,29 +90,32 @@ Create subtask or role files that contribute to an actual task. Create the follo
             owner: root
             group: root
             mode: '0644'
+
+    - name: Add Microsoft apt signing key
+      apt_key:
+        url: https://packages.microsoft.com/keys/microsoft.asc
+        state: present
+      when: ansible_os_family == "Debian"
     ```
 
 - Create a `setup.sh` script that operates on the onboarding file:
 
     ```bash
-    $ cat /root/setup.sh
-
     #!/bin/bash
 
     # Unzip the archive and create the onboarding file
     mkdir -p /etc/opt/microsoft/mdatp/
     unzip WindowsDefenderATPOnboardingPackage.zip
     cp mdatp_onboard.json /etc/opt/microsoft/mdatp/mdatp_onboard.json
-
-    # get the GPG key
-    curl https://packages.microsoft.com/keys/microsoft.asc | gpg --dearmor > microsoft.gpg
-    sudo mv microsoft.gpg /etc/apt/trusted.gpg.d/
     ```
 
 - Create the onboarding file:
 
     ```bash
-    $ cat setup_blob.yml
+    - name: Register mdatp_onboard.json
+      stat: path=/etc/opt/microsoft/mdatp/mdatp_onboard.json
+      register: mdatp_onboard
+
     - name: Copy the setup script file
         copy:
             src: /root/setup.sh
@@ -124,7 +125,8 @@ Create subtask or role files that contribute to an actual task. Create the follo
             mode: '0744'
 
     - name: Run a script to create the onboarding file
-        script: /root/setup.sh
+      script: /root/setup.sh
+      when: not mdatp_onboard.stat.exists
     ```
 
 - Add the Microsoft Defender ATP repository and key.
@@ -142,28 +144,22 @@ Create subtask or role files that contribute to an actual task. Create the follo
     > [!NOTE]
     > In case of Oracle EL and CentOS 8, replace *[distro]* with “rhel”.
 
-    - For apt-based distributions use the following YAML file:
-
         ```bash
-        $ cat add_apt_repo.yml
-        - name: Add Microsoft repository for MDATP
+        - name: Add Microsoft apt repository for MDATP
             apt_repository:
                 repo: deb [arch=arm64,armhf,amd64] https://packages.microsoft.com/[distro]/[version]/prod [channel] main
                 update_cache: yes
                 state: present
                 filename: microsoft-[channel].list
+            when: ansible_os_family == "Debian"
 
         - name: Add Microsoft APT key
-                apt_key:
-                    keyserver: https://packages.microsoft.com/
-                    id: BC528686B50D79E339D3721CEB3E94ADBE1229C
-        ```
+            apt_key:
+                keyserver: https://packages.microsoft.com/
+                id: BC528686B50D79E339D3721CEB3E94ADBE1229C
+            when: ansible_os_family == "Debian"
 
-    - For yum-based distributions use the following YAML file:
-
-        ```bash
-        $ cat add_yum_repo.yml
-        - name: Add  Microsoft repository for MDATP
+        - name: Add  Microsoft yum repository for MDATP
             yum_repository:
                 name: packages-microsoft-com-prod-[channel]
                 description: Microsoft Defender ATP
@@ -171,6 +167,7 @@ Create subtask or role files that contribute to an actual task. Create the follo
                 baseurl: https://packages.microsoft.com/[distro]/[version]/[channel]/
                 gpgcheck: yes
                 enabled: Yes
+            when: ansible_os_family == "RedHat"
         ```
 
 - Create the actual install/uninstall YAML files under `/etc/ansible/playbooks`.