diff --git a/windows/deploy/index.md b/windows/deploy/index.md
index 6beda342c0..b2d4ab858c 100644
--- a/windows/deploy/index.md
+++ b/windows/deploy/index.md
@@ -5,6 +5,7 @@ ms.assetid: E9E2DED5-DBA7-4300-B411-BA0FD39BE18C
ms.prod: w10
ms.mktglfcycl: deploy
ms.sitesec: library
+localizationpriority: high
author: greg-lindsay
---
diff --git a/windows/index.md b/windows/index.md
index d5e7f92b8a..31050c6bd6 100644
--- a/windows/index.md
+++ b/windows/index.md
@@ -3,6 +3,7 @@ title: Windows 10 and Windows 10 Mobile (Windows 10)
description: This library provides the core content that IT pros need to evaluate, plan, deploy, and manage devices running Windows 10 or Windows 10 Mobile.
ms.assetid: 345A4B4E-BC1B-4F5C-9E90-58E647D11C60
ms.prod: w10
+localizationpriority: high
author: brianlic-msft
---
diff --git a/windows/keep-secure/create-wip-policy-using-sccm.md b/windows/keep-secure/create-wip-policy-using-sccm.md
index 350d5e1f54..49801ae337 100644
--- a/windows/keep-secure/create-wip-policy-using-sccm.md
+++ b/windows/keep-secure/create-wip-policy-using-sccm.md
@@ -436,11 +436,11 @@ There are no default locations included with WIP, you must add each of your netw
- - **Enterprise Proxy Servers list is authoritative (do not auto-detect).** Click this box if you want Windows to treat the proxy servers you specified in the network boundary definition as the complete list of proxy servers available on your network. If you clear this box, Windows will search for additional proxy servers in your immediate network. Not configured is the default option.
+ - **Enterprise Proxy Servers list is authoritative (do not auto-detect).** Click this box if you want Windows to treat the proxy servers you specified in the network boundary definition as the complete list of proxy servers available on your network. If you clear this box, Windows will search for additional proxy servers in your immediate network. Not configured is the default option.
- - **Enterprise IP Ranges list is authoritative (do not auto-detect).** Click this box if you want Windows to treat the IP ranges you specified in the network boundary definition as the complete list of IP ranges available on your network. If you clear this box, Windows will search for additional IP ranges on any domain-joined devices connected to your network. Not configured is the default option.
+ - **Enterprise IP Ranges list is authoritative (do not auto-detect).** Click this box if you want Windows to treat the IP ranges you specified in the network boundary definition as the complete list of IP ranges available on your network. If you clear this box, Windows will search for additional IP ranges on any domain-joined devices connected to your network. Not configured is the default option.
- - **Show the Windows Information Protection icon overlay on your allowed apps that are WIP-unaware on corporate files in the File Explorer.** Click this box if you want the Windows Information Protection icon overlay to appear on corporate files in the Save As and File Explorer views. Additionally, for unenlightened but allowed apps, the icon overlay also appears on the app tile and with *Managed* text on the app name in the **Start** menu. Not configured is the default option.
+ - **Show the Windows Information Protection icon overlay on your allowed apps that are WIP-unaware on corporate files in the File Explorer.** Click this box if you want the Windows Information Protection icon overlay to appear on corporate files in the Save As and File Explorer views. Additionally, for unenlightened but allowed apps, the icon overlay also appears on the app tile and with *Managed* text on the app name in the **Start** menu. Not configured is the default option.
5. In the required **Upload a Data Recovery Agent (DRA) certificate to allow recovery of encrypted data** box, click **Browse** to add a data recovery certificate for your policy.
diff --git a/windows/keep-secure/how-to-configure-security-policy-settings.md b/windows/keep-secure/how-to-configure-security-policy-settings.md
index 6a307acac3..2731ce37e8 100644
--- a/windows/keep-secure/how-to-configure-security-policy-settings.md
+++ b/windows/keep-secure/how-to-configure-security-policy-settings.md
@@ -31,9 +31,9 @@ When a local setting is inaccessible, it indicates that a GPO currently controls
3. When you find the policy setting in the details pane, double-click the security policy that you want to modify.
4. Modify the security policy setting, and then click **OK**.
- **Note**
- - Some security policy settings require that the device be restarted before the setting takes effect.
- - Any change to the user rights assignment for an account becomes effective the next time the owner of the account logs on.
+ > [!NOTE]
+ > - Some security policy settings require that the device be restarted before the setting takes effect.
+ > - Any change to the user rights assignment for an account becomes effective the next time the owner of the account logs on.
## To configure a security policy setting using the Local Group Policy Editor console
@@ -48,11 +48,13 @@ You must have the appropriate permissions to install and use the Microsoft Manag
4. In the details pane, double-click the security policy setting that you want to modify.
- >**Note:** If this security policy has not yet been defined, select the **Define these policy settings** check box.
+ > [!NOTE]
+ > If this security policy has not yet been defined, select the **Define these policy settings** check box.
5. Modify the security policy setting, and then click **OK**.
->**Note:** If you want to configure security settings for many devices on your network, you can use the Group Policy Management Console.
+> [!NOTE]
+> If you want to configure security settings for many devices on your network, you can use the Group Policy Management Console.
## To configure a setting for a domain controller
@@ -65,13 +67,15 @@ The following procedure describes how to configure a security policy setting for
- Click **Local Policies** to edit the **Audit Policy**, a **User Rights Assignment**, or **Security Options**.
3. In the details pane, double-click the security policy that you want to modify.
- >**Note** If this security policy has not yet been defined, select the **Define these policy settings** check box.
+
+ > [!NOTE]
+ > If this security policy has not yet been defined, select the **Define these policy settings** check box.
4. Modify the security policy setting, and then click **OK**.
-**Important**
-- Always test a newly created policy in a test organizational unit before you apply it to your network.
-- When you change a security setting through a GPO and click **OK**, that setting will take effect the next time you refresh the settings.
+> [!IMPORTANT]
+> - Always test a newly created policy in a test organizational unit before you apply it to your network.
+> - When you change a security setting through a GPO and click **OK**, that setting will take effect the next time you refresh the settings.
## Related topics
diff --git a/windows/keep-secure/index.md b/windows/keep-secure/index.md
index 1307bc7110..aee90f46a5 100644
--- a/windows/keep-secure/index.md
+++ b/windows/keep-secure/index.md
@@ -6,6 +6,7 @@ ms.prod: w10
ms.mktglfcycl: deploy
ms.sitesec: library
ms.pagetype: security
+localizationpriority: high
author: brianlic-msft
---
# Keep Windows 10 secure
diff --git a/windows/keep-secure/troubleshoot-windows-defender-in-windows-10.md b/windows/keep-secure/troubleshoot-windows-defender-in-windows-10.md
index ac8772f7b7..3730d58e83 100644
--- a/windows/keep-secure/troubleshoot-windows-defender-in-windows-10.md
+++ b/windows/keep-secure/troubleshoot-windows-defender-in-windows-10.md
@@ -2222,7 +2222,20 @@ Description of the error.
|
The support for your operating system has expired. Windows Defender is no longer supported on your operating system, has stopped functioning, and is not protecting against malware threats.
|
-| Event ID: 2050 | Symbolic name: | MALWAREPROTECTION_SAMPLESUBMISSION_UPLOADED |
|---|
Message: | The antimalware engine has uploaded a file for further analysis.
Filename <uploaded filename>
Sha256: <file SHA> |
Description: | A file was uploaded to the Windows Defender Antimalware cloud for further analysis or processing. |
+
+| Event ID: 2050 | Symbolic name: | MALWAREPROTECTION_SAMPLESUBMISSION_UPLOAD |
|---|
Message: | The antimalware engine has uploaded a file for further analysis.
Filename <uploaded filename>
Sha256: <file SHA> |
Description: | A file was uploaded to the Windows Defender Antimalware cloud for further analysis or processing. |
+
+| Event ID: 2051 | Symbolic name: | MALWAREPROTECTION_SAMPLESUBMISSION_UPLOADED_FAILED |
|---|
Message: | The antimalware engine has encountered an error trying to upload a suspicious file for further analysis.
+Filename: <uploaded filename>
+Sha256: <file SHA>
+Current Signature Version: <signature version number>
+Current Engine Version: <engine version number>
+Error code: <error code> |
Description: | A file could not be uploaded to the Windows Defender Antimalware cloud. |
User action: | You can attempt to manually submit the file. |
+
+
+
+
+
| Event ID: 3002 |
diff --git a/windows/keep-secure/using-owa-with-wip.md b/windows/keep-secure/using-owa-with-wip.md
index f4046b30a6..f99f10fb6f 100644
--- a/windows/keep-secure/using-owa-with-wip.md
+++ b/windows/keep-secure/using-owa-with-wip.md
@@ -23,7 +23,6 @@ Because Outlook Web Access (OWA) can be used both personally and as part of your
|-------|-------------|
|Disable OWA. Employees can only use Microsoft Outlook 2016 or the Office 365 Mail app. | Disabled. |
|Don't configure outlook.office.com in any of your networking settings. |All mailboxes are automatically marked as personal. This means employees attempting to copy work content into OWA receive prompts and that files downloaded from OWA aren't automatically protected as corporate data. |
-|Do all of the following:- Create a domain (such as mail.contoso.com, redirecting to outlook.office.com) that can be used by your employees to access work email.
- Add the new domain to the Enterprise Cloud Resources network element in your WIP policy.
- Add the following URLs to the Neutral Resources network element in your WIP policy:
- outlook.office365.com
- outlook.office.com
- outlook-sdf.office.com
- attachment.outlook.office.net
|Inbox content accessed through the new domain is automatically marked as corporate data, while content accessed through personal email is automatically marked as personal. |
|Add outlook.office.com to the Enterprise Cloud Resources network element in your WIP policy. |All mailboxes are automatically marked as corporate. This means any personal inboxes hosted on Office 365 are also automatically marked as corporate data. |
>[!NOTE]
diff --git a/windows/manage/index.md b/windows/manage/index.md
index e9e8ac3329..73e961d01d 100644
--- a/windows/manage/index.md
+++ b/windows/manage/index.md
@@ -7,6 +7,7 @@ ms.prod: w10
ms.mktglfcycl: manage
ms.sitesec: library
ms.pagetype: security
+localizationpriority: high
author: jdeckerMS
---
diff --git a/windows/plan/index.md b/windows/plan/index.md
index 8dd569303a..dfa19e4252 100644
--- a/windows/plan/index.md
+++ b/windows/plan/index.md
@@ -6,6 +6,7 @@ keywords: deploy, upgrade, update, configure
ms.prod: w10
ms.mktglfcycl: plan
ms.sitesec: library
+localizationpriority: high
author: TrudyHa
---
|