diff --git a/windows/security/threat-protection/windows-defender-system-guard/images/secure-launch-msinfo.png b/windows/security/threat-protection/windows-defender-system-guard/images/secure-launch-msinfo.png
new file mode 100644
index 0000000000..ccdf5070d3
Binary files /dev/null and b/windows/security/threat-protection/windows-defender-system-guard/images/secure-launch-msinfo.png differ
diff --git a/windows/security/threat-protection/windows-defender-system-guard/images/secure-launch-registry.png b/windows/security/threat-protection/windows-defender-system-guard/images/secure-launch-registry.png
new file mode 100644
index 0000000000..8a82cab356
Binary files /dev/null and b/windows/security/threat-protection/windows-defender-system-guard/images/secure-launch-registry.png differ
diff --git a/windows/security/threat-protection/windows-defender-system-guard/images/secure-launch-security-app.png b/windows/security/threat-protection/windows-defender-system-guard/images/secure-launch-security-app.png
new file mode 100644
index 0000000000..99e8cb1384
Binary files /dev/null and b/windows/security/threat-protection/windows-defender-system-guard/images/secure-launch-security-app.png differ
diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
index 4500ddf2c6..90df7d7b65 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
@@ -8,7 +8,7 @@ ms.sitesec: library
 ms.pagetype: security
 ms.localizationpriority: medium
 author: justinha
-ms.date: 12/13/2018
+ms.date: 12/15/2018
 ---
 
 # System Guard Secure Launch and SMM protection
@@ -75,12 +75,13 @@ System Guard Secure Launch can be configured for Mobile Device Management (MDM)
 1. Click **Start** > type and then click **Edit group policy**. 
 2. Click **Computer Configuration** > **Administrative Templates** > **System** > **Device Guard** > **Turn On Virtualization Based Security** > **Secure Launch Configuration**.
 
-   ![Secure launch Group Policy](images/secure-launch-group-policy.png)
+   ![Secure Launch Group Policy](images/secure-launch-group-policy.png)
 
 ### Windows Security app
 
+Click **Start** > **Settings** > **Update & Security** > **Windows Security** > **Open Windows Security** > **Device security** > **Core isolation** > **Firmware protection**.
 
-
+![Secure Launch Security App](images/secure-launch-security-app.png)
 
 ### Registry
 
@@ -90,6 +91,14 @@ System Guard Secure Launch can be configured for Mobile Device Management (MDM)
 4. Right-click **SystemGuard** > **New** > **DWORD (32-bit) Value** and name the new DWORD **Enabled**. 
 5. Double-click **Enabled**, change the value to **1**, and click **OK**.
 
+   ![Secure Launch Registry](images/secure-launch-registry.png)
+
+## How to verify System Guard Secure Launch is configured and running
+
+To verify that Secure Launch is running, use System Information (MSInfo32). Click **Start**, search for **System Information**, and look under **Virtualization-based Security Services Running** and **Virtualization-based Security Services Configured**.
+
+![Secure Launch Security App](images/secure-launch-msinfo.png)
+