diff --git a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
index f60f032426..401f9b50d4 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune.md
@@ -15,4 +15,44 @@ ms.date: 02/28/2018
 **Applies to:**
 
 -   Windows 10
--   Windows Server 2016
\ No newline at end of file
+-   Windows Server 2016
+
+You can apply Windows Defender Application Control (WDAC) to Windows 10 client computers using Microsoft Intune.
+
+1. Open the Microsoft Intune portal and click **Create a compliance policy**.
+
+   ![Create a compliance policy in Intune](images\wdac-intune-create-acompliance-policy.png)
+
+2. Click **Create Policy**.
+
+   ![Create a new policy](images\wdac-intune-create-new-policy.png)
+
+3. Type a name for the new policy and for **Platform**, select **Windows 10 and later**.  
+
+   ![Select platform](images\wdac-intune-create-policy-name.png)
+
+4. Click **Device Health**, select **Require** for the following settings and then click **OK**:
+
+   - **Require BitLocker**
+   - **Require Secure Boot to be enabled on the device**
+   - **Require code integrity**
+
+   ![Device Health settings](images\wdac-intune-device-health-settings.png)
+
+5. Click **Device Properties**, configure any operating system version requirements and then click **OK**.  
+
+   ![Device properties](images\wdac-intune-device-properties.png)
+
+6. Click **System Security**, select any security options to include in the policy and then click **OK**.   
+
+   ![System security settings](images\wdac-intune-system-security-settings.png)
+
+7. When you finish configuring settings, click **OK** and then click **Create**.
+
+8. Click **Assignments**. 
+
+   ![Assignments](images\wdac-intune-assignments.png)
+
+9. Select any mutually exclusive groups to include or exclude from the policy, or assign it to **All users**, and then click **Save**.
+
+   ![Assign the policy to groups](images\wdac-intune-assignments-groups.png)   
\ No newline at end of file
diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-assignments-groups.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-assignments-groups.png
new file mode 100644
index 0000000000..5cdb4cf3c4
Binary files /dev/null and b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-assignments-groups.png differ
diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-assignments.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-assignments.png
new file mode 100644
index 0000000000..8ef2d0e3ce
Binary files /dev/null and b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-assignments.png differ
diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-create-policy-name.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-create-policy-name.png
index 90b610b2bf..98e5507000 100644
Binary files a/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-create-policy-name.png and b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-create-policy-name.png differ
diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-device-health-settings.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-device-health-settings.png
new file mode 100644
index 0000000000..cbd0366eff
Binary files /dev/null and b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-device-health-settings.png differ
diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-device-properties.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-device-properties.png
new file mode 100644
index 0000000000..4d8325baa6
Binary files /dev/null and b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-device-properties.png differ
diff --git a/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-system-security-settings.png b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-system-security-settings.png
new file mode 100644
index 0000000000..e5ae089d6b
Binary files /dev/null and b/windows/security/threat-protection/windows-defender-application-control/images/wdac-intune-system-security-settings.png differ