diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json
index decbbc3864..c8b24a5865 100644
--- a/.openpublishing.redirection.json
+++ b/.openpublishing.redirection.json
@@ -20294,6 +20294,26 @@
       "source_path": "windows/security/identity-protection/hello-for-business/reset-security-key.md",
       "redirect_url": "/azure/active-directory/authentication/howto-authentication-passwordless-security-key",
       "redirect_document_id": false
+    },
+    {
+      "source_path": "windows/configuration/provisioning-packages/provision-pcs-with-apps-and-certificates.md",
+      "redirect_url": "/windows/configuration/provisioning-packages/provision-pcs-with-apps",
+      "redirect_document_id": true
+    },
+    {
+      "source_path": "windows/configuration/cortana-at-work/cortana-at-work-crm.md",
+      "redirect_url": "/windows/resources",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "windows/configuration/cortana-at-work/cortana-at-work-powerbi.md",
+      "redirect_url": "/windows/resources",
+      "redirect_document_id": false
+    },
+    {
+      "source_path": "windows/configuration/manage-wifi-sense-in-enterprise.md",
+      "redirect_url": "/windows/resources",
+      "redirect_document_id": false
     }
   ]
-}
+}
\ No newline at end of file
diff --git a/README.md b/README.md
index 824a7c6d56..98c771d56d 100644
--- a/README.md
+++ b/README.md
@@ -1,3 +1,67 @@
+# Overview
+
+## Learn how to contribute
+
+Anyone who is interested can contribute to the topics. When you contribute, your work will go directly into the content set after being merged. It will then be published to [Microsoft Learn](https://learn.microsoft.com/) and you will be listed as a contributor at: <https://github.com/MicrosoftDocs/windows-docs-pr/graphs/contributors>.
+
+### Quickly update an article using GitHub.com
+
+Contributors who only make infrequent or small updates can edit the file directly on GitHub.com without having to install any additional software. This article shows you how. [This two-minute video](https://www.microsoft.com/videoplayer/embed/RE1XQTG) also covers how to contribute.
+
+1. Make sure you're signed in to GitHub.com with your GitHub account.
+2. Browse to the page you want to edit on Microsoft Learn.
+3. On the right-hand side of the page, click **Edit** (pencil icon).
+
+   ![Edit button on Microsoft Learn.](https://learn.microsoft.com/compliance/media/quick-update-edit.png)
+
+4. The corresponding topic file on GitHub opens, where you need to click the **Edit this file** pencil icon.
+
+   ![Edit button on github.com.](https://learn.microsoft.com/compliance/media/quick-update-github.png)
+
+5. The topic opens in a line-numbered editing page where you can make changes to the file. Files in GitHub are written and edited using Markdown language. For help on using Markdown, see [Mastering Markdown](https://guides.github.com/features/mastering-markdown/). Select the **Preview changes** tab to view your changes as you go.
+
+6. When you're finished making changes, go to the **Propose file change** section at the bottom of the page:
+
+   - A brief title is required. By default, the title is the name of the file, but you can change it.
+   - Optionally, you can enter more details in the **Add an optional extended description** box.
+
+   When you're ready, click the green **Propose file change** button.
+
+   ![Propose file change section.](https://learn.microsoft.com/compliance/media/propose-file-change.png)
+
+7. On the **Comparing changes** page that appears, click the green **Create pull request** button.
+
+   ![Comparing changes page.](https://learn.microsoft.com/compliance/media/comparing-changes-page.png)
+
+8. On the **Open a pull request** page that appears, click the green **Create pull request** button.
+
+   ![Open a pull request page.](https://learn.microsoft.com/compliance/media/open-a-pull-request-page.png)
+
+> [!NOTE]
+> Your permissions in the repo determine what you see in the last several steps. People with no special privileges will see the **Propose file change** section and subsequent confirmation pages as described. People with permissions to create and approve their own pull requests will see a similar **Commit changes** section with extra options for creating a new branch and fewer confirmation pages.<br/><br/>The point is: click any green buttons that are presented to you until there are no more.
+
+The writer identified in the metadata of the topic will be notified and will eventually review and approve your changes so the topic will be updated on Microsoft Learn. If there are questions or issues with the updates, the writer will contact you.
+
 ## Microsoft Open Source Code of Conduct
+
 This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/).
-For more information see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/) or contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with any additional questions or comments.
\ No newline at end of file
+
+For more information see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/) or contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with any additional questions or comments.
+
+### Contributing
+
+This project welcomes contributions and suggestions.  Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit <https://cla.microsoft.com>.
+
+When you submit a pull request, a CLA-bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., label, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.
+
+### Legal Notices
+
+Microsoft and any contributors grant you a license to the Microsoft documentation and other content in this repository under the [Creative Commons Attribution 4.0 International Public License](https://creativecommons.org/licenses/by/4.0/legalcode), see the [LICENSE](LICENSE) file, and grant you a license to any code in the repository under the [MIT License](https://opensource.org/licenses/MIT), see the [LICENSE-CODE](LICENSE-CODE) file.
+
+Microsoft, Windows, Microsoft Azure and/or other Microsoft products and services referenced in the documentation may be either trademarks or registered trademarks of Microsoft in the United States and/or other countries.
+
+The licenses for this project do not grant you rights to use any Microsoft names, logos, or trademarks. Microsoft's general trademark guidelines can be found at <https://go.microsoft.com/fwlink/?LinkID=254653>.
+
+Privacy information can be found at <https://privacy.microsoft.com/>
+
+Microsoft and any contributors reserve all others rights, whether under their respective copyrights, patents, or trademarks, whether by implication, estoppel or otherwise.
diff --git a/education/images/EDU-FindHelp.svg b/education/images/EDU-FindHelp.svg
deleted file mode 100644
index fea3109134..0000000000
--- a/education/images/EDU-FindHelp.svg
+++ /dev/null
@@ -1,32 +0,0 @@
-<?xml version="1.0" encoding="utf-8"?>
-<!-- Generator: Adobe Illustrator 23.1.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
-<svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px"
-	 viewBox="0 0 50 50" style="enable-background:new 0 0 50 50;" xml:space="preserve">
-<style type="text/css">
-	.st0{fill:#E6E6E6;}
-	.st1{fill:#C2C2C2;}
-	.st2{fill:#0078D4;}
-</style>
-<title>EDUAdmins-50px</title>
-<path class="st0" d="M25.2,47.2c-12.3,0-22.3-10-22.3-22.3s10-22.3,22.3-22.3s22.3,10,22.3,22.3l0,0C47.6,37.2,37.6,47.2,25.2,47.2
-	C25.3,47.2,25.2,47.2,25.2,47.2z"/>
-<path class="st1" d="M25.2,3.7c11.7,0,21.1,9.5,21.1,21.1S36.9,46,25.2,46S4.1,36.5,4.1,24.9l0,0C4.1,13.2,13.6,3.7,25.2,3.7
-	L25.2,3.7 M25.2,1.4c-13,0-23.5,10.5-23.5,23.5s10.5,23.5,23.5,23.5s23.5-10.5,23.5-23.5l0,0C48.7,11.9,38.2,1.4,25.2,1.4L25.2,1.4z
-	"/>
-<g>
-	<title>toolbox</title>
-	<g>
-		<g id="SYMBOLS_1_">
-			<g id="toolbox_1_">
-				<g id="_Utility_-_Maintain_1_">
-					<path class="st2" d="M32.7,24.7c0.8,0,1.6-0.2,2.3-0.5c1.4-0.6,2.6-1.8,3.2-3.2c0.3-0.7,0.5-1.5,0.5-2.3c0-0.6-0.1-1.3-0.3-1.9
-						l-4.8,4.8l-3.8-3.8l4.8-4.8c-0.6-0.2-1.2-0.3-1.9-0.3c-0.8,0-1.6,0.2-2.3,0.5c-0.7,0.3-1.4,0.7-1.9,1.3c-0.5,0.5-1,1.2-1.3,1.9
-						s-0.5,1.5-0.5,2.3c0,0.3,0,0.6,0.1,0.9s0.1,0.6,0.2,0.9L15.5,31.9c-0.3,0.3-0.5,0.6-0.6,0.9c-0.3,0.7-0.3,1.5,0,2.1
-						c0.1,0.3,0.3,0.6,0.6,0.9c0.3,0.3,0.6,0.5,0.9,0.6s0.7,0.2,1.1,0.2s0.7-0.1,1.1-0.2c0.3-0.1,0.6-0.3,0.9-0.6L31,24.4
-						c0.3,0.1,0.6,0.1,0.9,0.2C32,24.6,32.4,24.7,32.7,24.7"/>
-				</g>
-			</g>
-		</g>
-	</g>
-</g>
-</svg>
diff --git a/education/images/EDUAdmins.svg b/education/images/EDUAdmins.svg
deleted file mode 100644
index d512fb942f..0000000000
--- a/education/images/EDUAdmins.svg
+++ /dev/null
@@ -1 +0,0 @@
-<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 50 50"><defs><style>.cls-1{fill:#0078d4;}.cls-2{fill:#c2c2c2;}.cls-3{fill:#fff;}</style></defs><title>EDUAdmins-50px</title><path class="cls-1" d="M25.23,47.17A22.32,22.32,0,1,1,47.55,24.85,22.3,22.3,0,0,1,25.23,47.17Z"/><path class="cls-2" d="M25.23,3.71A21.14,21.14,0,1,1,4.09,24.85h0A21.2,21.2,0,0,1,25.23,3.71h0m0-2.36a23.5,23.5,0,1,0,23.5,23.5h0A23.5,23.5,0,0,0,25.23,1.35Z"/><g id="administrator"><g id="_Utility_-_Maintain" data-name=" Utility - Maintain"><path class="cls-3" d="M38.09,29.06a3.81,3.81,0,0,0,1.56-.33,3.85,3.85,0,0,0,1.28-.86,3.69,3.69,0,0,0,.85-1.27A4.22,4.22,0,0,0,42.11,25a3.86,3.86,0,0,0-.24-1.28l-3.21,3.17-2.51-2.51,3.17-3.21a3.57,3.57,0,0,0-2.79.09,4.25,4.25,0,0,0-2.13,2.13A4.36,4.36,0,0,0,34.07,25a2.47,2.47,0,0,0,0,.61l.14.57L26.7,33.78a1.74,1.74,0,0,0-.43.62,1.87,1.87,0,0,0,0,1.42,2,2,0,0,0,.95,1,1.82,1.82,0,0,0,1.41,0,2.58,2.58,0,0,0,.62-.38l7.61-7.56.57.14a3.36,3.36,0,0,0,.66,0"/></g><path class="cls-3" d="M25,25a7.15,7.15,0,0,0,7.42-6.9,6.93,6.93,0,0,0-4.35-6.29,7.71,7.71,0,0,0-6.14,0,6.87,6.87,0,0,0-4.35,6.29A7.15,7.15,0,0,0,25,25Z"/><path class="cls-3" d="M25,26.64c-6.15,0-11.16,4.64-11.16,10.36H25.23S23,35.11,25,33.12l5.25-5.29A17.65,17.65,0,0,0,25,26.64Z"/></g></svg>
\ No newline at end of file
diff --git a/education/images/EDUDevelopers.svg b/education/images/EDUDevelopers.svg
deleted file mode 100644
index 900159699a..0000000000
--- a/education/images/EDUDevelopers.svg
+++ /dev/null
@@ -1 +0,0 @@
-<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 50 50"><defs><style>.cls-1{fill:#2f2f2f;}.cls-2{fill:#fff;}.cls-3{fill:#7f7f7f;}.cls-4{fill:#0078d4;}.cls-5{fill:#c2c2c2;}</style></defs><title>EDUDevelopers-50px</title><circle class="cls-1" cx="31.67" cy="25.49" r="17.06"/><g id="user"><path class="cls-2" d="M31.67,26.54a6.49,6.49,0,1,0-6-9.18A6.75,6.75,0,0,0,25.15,20a6.55,6.55,0,0,0,6.52,6.52Z"/><path class="cls-2" d="M31.67,28.11a9.72,9.72,0,0,0-9.74,9.74H41.41A9.72,9.72,0,0,0,31.67,28.11Z"/></g><polygon class="cls-3" points="42.41 45.61 20.92 45.61 19.72 32.57 43.62 32.57 42.41 45.61"/><rect class="cls-1" x="20.84" y="46.05" width="21.49" height="0.64"/><path class="cls-4" d="M12,23a9.26,9.26,0,1,1,9.26-9.26A9.26,9.26,0,0,1,12,23Z"/><path class="cls-5" d="M12,5.45A8.25,8.25,0,1,1,3.74,13.7,8.26,8.26,0,0,1,12,5.45h0m0-2A10.26,10.26,0,1,0,22.25,13.7,10.26,10.26,0,0,0,12,3.44Z"/><polygon class="cls-2" points="6.72 10 6.72 10.8 17.26 10.88 17.14 10 6.72 10"/><path class="cls-2" d="M9.94,13.1l.32.32L9.05,14.63l1.21,1.2-.32.33L8.41,14.63Zm.84,4.3,1.85-5.51h.49L11.27,17.4Zm3.14-4.3,1.53,1.53-1.53,1.53-.32-.33,1.21-1.2L13.6,13.42Z"/></svg>
\ No newline at end of file
diff --git a/education/images/EDUPartners.svg b/education/images/EDUPartners.svg
deleted file mode 100644
index 01b80c9a42..0000000000
--- a/education/images/EDUPartners.svg
+++ /dev/null
@@ -1 +0,0 @@
-<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 50 50"><defs><style>.cls-1{fill:#0078d4;}.cls-2{fill:#c2c2c2;}.cls-3{fill:#fff;}</style></defs><title>EDUPartners-50px</title><path class="cls-1" d="M25.23,47.39A22.32,22.32,0,1,1,47.55,25.07,22.3,22.3,0,0,1,25.23,47.39Z"/><path class="cls-2" d="M25.23,3.93A21.14,21.14,0,1,1,4.09,25.07h0A21.2,21.2,0,0,1,25.23,3.93h0m0-2.36a23.5,23.5,0,1,0,23.5,23.5h0A23.5,23.5,0,0,0,25.23,1.57Z"/><g id="SYMBOLS"><g id="users_people" data-name="users people"><path class="cls-2" d="M31.14,24.69a7.07,7.07,0,1,0-7.09-7.09,7.08,7.08,0,0,0,7.09,7.09Z"/><path class="cls-2" d="M31.14,26.39A10.58,10.58,0,0,0,20.55,37H41.73A10.58,10.58,0,0,0,31.14,26.39Z"/><path class="cls-3" d="M9.06,37.08h8.27a13.9,13.9,0,0,1,1.56-6.43,7,7,0,0,0-9.26,3.69A6.73,6.73,0,0,0,9.06,37.08Z"/><path class="cls-3" d="M16.1,17.65a5.3,5.3,0,0,0-.28,10.59h.61a5.3,5.3,0,0,0,5-5.58A5.38,5.38,0,0,0,16.1,17.65Z"/></g></g></svg>
\ No newline at end of file
diff --git a/education/images/M365-education.svg b/education/images/M365-education.svg
deleted file mode 100644
index 9591f90f68..0000000000
--- a/education/images/M365-education.svg
+++ /dev/null
@@ -1,171 +0,0 @@
-<svg id="ICONS" xmlns="https://www.w3.org/2000/svg" viewBox="0 0 400 140">
-  <defs>
-    <style>
-      .cls-1 {
-        fill: #80def9;
-      }
-
-      .cls-14, .cls-2 {
-        fill: none;
-      }
-
-      .cls-3 {
-        fill: #556a8a;
-      }
-
-      .cls-4 {
-        fill: #868787;
-      }
-
-      .cls-5 {
-        fill: #e5e5e5;
-      }
-
-      .cls-6 {
-        fill: #b72b2b;
-      }
-
-      .cls-7 {
-        fill: #a80000;
-      }
-
-      .cls-15, .cls-8, .cls-9 {
-        fill: #fff;
-      }
-
-      .cls-9 {
-        stroke: #5b7484;
-      }
-
-      .cls-14, .cls-15, .cls-9 {
-        stroke-miterlimit: 10;
-        stroke-width: 2px;
-      }
-
-      .cls-10 {
-        fill: #e6e6e6;
-      }
-
-      .cls-11 {
-        fill: #b8c1ce;
-      }
-
-      .cls-12 {
-        fill: #ccc;
-      }
-
-      .cls-13 {
-        fill: #5b7484;
-      }
-
-      .cls-14 {
-        stroke: #556a8a;
-      }
-
-      .cls-15 {
-        stroke: #00bcf2;
-      }
-
-      .cls-16 {
-        fill: #008272;
-      }
-
-      .cls-17 {
-        fill: #bad80a;
-      }
-    </style>
-  </defs>
-  <title>M365-education</title>
-  <g>
-    <g>
-      <g>
-        <path class="cls-1" d="M113.2,39.53v-.35a13.84,13.84,0,0,0-.29-3.47,12.49,12.49,0,0,0-20.56-8.94A14.53,14.53,0,0,0,80.18,21C71,21,64,29,63.88,38.09c0,.62.16,1.09.16,1.72-4.84,2.34-7.64,6.4-7.64,11.55,0,7.36,5.79,13.26,13.46,13.69.71,5.11,5.29,9.86,13.14,9.86,6.62,0,10.57.54,15.4-4.9a16.27,16.27,0,0,0,7.7,2.1c9.28,0,16.64-8.22,16.64-17.5A16.19,16.19,0,0,0,113.2,39.53Z"/>
-        <path class="cls-1" d="M293,56.2a15.9,15.9,0,0,1,8.13,2.24A21,21,0,0,1,340,56.25c.34,0,.68-.05,1-.05a17.91,17.91,0,0,1,18,17.9C359,84,350.94,91,341,91H297c-8.84,0-20-3.9-20-18.9A15.91,15.91,0,0,1,293,56.2Z"/>
-        <rect class="cls-2" x="64.2" y="3" width="271" height="148"/>
-        <g>
-          <polygon class="cls-3" points="264.39 25 129.4 25 79 53 313 53 264.39 25"/>
-          <polygon class="cls-4" points="86.72 52 129.92 27 263.85 27 305.52 52 86.72 52"/>
-          <rect class="cls-3" x="79" y="53" width="234" height="68"/>
-          <rect class="cls-5" x="163.5" y="-28.5" width="65" height="230" transform="translate(282.5 -109.5) rotate(90)"/>
-          <polygon class="cls-3" points="196.5 16.5 195.5 16.5 145 53 145 121 247 121 247 53 196.5 16.5"/>
-          <polygon class="cls-6" points="147 121 147 54.03 196 18.6 245 53 245 121 147 121"/>
-          <rect class="cls-7" x="185.2" y="91" width="22" height="30"/>
-          <rect class="cls-8" x="187" y="93" width="18" height="28"/>
-          <circle class="cls-9" cx="195.9" cy="35" r="11"/>
-        </g>
-        <rect class="cls-3" x="89" y="61" width="19" height="22"/>
-        <rect class="cls-10" x="89.5" y="64.5" width="18" height="15" transform="translate(170.5 -26.5) rotate(90)"/>
-        <rect class="cls-11" x="91" y="63" width="15" height="4"/>
-        <rect class="cls-11" x="91" y="72" width="15" height="4"/>
-        <rect class="cls-7" x="154" y="61" width="22" height="32"/>
-        <rect class="cls-12" x="151" y="68" width="28" height="18" transform="translate(242 -88) rotate(90)"/>
-        <rect class="cls-3" x="91" y="71" width="15" height="2"/>
-        <g>
-          <rect class="cls-3" x="118" y="61" width="19" height="22"/>
-          <rect class="cls-10" x="118.5" y="64.5" width="18" height="15" transform="translate(199.5 -55.5) rotate(90)"/>
-          <rect class="cls-11" x="120" y="63" width="15" height="4"/>
-          <rect class="cls-11" x="120" y="72" width="15" height="4"/>
-          <rect class="cls-3" x="120" y="71" width="15" height="2"/>
-        </g>
-        <rect class="cls-3" x="89" y="88" width="19" height="22"/>
-        <rect class="cls-10" x="89.5" y="91.5" width="18" height="15" transform="translate(197.5 0.5) rotate(90)"/>
-        <rect class="cls-11" x="91" y="90" width="15" height="4"/>
-        <rect class="cls-11" x="91" y="99" width="15" height="4"/>
-        <rect class="cls-3" x="91" y="98" width="15" height="2"/>
-        <g>
-          <rect class="cls-3" x="118" y="88" width="19" height="22"/>
-          <rect class="cls-10" x="118.5" y="91.5" width="18" height="15" transform="translate(226.5 -28.5) rotate(90)"/>
-          <rect class="cls-11" x="120" y="90" width="15" height="4"/>
-          <rect class="cls-11" x="120" y="99" width="15" height="4"/>
-          <rect class="cls-3" x="120" y="98" width="15" height="2"/>
-        </g>
-        <rect class="cls-13" x="255" y="61" width="19" height="22"/>
-        <rect class="cls-10" x="255.5" y="64.5" width="18" height="15" transform="translate(336.5 -192.5) rotate(90)"/>
-        <rect class="cls-11" x="257" y="63" width="15" height="4"/>
-        <rect class="cls-11" x="257" y="72" width="15" height="4"/>
-        <rect class="cls-13" x="257" y="71" width="15" height="2"/>
-        <g>
-          <rect class="cls-13" x="284" y="61" width="19" height="22"/>
-          <rect class="cls-10" x="284.5" y="64.5" width="18" height="15" transform="translate(365.5 -221.5) rotate(90)"/>
-          <rect class="cls-11" x="286" y="63" width="15" height="4"/>
-          <rect class="cls-11" x="286" y="73" width="15" height="4"/>
-          <rect class="cls-13" x="286" y="71" width="15" height="2"/>
-        </g>
-        <rect class="cls-13" x="255" y="88" width="19" height="22"/>
-        <rect class="cls-10" x="255.5" y="91.5" width="18" height="15" transform="translate(363.5 -165.5) rotate(90)"/>
-        <rect class="cls-11" x="257" y="90" width="15" height="4"/>
-        <rect class="cls-11" x="257" y="99" width="15" height="4"/>
-        <rect class="cls-13" x="257" y="98" width="15" height="2"/>
-        <g>
-          <rect class="cls-13" x="284" y="88" width="19" height="22"/>
-          <rect class="cls-10" x="284.5" y="91.5" width="18" height="15" transform="translate(392.5 -194.5) rotate(90)"/>
-          <rect class="cls-11" x="286" y="90" width="15" height="4"/>
-          <rect class="cls-11" x="286" y="99" width="15" height="4"/>
-          <rect class="cls-13" x="286" y="98" width="15" height="2"/>
-        </g>
-        <rect class="cls-7" x="156" y="66" width="18" height="2"/>
-        <rect class="cls-7" x="156.2" y="86" width="18" height="2"/>
-        <rect class="cls-7" x="164" y="68" width="2" height="19"/>
-        <rect class="cls-8" x="156" y="88" width="18" height="3"/>
-        <rect class="cls-8" x="156" y="63" width="18" height="3"/>
-        <rect class="cls-7" x="185" y="61" width="22" height="26"/>
-        <rect class="cls-12" x="185" y="65" width="22" height="18" transform="translate(270 -122) rotate(90)"/>
-        <rect class="cls-7" x="187" y="66" width="18" height="2"/>
-        <rect class="cls-7" x="195" y="67" width="2" height="19"/>
-        <rect class="cls-8" x="187" y="63" width="18" height="3"/>
-        <rect class="cls-7" x="217" y="61" width="22" height="32"/>
-        <rect class="cls-12" x="214" y="68" width="28" height="18" transform="translate(305 -151) rotate(90)"/>
-        <rect class="cls-7" x="219" y="66" width="18" height="2"/>
-        <rect class="cls-7" x="219" y="86" width="18" height="2"/>
-        <rect class="cls-7" x="227" y="68" width="2" height="19"/>
-        <rect class="cls-8" x="219" y="88" width="18" height="3"/>
-        <rect class="cls-8" x="219" y="63" width="18" height="3"/>
-        <rect class="cls-11" x="187" y="93" width="18" height="5"/>
-        <polyline class="cls-14" points="203 35 196 35 196 28"/>
-      </g>
-      <path class="cls-15" d="M342.2,80.16v-.22a9,9,0,0,0-.4-2.19,8,8,0,0,0-13.15-5.64,9.23,9.23,0,0,0-7.71-3.64c-5.82,0-10.21,5.07-10.31,10.79,0,.39.1.69.1,1.08a7.89,7.89,0,0,0-4.83,7.29,8.74,8.74,0,0,0,8.5,8.65c.45,3.23,3.34,6.23,8.3,6.23,4.18,0,6.68.34,9.73-3.09a10.28,10.28,0,0,0,4.86,1.33c5.86,0,10.72-5.19,10.72-11.05A11.52,11.52,0,0,0,342.2,80.16Z"/>
-    </g>
-    <path class="cls-16" d="M102.69,111.2a7.84,7.84,0,0,0,1.31-4.37,7.4,7.4,0,0,0-5.64-7.37A9.1,9.1,0,0,0,99,96.1c0-4.74-3.58-8.59-8-8.59a7.5,7.5,0,0,0-3.27.76A10.17,10.17,0,0,0,78,80c-5.52,0-10,4.8-10,10.73,0,.39,0,.77.06,1.15A7.35,7.35,0,0,0,62,99.32a7.87,7.87,0,0,0,1.09,4c-4.74,1.6-8.09,5.44-8.09,9.93C55,119.2,60.82,124,68,124H99c3,0,6.85-4.3,6.85-7.51A5.86,5.86,0,0,0,102.69,111.2Z"/>
-    <path class="cls-17" d="M83.64,107A6,6,0,0,0,76,99.36a6,6,0,0,0-11.83-.61,7,7,0,0,0-9.81,8.36A8.94,8.94,0,0,0,44,116c0,5,4,8,9,8H82c4.42,0,9-4.58,9-9A8,8,0,0,0,83.64,107Z"/>
-  </g>
-</svg>
diff --git a/education/images/MSC17_cloud_005.png b/education/images/MSC17_cloud_005.png
deleted file mode 100644
index dfda08109c..0000000000
Binary files a/education/images/MSC17_cloud_005.png and /dev/null differ
diff --git a/education/images/MSC17_cloud_012_merged.png b/education/images/MSC17_cloud_012_merged.png
deleted file mode 100644
index 4defcaa59c..0000000000
Binary files a/education/images/MSC17_cloud_012_merged.png and /dev/null differ
diff --git a/education/images/data-streamer.png b/education/images/data-streamer.png
deleted file mode 100644
index 6473d9da33..0000000000
Binary files a/education/images/data-streamer.png and /dev/null differ
diff --git a/education/images/education-ms-teams.svg b/education/images/education-ms-teams.svg
deleted file mode 100644
index 2d1396b3f7..0000000000
--- a/education/images/education-ms-teams.svg
+++ /dev/null
@@ -1,258 +0,0 @@
-<svg id="ICONS" xmlns="https://www.w3.org/2000/svg" viewBox="0 0 400 140">
-  <defs>
-    <style>
-      .cls-1 {
-        fill: #5c2d91;
-      }
-
-      .cls-2, .cls-20 {
-        fill: none;
-        stroke-miterlimit: 10;
-        stroke-width: 2px;
-      }
-
-      .cls-2 {
-        stroke: #808285;
-      }
-
-      .cls-3 {
-        fill: #2a6dcf;
-      }
-
-      .cls-4 {
-        fill: #6d6e71;
-      }
-
-      .cls-5 {
-        fill: #414042;
-      }
-
-      .cls-6 {
-        fill: #fff;
-      }
-
-      .cls-7 {
-        fill: #808285;
-      }
-
-      .cls-8 {
-        fill: #bad80a;
-      }
-
-      .cls-9 {
-        fill: #556a8a;
-      }
-
-      .cls-10 {
-        fill: gray;
-      }
-
-      .cls-11 {
-        fill: #2e2e2e;
-      }
-
-      .cls-12 {
-        fill: #1a1a1a;
-      }
-
-      .cls-13 {
-        fill: #221f1f;
-      }
-
-      .cls-14 {
-        fill: #80bceb;
-      }
-
-      .cls-15 {
-        fill: #b62a2a;
-      }
-
-      .cls-16 {
-        fill: #f0d4d4;
-      }
-
-      .cls-17 {
-        fill: #d1d3d4;
-      }
-
-      .cls-18 {
-        fill: #e6e7e8;
-      }
-
-      .cls-19 {
-        fill: #939598;
-      }
-
-      .cls-20 {
-        stroke: #414042;
-      }
-
-      .cls-21 {
-        fill: #f1f2f2;
-      }
-
-      .cls-22 {
-        fill: #2b978a;
-      }
-
-      .cls-23 {
-        fill: #008272;
-      }
-
-      .cls-24 {
-        fill: #558ad8;
-      }
-
-      .cls-25 {
-        fill: #aad2f2;
-      }
-    </style>
-  </defs>
-  <title>education-pro-usb copy</title>
-  <g>
-    <ellipse class="cls-1" cx="66.48" cy="32.04" rx="11.52" ry="12.96"/>
-    <line class="cls-2" x1="81" y1="57" x2="165" y2="57"/>
-    <path class="cls-1" d="M89.7,65.67A3.44,3.44,0,0,1,86.24,69H46.76a3.44,3.44,0,0,1-3.47-3.33c-.38-7.33-1.22-16.17,3.87-21.1a12.82,12.82,0,0,1,6.11-3.2,16.51,16.51,0,0,0,12.89,6.32,13.08,13.08,0,0,0,1.52-.08,16.55,16.55,0,0,0,11.47-6.38C91.5,43.83,90.2,56.06,89.7,65.67Z"/>
-  </g>
-  <polyline class="cls-2" points="102 113 142 113 142 88"/>
-  <line class="cls-2" x1="267.21" y1="64" x2="351.21" y2="64"/>
-  <g>
-    <ellipse class="cls-3" cx="338.69" cy="38.34" rx="12.67" ry="14.26"/>
-    <path class="cls-3" d="M364.24,75.33A3.78,3.78,0,0,1,360.42,79H317a3.78,3.78,0,0,1-3.81-3.67c-.41-8.06-1.34-17.79,4.25-23.21a14.1,14.1,0,0,1,6.72-3.52,18.16,18.16,0,0,0,14.18,7,14.39,14.39,0,0,0,1.67-.09,18.2,18.2,0,0,0,12.61-7C366.21,51.31,364.78,64.77,364.24,75.33Z"/>
-  </g>
-  <g>
-    <path class="cls-4" d="M328.21,61.12V89.88a.63.63,0,0,1-.64.62H304.85a.63.63,0,0,1-.64-.62V61.12a.63.63,0,0,1,.64-.62h22.72A.63.63,0,0,1,328.21,61.12Z"/>
-    <g>
-      <rect class="cls-5" x="302.21" y="63.5" width="2" height="2"/>
-      <rect class="cls-6" x="304.21" y="63.5" width="2" height="2"/>
-    </g>
-    <g>
-      <rect class="cls-5" x="302.21" y="70.5" width="2" height="2"/>
-      <rect class="cls-6" x="304.21" y="70.5" width="2" height="2"/>
-    </g>
-    <g>
-      <rect class="cls-5" x="302.21" y="77.5" width="2" height="2"/>
-      <rect class="cls-6" x="304.21" y="77.5" width="2" height="2"/>
-    </g>
-    <g>
-      <rect class="cls-5" x="302.21" y="84.5" width="2" height="2"/>
-      <rect class="cls-6" x="304.21" y="84.5" width="2" height="2"/>
-    </g>
-    <path class="cls-7" d="M328.21,61.12V76.5l-16-16h15.36A.63.63,0,0,1,328.21,61.12Z"/>
-    <rect class="cls-6" x="309.21" y="64.5" width="14" height="4"/>
-  </g>
-  <g>
-    <ellipse class="cls-8" cx="90.48" cy="89.04" rx="11.52" ry="12.96"/>
-    <path class="cls-8" d="M113.7,122.67a3.44,3.44,0,0,1-3.47,3.33H70.76a3.44,3.44,0,0,1-3.47-3.33c-.38-7.33-1.22-16.17,3.87-21.1a12.82,12.82,0,0,1,6.11-3.2,16.51,16.51,0,0,0,12.89,6.32,13.08,13.08,0,0,0,1.52-.08,16.55,16.55,0,0,0,11.47-6.38C115.5,100.83,114.2,113.06,113.7,122.67Z"/>
-  </g>
-  <g>
-    <rect class="cls-3" x="89.97" y="110.03" width="30" height="8" transform="translate(-49.89 107.62) rotate(-45)"/>
-    <polygon class="cls-9" points="90.12 123.22 88 131 95.78 128.88 90.12 123.22"/>
-    <path class="cls-9" d="M119.11,105.54l1.41-1.41a3,3,0,0,0,0-4.24l-1.41-1.41a3,3,0,0,0-4.24,0l-1.41,1.41Z"/>
-    <rect class="cls-6" x="113.31" y="101.19" width="1" height="8" transform="translate(-41.05 111.29) rotate(-45)"/>
-  </g>
-  <g>
-    <g>
-      <polygon class="cls-10" points="265 126 148 126 155.32 118 258.15 118 265 126"/>
-      <polygon class="cls-11" points="254 124 159 124 162.34 119 250.76 119 254 124"/>
-      <path class="cls-12" d="M260.37,129H153.3c-4.95,0-5-2.91-5-2.91H265S265.58,129,260.37,129Z"/>
-    </g>
-    <polygon class="cls-12" points="216 112 196 112 198 98 214 98 214.14 99 216 112"/>
-    <polygon class="cls-11" points="216 112 206 112 206 99 214.14 99 216 112"/>
-    <rect class="cls-13" x="130" y="16" width="153" height="84" rx="4" ry="4"/>
-    <rect class="cls-14" x="134" y="20" width="145" height="76"/>
-    <path class="cls-11" d="M235.79,116H177.21a2.12,2.12,0,0,1-2.21-2s3.74-3,3.92-3h54.16c2.25,0,4.92,3,4.92,3A2.12,2.12,0,0,1,235.79,116Z"/>
-  </g>
-  <g>
-    <polygon class="cls-5" points="244.11 36 176.62 36 151.67 50 268.17 50 244.11 36"/>
-    <rect class="cls-4" x="152" y="50" width="116" height="34"/>
-    <polygon class="cls-15" points="210.25 31 209.75 31 184 49.69 184 84 236 84 236 49.69 210.25 31"/>
-    <g>
-      <rect class="cls-16" x="227" y="59" width="4" height="4"/>
-      <rect class="cls-16" x="227" y="54" width="4" height="4"/>
-      <rect class="cls-16" x="222" y="59" width="4" height="4"/>
-      <rect class="cls-16" x="222" y="54" width="4" height="4"/>
-      <rect class="cls-16" x="194" y="59" width="4" height="4"/>
-      <rect class="cls-16" x="194" y="54" width="4" height="4"/>
-      <rect class="cls-16" x="189" y="59" width="4" height="4"/>
-      <rect class="cls-16" x="189" y="54" width="4" height="4"/>
-      <rect class="cls-16" x="194" y="72" width="4" height="4"/>
-      <rect class="cls-16" x="194" y="67" width="4" height="4"/>
-      <rect class="cls-16" x="189" y="72" width="4" height="4"/>
-      <rect class="cls-16" x="189" y="67" width="4" height="4"/>
-      <rect class="cls-16" x="227" y="72" width="4" height="4"/>
-      <rect class="cls-16" x="227" y="67" width="4" height="4"/>
-      <rect class="cls-16" x="222" y="72" width="4" height="4"/>
-      <rect class="cls-16" x="222" y="67" width="4" height="4"/>
-      <rect class="cls-16" x="210" y="59" width="4" height="4"/>
-      <rect class="cls-16" x="210" y="54" width="4" height="4"/>
-      <rect class="cls-16" x="205" y="59" width="4" height="4"/>
-      <rect class="cls-16" x="205" y="54" width="4" height="4"/>
-    </g>
-    <rect class="cls-5" x="204" y="70" width="12" height="14"/>
-    <rect class="cls-17" x="205" y="71" width="10" height="13"/>
-    <g>
-      <rect class="cls-18" x="162" y="59" width="3" height="4"/>
-      <rect class="cls-18" x="162" y="54" width="3" height="4"/>
-      <rect class="cls-18" x="158" y="54" width="3" height="4"/>
-      <rect class="cls-18" x="158" y="59" width="3" height="4"/>
-    </g>
-    <g>
-      <rect class="cls-18" x="162" y="72" width="3" height="4"/>
-      <rect class="cls-18" x="162" y="67" width="3" height="4"/>
-      <rect class="cls-18" x="158" y="67" width="3" height="4"/>
-      <rect class="cls-18" x="158" y="72" width="3" height="4"/>
-    </g>
-    <g>
-      <rect class="cls-18" x="175" y="59" width="3" height="4"/>
-      <rect class="cls-18" x="175" y="54" width="3" height="4"/>
-      <rect class="cls-18" x="171" y="59" width="3" height="4"/>
-      <rect class="cls-18" x="171" y="54" width="3" height="4"/>
-    </g>
-    <g>
-      <rect class="cls-18" x="175" y="72" width="3" height="4"/>
-      <rect class="cls-18" x="175" y="67" width="3" height="4"/>
-      <rect class="cls-18" x="171" y="72" width="3" height="4"/>
-      <rect class="cls-18" x="171" y="67" width="3" height="4"/>
-    </g>
-    <g>
-      <rect class="cls-18" x="246" y="59" width="3" height="4"/>
-      <rect class="cls-18" x="246" y="54" width="3" height="4"/>
-      <rect class="cls-18" x="242" y="59" width="3" height="4"/>
-      <rect class="cls-18" x="242" y="54" width="3" height="4"/>
-      <g>
-        <rect class="cls-18" x="259" y="59" width="3" height="4"/>
-        <rect class="cls-18" x="259" y="54" width="3" height="4"/>
-        <rect class="cls-18" x="255" y="59" width="3" height="4"/>
-        <rect class="cls-18" x="255" y="54" width="3" height="4"/>
-      </g>
-    </g>
-    <g>
-      <rect class="cls-18" x="246" y="72" width="3" height="4"/>
-      <rect class="cls-18" x="246" y="67" width="3" height="4"/>
-      <rect class="cls-18" x="242" y="72" width="3" height="4"/>
-      <rect class="cls-18" x="242" y="67" width="3" height="4"/>
-      <g>
-        <rect class="cls-18" x="259" y="72" width="3" height="4"/>
-        <rect class="cls-18" x="259" y="67" width="3" height="4"/>
-        <rect class="cls-18" x="255" y="72" width="3" height="4"/>
-        <rect class="cls-18" x="255" y="67" width="3" height="4"/>
-      </g>
-    </g>
-    <path class="cls-19" d="M214.24,37.76a6,6,0,1,1-8.49,0A6,6,0,0,1,214.24,37.76Z"/>
-    <polyline class="cls-20" points="214.5 43 210 43 210 38"/>
-    <polygon class="cls-21" points="215 71 215 77 209 71 215 71"/>
-    <path class="cls-22" d="M162.67,80.42a3.3,3.3,0,0,1-.8,2.2,5,5,0,0,1-2.14,1.4l-.27.1a9.78,9.78,0,0,1-1.29.3c-1.33.22-6.55,0-8.25,0-3.73,0-6.75-2.12-6.75-4.75a4.46,4.46,0,0,1,2.65-3.77,2.75,2.75,0,0,1-1.15-2.23,1.79,1.79,0,0,1,0-.24,2.67,2.67,0,0,1,.67-1.58,2.72,2.72,0,0,1,2.06-.93,2.9,2.9,0,0,1,.76.1,9,9,0,0,1,.23-1.87,7.58,7.58,0,0,1,.6-1.7,4,4,0,0,1,3.42-2.53c1.81,0,3.35,1.66,4,4,2.11.09,3.79,1.51,3.79,3.24a2.81,2.81,0,0,1-.65,1.77,3.42,3.42,0,0,1,2.15,3,2.79,2.79,0,0,1-.29,1.21A2.94,2.94,0,0,1,162.67,80.42Z"/>
-    <path class="cls-23" d="M159.73,84l-.27.1a9.78,9.78,0,0,1-1.29.3h-8.25c-3.73,0-6.75-2.12-6.75-4.75a4.46,4.46,0,0,1,2.65-3.77,2.75,2.75,0,0,1-1.15-2.23,1.79,1.79,0,0,1,0-.24,2.65,2.65,0,0,1,.49.09,9,9,0,0,1,.18-1.67,2.72,2.72,0,0,1,2.06-.93,2.9,2.9,0,0,1,.76.1,9,9,0,0,1,.23-1.87,7.58,7.58,0,0,1,.6-1.7,2.84,2.84,0,0,1,.42,0c1.81,0,3.75,1,3.75,4,2.79-1,4.5.76,4.5,2.5a3.38,3.38,0,0,1-1.15,2.52c1.65,0,2.65.72,2.65,2a3.14,3.14,0,0,1-.79,2.21,2.94,2.94,0,0,1,1.29,2.29C159.67,83.21,159.74,83.65,159.73,84Z"/>
-  </g>
-  <g>
-    <g>
-      <polygon class="cls-3" points="93 36 93 50 109.5 33.5 93 36"/>
-      <rect class="cls-3" x="87" y="15" width="34" height="27" rx="3" ry="3"/>
-    </g>
-    <path class="cls-24" d="M121,18V31L105,15h13A3,3,0,0,1,121,18Z"/>
-    <rect class="cls-25" x="96" y="24" width="16" height="1"/>
-    <rect class="cls-25" x="96" y="28" width="16" height="1"/>
-    <rect class="cls-25" x="96" y="32" width="9" height="1"/>
-  </g>
-</svg>
diff --git a/education/images/education-partner-aep-2.svg b/education/images/education-partner-aep-2.svg
deleted file mode 100644
index 6bf0c2c3ac..0000000000
--- a/education/images/education-partner-aep-2.svg
+++ /dev/null
@@ -1,84 +0,0 @@
-<svg id="ICONS" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 400 140">
-  <defs>
-    <style>
-      .cls-1 {
-        fill: #55a5e4;
-        opacity: 0.2;
-      }
-
-      .cls-2 {
-        fill: #fff;
-        stroke: #55a5e4;
-        stroke-miterlimit: 10;
-        stroke-width: 2px;
-      }
-
-      .cls-3 {
-        fill: #7750a3;
-      }
-
-      .cls-4 {
-        fill: #4d4e4e;
-      }
-
-      .cls-5 {
-        fill: #0078d7;
-      }
-
-      .cls-6 {
-        fill: #2b8fde;
-      }
-
-      .cls-7 {
-        fill: #0050c5;
-      }
-
-      .cls-8 {
-        fill: #b4a0ff;
-        opacity: 0.5;
-      }
-
-      .cls-9 {
-        fill: #bad80a;
-      }
-
-      .cls-10 {
-        fill: #ddec85;
-      }
-
-      .cls-11 {
-        fill: #80bceb;
-      }
-    </style>
-  </defs>
-  <title>education-partner-aep-2</title>
-  <g>
-    <path class="cls-1" d="M119.51,50.32a35.43,35.43,0,0,1,69.94-1.11,24.11,24.11,0,0,1,38.72,12.26,21.07,21.07,0,1,1,5,41.54H114.58c-12-2.44-21.08-13.6-21.08-26.35A26.34,26.34,0,0,1,119.51,50.32Z"/>
-    <g>
-      <path class="cls-2" d="M124.38,65.52a37.39,37.39,0,0,1,74-1.19,25.21,25.21,0,0,1,16.34-6,25.57,25.57,0,0,1,24.62,19.14,22,22,0,0,1,5.29-.67,22.61,22.61,0,0,1,0,45.21H119.17c-12.72-2.62-22.3-14.59-22.3-28.25A28.06,28.06,0,0,1,124.38,65.52Z"/>
-      <g>
-        <ellipse class="cls-3" cx="163" cy="69.36" rx="14.5" ry="16.5"/>
-        <path class="cls-3" d="M192.13,111.64a4.49,4.49,0,0,1-3.68,4.31,3.81,3.81,0,0,1-.59,0H139.14a4.46,4.46,0,0,1-4.28-4.36c-.46-9.16-1.5-20.22,4.78-26.38a15.69,15.69,0,0,1,7.53-4,20.35,20.35,0,0,0,14.42,7.84,14.71,14.71,0,0,0,1.49.07,16.36,16.36,0,0,0,1.87-.1,20.39,20.39,0,0,0,14.15-8C194.35,84.33,192.74,99.63,192.13,111.64Z"/>
-      </g>
-      <g>
-        <rect class="cls-4" x="142.5" y="49" width="3" height="18.75" rx="1.5" ry="1.5"/>
-        <path class="cls-5" d="M185.87,50l-8.37,3V63c0,4.17-6.83,8-14.62,8s-14.38-3.83-14.38-8V53l-8.63-3,23-8Z"/>
-        <path class="cls-6" d="M177.5,54v9c0,4.17-6.83,8-14.62,8s-14.38-3.83-14.38-8V54l14,7Z"/>
-        <polygon class="cls-7" points="163.5 63 177.5 58.05 177.5 53 163.5 58 148.5 53 148.5 58.05 163.5 63"/>
-        <path class="cls-4" d="M141.5,72V67.5c0-1.65.9-3,2-3h1c1.1,0,2,1.35,2,3V72Z"/>
-      </g>
-      <path class="cls-8" d="M192.13,111.64a4.49,4.49,0,0,1-3.68,4.31L161.59,89.09a14.71,14.71,0,0,0,1.49.07,16.36,16.36,0,0,0,1.87-.1,20.39,20.39,0,0,0,14.15-8C194.35,84.33,192.74,99.63,192.13,111.64Z"/>
-      <circle class="cls-9" cx="253.5" cy="78" r="53" transform="translate(19.09 202.1) rotate(-45)"/>
-      <path class="cls-10" d="M291,40.52a53,53,0,0,1,0,75l-75-75A53,53,0,0,1,291,40.52Z"/>
-      <polygon class="cls-5" points="118.5 81 121.16 87.85 128.5 88.27 122.81 92.92 124.68 100.02 118.5 96.05 112.32 100.02 114.19 92.92 108.5 88.27 115.84 87.85 118.5 81"/>
-      <g>
-        <polygon class="cls-5" points="258.49 70.32 256.48 78.17 247.28 114 241.48 104.19 237.54 106.53 231.68 109.99 242.88 66.31 258.49 70.32"/>
-        <polygon class="cls-6" points="256.48 78.17 247.28 114 241.48 104.19 237.54 106.53 245.54 75.35 256.48 78.17"/>
-        <polygon class="cls-5" points="276.04 106.88 268.44 104.11 265.33 102.98 261.44 113.68 242.92 73.93 242.38 72.8 256.98 66.01 276.04 106.88"/>
-        <polygon class="cls-6" points="268.44 104.11 265.33 102.98 261.44 113.68 242.92 73.93 252.32 69.55 268.44 104.11"/>
-        <polygon class="cls-7" points="252.05 47.01 258.09 43.14 261.38 49.51 268.55 49.18 268.22 56.35 274.6 59.64 270.72 65.69 274.6 71.73 268.22 75.02 268.55 82.19 261.38 81.86 258.09 88.23 252.05 84.36 246.01 88.23 242.71 81.86 235.54 82.19 235.88 75.02 229.5 71.73 233.37 65.69 229.5 59.64 235.88 56.35 235.54 49.18 242.71 49.51 246.01 43.14 252.05 47.01"/>
-        <path class="cls-11" d="M261,65.68a9,9,0,1,1-9-9A8.93,8.93,0,0,1,261,65.68Z"/>
-      </g>
-    </g>
-  </g>
-</svg>
diff --git a/education/images/education-partner-directory-3.svg b/education/images/education-partner-directory-3.svg
deleted file mode 100644
index ba8f644949..0000000000
--- a/education/images/education-partner-directory-3.svg
+++ /dev/null
@@ -1,95 +0,0 @@
-<svg id="ICONS" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 400 140">
-  <defs>
-    <style>
-      .cls-1 {
-        fill: #55a5e4;
-      }
-
-      .cls-11, .cls-2, .cls-3 {
-        fill: #fff;
-      }
-
-      .cls-2, .cls-5, .cls-9 {
-        stroke: #556a8a;
-        stroke-width: 2px;
-      }
-
-      .cls-2, .cls-5 {
-        stroke-linecap: round;
-        stroke-linejoin: round;
-      }
-
-      .cls-4 {
-        fill: #556a8a;
-      }
-
-      .cls-10, .cls-5, .cls-7, .cls-9 {
-        fill: none;
-      }
-
-      .cls-6 {
-        fill: #e5e5e5;
-      }
-
-      .cls-7 {
-        stroke: #a7a9ac;
-      }
-
-      .cls-7, .cls-9 {
-        stroke-miterlimit: 10;
-      }
-
-      .cls-8 {
-        fill: #d4e2f5;
-      }
-
-      .cls-11 {
-        opacity: 0.1;
-      }
-
-      .cls-12 {
-        fill: #e4edf1;
-        opacity: 0.34;
-      }
-    </style>
-  </defs>
-  <title>education-partner-directory-3</title>
-  <g>
-    <path class="cls-1" d="M117,66.32a35.43,35.43,0,0,1,69.94-1.11,24.11,24.11,0,0,1,38.72,12.26,21.07,21.07,0,1,1,5,41.54H112.08c-12-2.44-21.08-13.6-21.08-26.35A26.34,26.34,0,0,1,117,66.32Z"/>
-    <rect class="cls-2" x="185" y="29" width="124" height="97"/>
-    <path class="cls-3" d="M247,124a13.75,13.75,0,0,0-9-4H196V23h43c7,0,8,10,8,10s1-10,8-10h43v97H256a13.75,13.75,0,0,0-9,4"/>
-    <rect class="cls-4" x="246" y="30" width="2" height="93.32"/>
-    <path class="cls-5" d="M247,124a13.75,13.75,0,0,0-9-4H196V23h43c7,0,8,10,8,10s1-10,8-10h43v97H256a13.75,13.75,0,0,0-9,4"/>
-    <rect class="cls-6" x="197" y="24" width="15" height="95"/>
-    <rect class="cls-6" x="282" y="24" width="15" height="95"/>
-    <g>
-      <line class="cls-7" x1="216" y1="42" x2="240" y2="42"/>
-      <line class="cls-7" x1="216" y1="53" x2="240" y2="53"/>
-      <line class="cls-7" x1="216" y1="64" x2="240" y2="64"/>
-      <line class="cls-7" x1="216" y1="75" x2="240" y2="75"/>
-      <line class="cls-7" x1="216" y1="86" x2="240" y2="86"/>
-      <line class="cls-7" x1="216" y1="97" x2="240" y2="97"/>
-    </g>
-    <g>
-      <circle class="cls-3" cx="192" cy="42" r="32"/>
-      <path class="cls-3" d="M222.5,41.75a2.09,2.09,0,0,1,0,.25A30.24,30.24,0,0,1,162,42a2.09,2.09,0,0,1,0-.25,30.25,30.25,0,0,1,60.5,0Z"/>
-      <path class="cls-8" d="M192.25,72.5A30.82,30.82,0,0,1,161.51,42v-.5H223V42A30.82,30.82,0,0,1,192.25,72.5Z"/>
-      <path class="cls-4" d="M192,12a30,30,0,1,1-30,30,30,30,0,0,1,30-30m0-2a32,32,0,1,0,32,32,32,32,0,0,0-32-32Z"/>
-      <path class="cls-4" d="M192,12c5.71,0,12.08,12.32,12.08,30S197.71,72,192,72s-12.08-12.32-12.08-30S186.29,12,192,12m0-2c-7.78,0-14.08,14.33-14.08,32s6.3,32,14.08,32,14.08-14.33,14.08-32S199.78,10,192,10Z"/>
-      <path class="cls-9" d="M217.88,25c-4.63,1.39-14.57,2.36-26.09,2.36s-21.67-1-26.23-2.4"/>
-      <path class="cls-9" d="M165.55,58.32c4.34-1.41,14.49-2.4,26.33-2.4,11.54,0,21.49.94,26,2.3"/>
-      <line class="cls-9" x1="160.94" y1="42" x2="223.33" y2="42"/>
-      <rect class="cls-10" x="160" y="10" width="64" height="64"/>
-    </g>
-    <g>
-      <line class="cls-7" x1="254" y1="42" x2="278" y2="42"/>
-      <line class="cls-7" x1="254" y1="53" x2="278" y2="53"/>
-      <line class="cls-7" x1="254" y1="64" x2="278" y2="64"/>
-      <line class="cls-7" x1="254" y1="75" x2="278" y2="75"/>
-      <line class="cls-7" x1="254" y1="86" x2="278" y2="86"/>
-      <line class="cls-7" x1="254" y1="97" x2="278" y2="97"/>
-    </g>
-    <path class="cls-11" d="M124.22,73a31.49,31.49,0,0,1,62.17-1,21.43,21.43,0,0,1,34.42,10.89,18.73,18.73,0,1,1,4.45,36.93H119.84c-10.69-2.17-18.74-12.09-18.74-23.43A23.42,23.42,0,0,1,124.22,73Z"/>
-    <path class="cls-12" d="M161.43,74.55a15.53,15.53,0,1,0-5.55,7.23v5.07h4.92v5.67h6.48V99H177V89.56Zm-18.61-7.11a4,4,0,1,1,4-4A4,4,0,0,1,142.82,67.44Z"/>
-  </g>
-</svg>
diff --git a/education/images/education-partner-mepn-1.svg b/education/images/education-partner-mepn-1.svg
deleted file mode 100644
index b2585e2969..0000000000
--- a/education/images/education-partner-mepn-1.svg
+++ /dev/null
@@ -1,103 +0,0 @@
-<svg id="ICONS" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 400 140">
-  <defs>
-    <style>
-      .cls-1 {
-        fill: #0078d7;
-        isolation: isolate;
-      }
-
-      .cls-2 {
-        fill: #2dbceb;
-        opacity: 0.41;
-      }
-
-      .cls-3 {
-        fill: #556a8a;
-      }
-
-      .cls-4 {
-        fill: #bad80a;
-      }
-
-      .cls-14, .cls-5 {
-        fill: none;
-      }
-
-      .cls-5 {
-        stroke: #556a8a;
-      }
-
-      .cls-5, .cls-8 {
-        stroke-miterlimit: 10;
-        stroke-width: 2px;
-      }
-
-      .cls-6, .cls-8 {
-        fill: #fff;
-      }
-
-      .cls-7 {
-        fill: #e5e5e5;
-      }
-
-      .cls-8 {
-        stroke: #55a5e4;
-      }
-
-      .cls-9 {
-        fill: #55a5e4;
-        opacity: 0.3;
-      }
-
-      .cls-10 {
-        fill: #2b6dcf;
-      }
-
-      .cls-11 {
-        fill: #558ad8;
-      }
-
-      .cls-12 {
-        fill: #939598;
-      }
-
-      .cls-13 {
-        fill: #4d4d4d;
-      }
-    </style>
-  </defs>
-  <title>education-partner-mepn-1</title>
-  <g>
-    <ellipse class="cls-1" cx="104.5" cy="29.46" rx="10" ry="12.46"/>
-    <path class="cls-1" d="M87.5,101.43V140H98.58c1.54-13.16,3.6-30.57,3.94-32.83.43-2.76,4.7-2.76,5.12,0,.35,2.26,2.74,19.67,4.45,32.83h10.4V99h6l-.33-12.33-.67-25.2,8.42,2.19a4.54,4.54,0,0,0,1.93.25,4.49,4.49,0,0,0,1.48-.38l19-9.45a4.54,4.54,0,1,0-3.75-8.27L138,52.64,122.08,48c-.93-.28-1.91-.57-2.94-.86l0,0c-2.06-.58-4.18-1.16-5.79-1.59l-2.7-.72-6,12.48h-.1l-6-12.48s-5.77,1.3-9.89,2.39L87,47.6A8.84,8.84,0,0,0,81.48,52,11.43,11.43,0,0,0,80.2,56.4c-.61,6.36-.6,20.59-1.12,26.31-.19,2-.2,8.56,2.07,11.48A88.76,88.76,0,0,0,87.5,101.43Z"/>
-    <path class="cls-2" d="M158.36,54.08l-19,9.45a4.49,4.49,0,0,1-1.48.38,4.54,4.54,0,0,1-1.93-.25l-8.42-2.19.67,25.2L128.5,99l-47-47A8.84,8.84,0,0,1,87,47.6l1.63-.44c4.12-1.09,9.89-2.39,9.89-2.39l6,12.48h.1l6-12.48,2.7.72c1.61.43,3.73,1,5.79,1.59l0,0c1,.29,2,.58,2.94.86L138,52.64l16.63-6.83a4.54,4.54,0,1,1,3.75,8.27Z"/>
-  </g>
-  <g>
-    <path class="cls-3" d="M136.66,40.43h3.41l-.09-18h-3.32c-2.2,0-4.65,4.35-4.62,9S134.46,40.45,136.66,40.43Z"/>
-    <path class="cls-4" d="M134.62,31.53c0-5,1.74-9,3.94-9a14,14,0,0,1,1.76,0c1.91.67,2.25,4.46,2.27,8.93s.22,8.36-1.72,9c-.17.05-2,0-2.22,0C136.45,40.5,134.65,36.49,134.62,31.53Z"/>
-    <path class="cls-5" d="M158.39,35.18h-2.7a7.65,7.65,0,1,0,0,15.3h2.7a7.65,7.65,0,1,0,0-15.3Z"/>
-    <path class="cls-6" d="M179.06,31.52v-.08c0-8.74,1-15.81,3-19-3.7,1.91-12.29,4.88-22.83,7.61-5,1.3-19.12,3.36-19.17,3.39-1.53,1.53-1.9,5.59-2,7.37,0,.27,0,.48,0,.63,0,1.13.24,6.24,2,8,0,0,14.21,2.09,19.17,3.39,10.54,2.73,19.13,5.7,22.83,7.61-1.6-2.54-2.56-7.62-2.87-14.07C179.1,34.85,179.06,33.22,179.06,31.52Z"/>
-    <path class="cls-7" d="M182,50.48c-3.7-1.91-12.29-4.88-22.83-7.61-5-1.3-19.12-3.36-19.17-3.39-1.76-1.76-2-8.36-1.65-7.8,0,0,12,1.55,18.65,2.8s22,6,22,6C179,46.1,180.44,47.94,182,50.48Z"/>
-    <path class="cls-5" d="M179.06,31.48v0c0-8,.83-14.61,2.5-18.08.15-.32-.38,0-.21-.3-.47.24.81-.56.19-.28a168.81,168.81,0,0,1-22.33,7.31c-5,1.3-19.12,3.36-19.17,3.39-1.76,1.76-2,6.87-2,8s.24,6.24,2,8c.05,0,14.21,2.09,19.17,3.39,10.54,2.73,17.5,5.11,21.2,7-.25-.39,1,.61.75.09-1.52-3.58-2.1-10.83-2.1-18.47Z"/>
-    <path class="cls-4" d="M190.57,31.5c0,8.33-2.32,15.48-4.24,18.7-.68,1.15-1.45,1.8-2.25,1.8a2.59,2.59,0,0,1-2-1.36c-1.58-2.27-2.81-7.18-3.29-13.28-.15-1.86-.23-3.82-.23-5.86s.08-4,.23-5.9c.49-6.08,1.71-11,3.29-13.23a2.58,2.58,0,0,1,2-1.37c.8,0,1.57.64,2.25,1.81C188.25,16,190.57,23.19,190.57,31.5Z"/>
-    <path class="cls-3" d="M186,31.48a6,6,0,0,1-6,6,6.09,6.09,0,0,1-1.22-.12c-.15-1.86-.23-3.82-.23-5.86s.08-4,.23-5.9a6.08,6.08,0,0,1,1.22-.12A6,6,0,0,1,186,31.48Z"/>
-    <path class="cls-5" d="M190.57,31.5c0,8.33-2.32,15.48-4.24,18.7-.68,1.15-1.45,1.8-2.25,1.8a2.57,2.57,0,0,1-2-1.36c-2.06-3-3.52-10.4-3.52-19.14s1.46-16.17,3.52-19.13a2.59,2.59,0,0,1,2-1.37c.8,0,1.57.65,2.25,1.81C188.25,16,190.57,23.19,190.57,31.5Z"/>
-  </g>
-  <line class="cls-5" x1="194" y1="31" x2="215" y2="31"/>
-  <line class="cls-5" x1="194" y1="27" x2="206.5" y2="14.5"/>
-  <line class="cls-5" x1="206" y1="48" x2="194" y2="36"/>
-  <path class="cls-8" d="M205,119.49a25.36,25.36,0,0,1-.21-49.42c1.86-11.89,12-21,23.91-21A24,24,0,0,1,249.1,60.55,24.2,24.2,0,0,1,259.85,58c10.36,0,33.33-3.63,30.34,8.46,1.56-.33-4,7.57-2.39,7.57a22.89,22.89,0,0,1,9.69,43.64l-.35.15a21.08,21.08,0,0,1-6.77,1.85l-.57.06c-3,.26-7,.31-13.37.31H209.83A20.74,20.74,0,0,1,205,119.49Z"/>
-  <path class="cls-9" d="M174.53,84.54a28.34,28.34,0,0,1,56-.89,19.29,19.29,0,0,1,31,9.8,16.86,16.86,0,1,1,4,33.23H170.59a21.56,21.56,0,0,1-16.87-21.08A21.08,21.08,0,0,1,174.53,84.54Z"/>
-  <g>
-    <path class="cls-10" d="M314.4,68.17A45.49,45.49,0,1,1,301.08,36,45.41,45.41,0,0,1,314.4,68.17Z"/>
-    <path class="cls-11" d="M314.4,68.17a45.41,45.41,0,0,1-12.61,31.47L237.44,35.28a45.51,45.51,0,0,1,77,32.89Z"/>
-    <polygon class="cls-12" points="242.76 42.03 260.86 76.21 295.04 94.31 273.17 62.48 242.76 42.03"/>
-    <rect class="cls-6" x="267.48" y="26.94" width="2.84" height="12.8"/>
-    <rect class="cls-6" x="267.48" y="96.61" width="2.84" height="12.8"/>
-    <rect class="cls-6" x="232.65" y="61.77" width="2.84" height="12.8" transform="translate(165.9 302.24) rotate(-90)"/>
-    <rect class="cls-6" x="302.32" y="61.77" width="2.84" height="12.8" transform="translate(235.57 371.91) rotate(-90)"/>
-    <polygon class="cls-13" points="242.76 42.03 295.04 94.31 276.95 60.13 242.76 42.03"/>
-    <circle class="cls-6" cx="268.9" cy="68.17" r="4.27" transform="translate(30.56 210.11) rotate(-45)"/>
-    <rect class="cls-14" x="223.4" y="22.67" width="91" height="91"/>
-  </g>
-</svg>
diff --git a/education/images/education-partner-yammer.svg b/education/images/education-partner-yammer.svg
deleted file mode 100644
index c92245652e..0000000000
--- a/education/images/education-partner-yammer.svg
+++ /dev/null
@@ -1,19 +0,0 @@
-<svg id="ICONS" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 400 140">
-  <defs>
-    <style>
-      .cls-1 {
-        fill: #0072c6;
-      }
-    </style>
-  </defs>
-  <title>education-partner-yammer</title>
-  <g>
-    <path class="cls-1" d="M350,57.16a2.71,2.71,0,0,1-2.7,2.7c-1.49,0-16-1-16-2.54s14.53-2.87,16-2.87A2.7,2.7,0,0,1,350,57.16Zm-6.5-16.23a2.7,2.7,0,0,1-1,3.68c-1.3.73-14.48,6.95-15.21,5.64s11.26-9.63,12.56-10.36A2.7,2.7,0,0,1,343.5,40.94ZM339.82,74.8c-1.3-.73-13.29-9.06-12.56-10.36s13.91,4.91,15.21,5.64a2.7,2.7,0,0,1-2.65,4.71Z"/>
-    <path class="cls-1" d="M182.3,91.73a3.38,3.38,0,0,0,6.73.36V70.9C189,60.46,187.13,54,175.56,54c-6.13,0-9.84,2.93-12.77,7.68C161.5,58.91,158.74,54,150,54c-6.65,0-9.76,3.71-11.57,7.68h-.17c0-1.26,0-2.52-.1-3.77a3.21,3.21,0,0,0-6.34.55c.1,1.86.22,3.9.22,6.15V91.8a3.38,3.38,0,0,0,6.74.34V75.73c0-9.23,1.91-15.54,10.62-15.54,5.52,0,7.76,3.45,7.76,12.34V91.81a3.38,3.38,0,0,0,6.73.33v-20c0-7.25,4.75-11.91,10.44-11.91,7.85,0,7.94,5.44,7.94,11Z"/>
-    <path class="cls-1" d="M245,91.73a3.38,3.38,0,0,0,6.73.36V70.9c0-10.44-1.91-16.91-13.47-16.91-6.13,0-9.84,2.93-12.77,7.68C224.2,58.91,221.44,54,212.73,54c-6.65,0-9.76,3.71-11.58,7.68H201c0-1.26,0-2.52-.1-3.77a3.21,3.21,0,0,0-6.34.55c.1,1.86.22,3.9.22,6.15V91.8a3.38,3.38,0,0,0,6.74.34V75.73c0-9.23,1.91-15.54,10.62-15.54,5.52,0,7.76,3.45,7.76,12.34V91.81a3.38,3.38,0,0,0,6.73.33v-20c0-7.25,4.75-11.91,10.44-11.91,7.85,0,7.94,5.44,7.94,11Z"/>
-    <path class="cls-1" d="M70.05,86.22c-2.07,5.84-4,8.57-8.38,8.57-.43,0-1.9-.09-2-.1a3.07,3.07,0,0,0-1,6,20.2,20.2,0,0,0,3.44.28c8.1,0,10.78-4.67,13.46-11.48L91.38,50.08A3.39,3.39,0,0,0,85,47.88L73.85,77.24h-.17L62,47.66a3.59,3.59,0,0,0-6.66,2.65Z"/>
-    <path class="cls-1" d="M126.07,91.54c-.08-1-.14-2.15-.14-3.12V71.07c0-11.39-5-17.08-16.91-17.08A23.52,23.52,0,0,0,95.5,58.07a3.13,3.13,0,0,0,4,4.79,19.12,19.12,0,0,1,9.69-2.66c6.3,0,10,3,10,8.89V70.3h-2.59c-9.92,0-25.46.77-25.46,14.15,0,7.85,6.82,12,15,12a15.26,15.26,0,0,0,13.29-7.07h.18c0,.91,0,2,.08,3.18a3.22,3.22,0,0,0,6.35-1Zm-6.87-13c-.17,6.56-4.14,12.17-11.91,12.17-5.09,0-8.89-1.9-8.89-7,0-5.44,5.52-7.77,14.07-7.77h6.73Z"/>
-    <path class="cls-1" d="M308.24,58a3.24,3.24,0,0,0-6.37-.12c.1,2,.25,4.27.25,6.75V92.08a3.37,3.37,0,0,0,6.73-.36v-16c0-9.23,3.62-15,11.82-15,.39,0,.93,0,1.33.07a3.4,3.4,0,0,0,.09-6.81h0c-6.9.08-11.8,3.77-13.58,7.69h-.17c0-1.24,0-2.48-.1-3.7"/>
-    <path class="cls-1" d="M296.91,72.48c-.91-11.84-8.4-18.65-19.06-18.65-11.91,0-20.71,8.71-20.71,21.23,0,11.73,7.76,21.23,20.45,21.23,6.06,0,10.93-1.49,15.09-5.29a3.14,3.14,0,0,0-3.94-4.83,15.27,15.27,0,0,1-10.82,4c-8.54,0-13.71-5.19-14-13l29.76,0a3.6,3.6,0,0,0,1.68-.3,2.72,2.72,0,0,0,1.52-2A21.05,21.05,0,0,0,296.91,72.48Zm-32.94-1c1-7.08,5.81-11.79,13.59-11.79s12.56,4.72,13,11.79Z"/>
-  </g>
-</svg>
diff --git a/education/images/education-pro-usb.svg b/education/images/education-pro-usb.svg
deleted file mode 100644
index fa714e3b69..0000000000
--- a/education/images/education-pro-usb.svg
+++ /dev/null
@@ -1,111 +0,0 @@
-<svg id="ICONS" xmlns="https://www.w3.org/2000/svg" viewBox="0 0 400 140">
-  <defs>
-    <style>
-      .cls-1 {
-        fill: #2b6dcf;
-      }
-
-      .cls-2 {
-        fill: #9273b6;
-        fill-rule: evenodd;
-      }
-
-      .cls-3 {
-        fill: #221f1f;
-      }
-
-      .cls-4 {
-        fill: #80bceb;
-      }
-
-      .cls-5 {
-        fill: #939598;
-      }
-
-      .cls-6 {
-        fill: #414042;
-      }
-
-      .cls-7 {
-        fill: #6d6e71;
-      }
-
-      .cls-8 {
-        fill: #bcbec0;
-      }
-
-      .cls-9 {
-        fill: #bad80a;
-      }
-
-      .cls-10 {
-        fill: #aad2f2;
-      }
-
-      .cls-11, .cls-12 {
-        fill: none;
-        stroke-miterlimit: 10;
-        stroke-width: 2px;
-      }
-
-      .cls-11 {
-        stroke: #414042;
-        stroke-linecap: round;
-      }
-
-      .cls-12 {
-        stroke: #808285;
-      }
-
-      .cls-13 {
-        fill: #808285;
-      }
-
-      .cls-14 {
-        fill: #2b8fde;
-      }
-    </style>
-  </defs>
-  <title>education-pro-usb</title>
-  <path class="cls-1" d="M99.47,73.06A1.4,1.4,0,0,0,98,71.65l-5.79-.72A22.51,22.51,0,0,0,91.5,67l4.69-3.19A1.51,1.51,0,0,0,97,61.75l-1.51-3.49a1.3,1.3,0,0,0-1.87-.58L87.85,59,85.93,56l3.22-4.62a1.56,1.56,0,0,0-.05-2.06l-2.94-2.84a1.86,1.86,0,0,0-2.07.05L79.6,49.89c-1-.6-2.29-1.4-3.33-2l1.13-5.81a1.41,1.41,0,0,0-.85-1.64L73,39.07a1.32,1.32,0,0,0-1.86.65l-3,5.23a11.81,11.81,0,0,0-3.73-.76l-.93-5.76A1.42,1.42,0,0,0,62,37l-3.92.29c-.63-.19-1.24.44-1.43,1.06l-.92,6a12.34,12.34,0,0,0-3.7.89l-3.2-5.09A2.09,2.09,0,0,0,47,39.57L43.29,41.3a1.42,1.42,0,0,0-.8,1.66L44,48.51c-1,.64-2,1.69-3.05,2.34l-4.82-3.42a1.26,1.26,0,0,0-1.66.08,1,1,0,0,0-.19.16l-1.69,1.75-.94,1,0,0a1.33,1.33,0,0,0-.15,1.83l3.6,4.68a17.53,17.53,0,0,0-2.21,3.56L27.09,59A1.82,1.82,0,0,0,25.25,60l-1.38,3.54a1.78,1.78,0,0,0,.87,2.05l5,2.79c-.4,1.25-.37,2.49-.77,3.74l-5.76.94A1.81,1.81,0,0,0,22,74.77l.07,3.71a1.8,1.8,0,0,0,1.27,1.64l6,.51a23.64,23.64,0,0,0,.89,4.11l-5.11,3.19a1.32,1.32,0,0,0-.58,1.88l1.51,3.48a1.94,1.94,0,0,0,1.89,1l5.75-1.76c.64,1,1.28,2,1.92,3.06l-3.43,4.82a2,2,0,0,0,.24,1.85l3,2.83a1.55,1.55,0,0,0,1.85.18l4.7-3.61c1,.61,2.29,1.41,3.33,2l-1.12,5.82a1.39,1.39,0,0,0,.86,1.63l3.74,1.58A1.75,1.75,0,0,0,50.6,112l2.79-5c1.25,0,2.5.36,3.73.34l.73,6a1.81,1.81,0,0,0,1.68,1.2l3.93.14a2.52,2.52,0,0,0,1.41-1.47l.73-5.81c1.44-.23,2.67-.67,4.11-.9l3,4.9a1.42,1.42,0,0,0,1.88.58L78,110.47a1.69,1.69,0,0,0,1-1.88L77.5,103a14.87,14.87,0,0,0,3.06-2.33l4.81,3.42a1.39,1.39,0,0,0,2.07,0l1.79-1.86.63-.66.22-.22a1.44,1.44,0,0,0,.43-1.08,1.39,1.39,0,0,0-.48-1l-3.6-4.7A10.18,10.18,0,0,0,88.64,91l5.82,1.55a1.41,1.41,0,0,0,1.63-.86L97.68,88A2.1,2.1,0,0,0,97,86.13l-5.22-3a10.36,10.36,0,0,0,.55-3.53l6-1.15c.61-.22,1.22-.85,1.22-1.27Zm-31.8,7.61a9,9,0,1,1,1.79-6A9,9,0,0,1,67.67,80.67Z"/>
-  <path class="cls-2" d="M130.63,34.53l-3-.43c-.22-.65-.22-1.3-.43-1.95l2.6-1.51a.79.79,0,0,0,.43-1.08l-.87-1.73c0-.43-.43-.65-.87-.65l-3,.87a4.71,4.71,0,0,0-1.08-1.73l1.73-2.6a.66.66,0,0,0,0-.87l-1.52-1.51a.66.66,0,0,0-.87,0l-2.6,1.73c-.43-.43-1.08-.65-1.52-1.08l.65-3c.22-.22,0-.65-.43-.87l-1.73-.65a1,1,0,0,0-1.08.22l-1.52,2.6c-.65-.22-1.3-.22-2.17-.43l-.43-3a.69.69,0,0,0-.65-.65h-2.17a.69.69,0,0,0-.65.65l-.43,3c-.65.22-1.3.22-1.95.43l-1.52-2.6c-.22-.43-.65-.43-1.08-.43l-1.95.87c-.22,0-.43.43-.43.87l.87,3a4.72,4.72,0,0,0-1.73,1.08l-2.6-1.73a.66.66,0,0,0-.87,0L96.2,22.85a.66.66,0,0,0,0,.87l1.73,2.6c-.43.43-.65,1.08-1.08,1.51l-3-.65c-.22-.22-.65,0-.87.43l-.87,1.73c0,.43,0,.87.43,1.08l2.6,1.51c-.22.65-.22,1.51-.43,2.16l-3,.43a.69.69,0,0,0-.65.65v2.16a.57.57,0,0,0,.65.65l3,.43a6.31,6.31,0,0,0,.43,1.95l-2.6,1.51A.79.79,0,0,0,92.08,43l.87,1.95c0,.22.43.43.87.43l3-.87a4.71,4.71,0,0,0,1.08,1.73l-1.73,2.6a1,1,0,0,0,0,1.08l1.52,1.3c.22.22.65.43.87.22l2.6-1.95a3.88,3.88,0,0,0,1.52,1.08l-.65,3c-.22.22,0,.65.43.87l1.73.87c.43,0,.87,0,1.08-.43l1.52-2.6a6.41,6.41,0,0,0,2.17.43l.43,3a.69.69,0,0,0,.65.65h2.17a.69.69,0,0,0,.65-.65l.43-3a6.33,6.33,0,0,0,1.95-.43l1.52,2.6a.79.79,0,0,0,1.08.43l1.95-.87c.22,0,.43-.43.43-.87l-.87-3a4.72,4.72,0,0,0,1.73-1.08l2.6,1.95c.22.22.65,0,.87-.22l1.52-1.3a1,1,0,0,0,0-1.08l-1.73-2.6a9.16,9.16,0,0,0,1.08-1.51l3,.87a1.16,1.16,0,0,0,.87-.65l.87-1.73c0-.43,0-.87-.43-1.08l-2.6-1.51c.22-.65.22-1.3.43-2.16l3-.43a.57.57,0,0,0,.65-.65V35.18a.69.69,0,0,0-.65-.65Zm-7.15,5a1,1,0,0,1-1.52.65l-5-3.24c-.65-.22-.65-.87,0-1.3l5-3.24a1.12,1.12,0,0,1,1.52.65,15.77,15.77,0,0,1,.43,3.24,13.25,13.25,0,0,1-.43,3.24Zm-1.3-9.73a1,1,0,0,1-.65,1.51l-5.85,1.3c-.65.22-1.08-.22-.87-.87l1.3-5.84c.22-.87.87-1.08,1.52-.65a14.3,14.3,0,0,1,2.6,1.95,14.29,14.29,0,0,1,1.95,2.6Zm-14.29-6.06a12.41,12.41,0,0,1,6.5,0,1,1,0,0,1,.65,1.51l-3.25,5.19c-.43.65-1.08.65-1.3,0l-3.25-5.19a1,1,0,0,1,.65-1.51Zm6.5,12.55a3.25,3.25,0,0,1-6.5,0,3.26,3.26,0,0,1,6.5,0ZM104.64,25a1,1,0,0,1,1.52.65l1.3,5.84c.22.65-.22,1.08-1.08,1.08l-5.63-1.51c-.87-.22-1.08-.87-.65-1.51A7.81,7.81,0,0,1,102,27a14.3,14.3,0,0,1,2.6-1.95ZM98.58,39.29A13.25,13.25,0,0,1,98.15,36a15.77,15.77,0,0,1,.43-3.24.93.93,0,0,1,1.52-.43l5.2,3a.83.83,0,0,1,0,1.51l-5.2,3c-.65.43-1.3.22-1.52-.65Zm1.3,3.46a1,1,0,0,1,.65-1.51l5.85-1.51c.65-.22,1.08.22,1.08,1.08l-1.52,5.84a1.12,1.12,0,0,1-1.52.65,14.3,14.3,0,0,1-2.6-1.95c-1.08-1.3-1.95-2.6-1.95-2.6Zm14.29,5.84a13.29,13.29,0,0,1-3.25.43,15.82,15.82,0,0,1-3.25-.43,1.12,1.12,0,0,1-.65-1.51l3.25-5c.43-.65,1.08-.65,1.3,0l3.25,5c.43.65.22,1.3-.65,1.51Zm3.25-1.3c-.65.43-1.3.22-1.52-.65l-1.3-5.84c-.22-.65.22-1.08,1.08-.87l5.85,1.3a1.12,1.12,0,0,1,.65,1.51,14.29,14.29,0,0,1-1.95,2.6,22.45,22.45,0,0,1-2.82,1.95Z"/>
-  <g>
-    <path class="cls-3" d="M380,125H236.81c-4.71,0-5.81-3-5.81-3H385A5.43,5.43,0,0,1,380,125Z"/>
-    <g>
-      <path class="cls-3" d="M367,120H249a3,3,0,0,1-3-3V19a3,3,0,0,1,3-3H367a3,3,0,0,1,3,3v98A3,3,0,0,1,367,120Z"/>
-      <rect class="cls-4" x="250" y="20" width="116" height="96"/>
-    </g>
-    <polygon class="cls-5" points="385 122 370 107 245.94 107 231 122 385 122"/>
-  </g>
-  <polygon class="cls-3" points="323 119 293 119 294 116 322 116 323 119"/>
-  <g>
-    <polygon class="cls-6" points="217.1 60.08 199.2 42.82 180.82 61.2 200.62 81 217.13 64.49 217.1 60.08"/>
-    <g>
-      <path class="cls-7" d="M197.32,79.89,176.11,58.68l19.8-19.8L217.12,60.1Z"/>
-      <rect class="cls-8" x="184.61" y="46.39" width="24" height="26" transform="translate(15.59 156.42) rotate(-45)"/>
-    </g>
-    <rect class="cls-6" x="193.2" y="48.32" width="4" height="8" transform="translate(94.17 -122.7) rotate(45)"/>
-    <rect class="cls-6" x="201.68" y="56.8" width="4" height="8" transform="translate(102.65 -126.22) rotate(45)"/>
-    <path class="cls-6" d="M209,75,180.35,51.37,140.75,91a6,6,0,0,0,0,8.49l19.8,19.8a6,6,0,0,0,8.49,0L209,80Z"/>
-    <path class="cls-7" d="M181,47,140.75,87a6,6,0,0,0,0,8.49l19.8,19.8a6,6,0,0,0,8.49,0L209,75Z"/>
-    <rect class="cls-9" x="144.07" y="96.43" width="28" height="3" transform="translate(115.54 -83.09) rotate(45)"/>
-    <rect class="cls-9" x="149.73" y="90.77" width="28" height="3" transform="translate(113.2 -88.75) rotate(45)"/>
-  </g>
-  <polygon class="cls-10" points="366 20 366 62 324 20 366 20"/>
-  <rect class="cls-3" x="246" y="104" width="124" height="3"/>
-  <g>
-    <line class="cls-11" x1="220" y1="76" x2="275.66" y2="76"/>
-    <polygon class="cls-6" points="270.02 82.95 268.86 81.71 275 76 268.86 70.29 270.02 69.05 277.5 76 270.02 82.95"/>
-  </g>
-  <g>
-    <path class="cls-12" d="M12,101.14c23.68,36.51,76.75,33.09,105.28-2.29"/>
-    <polygon class="cls-13" points="118.93 107.61 117.23 107.69 116.82 99.32 108.5 100.34 108.29 98.66 118.42 97.41 118.93 107.61"/>
-  </g>
-  <g>
-    <rect class="cls-10" x="280" y="36" width="56" height="2"/>
-    <rect class="cls-10" x="280" y="46" width="56" height="2"/>
-    <rect class="cls-10" x="280" y="56" width="56" height="2"/>
-    <rect class="cls-10" x="280" y="66" width="33" height="2"/>
-  </g>
-  <path class="cls-14" d="M99.47,73.06A1.4,1.4,0,0,0,98,71.65l-5.79-.72A22.51,22.51,0,0,0,91.5,67l4.69-3.19A1.51,1.51,0,0,0,97,61.75l-1.51-3.49a1.3,1.3,0,0,0-1.87-.58L87.85,59,85.93,56l3.22-4.62a1.56,1.56,0,0,0-.05-2.06l-2.94-2.84a1.86,1.86,0,0,0-2.07.05L79.6,49.89c-1-.6-2.29-1.4-3.33-2l1.13-5.81a1.41,1.41,0,0,0-.85-1.64L73,39.07a1.32,1.32,0,0,0-1.86.65l-3,5.23a11.81,11.81,0,0,0-3.73-.76l-.93-5.76A1.42,1.42,0,0,0,62,37l-3.92.29c-.63-.19-1.24.44-1.43,1.06l-.92,6a12.34,12.34,0,0,0-3.7.89l-3.2-5.09A2.09,2.09,0,0,0,47,39.57L43.29,41.3a1.42,1.42,0,0,0-.8,1.66L44,48.51c-1,.64-2,1.69-3.05,2.34l-4.82-3.42a1.26,1.26,0,0,0-1.66.08L55.07,68.07a9,9,0,0,1,12.6,12.6h0l21.56,21.56.63-.66.22-.22a1.44,1.44,0,0,0,.43-1.08,1.39,1.39,0,0,0-.48-1l-3.6-4.7A10.18,10.18,0,0,0,88.64,91l5.82,1.55a1.41,1.41,0,0,0,1.63-.86L97.68,88A2.1,2.1,0,0,0,97,86.13l-5.22-3a10.36,10.36,0,0,0,.55-3.53l6-1.15c.61-.22,1.22-.85,1.22-1.27Z"/>
-</svg>
diff --git a/education/includes/education-content-updates.md b/education/includes/education-content-updates.md
deleted file mode 100644
index ca2950ff0a..0000000000
--- a/education/includes/education-content-updates.md
+++ /dev/null
@@ -1,10 +0,0 @@
-<!-- This file is generated automatically each week. Changes made to this file will be overwritten.-->
-

-
-
-## Week of December 12, 2022
-
-
-| Published On |Topic title | Change |
-|------|------------|--------|
-| 12/13/2022 | [Configure Stickers for Windows 11 SE](/education/windows/edu-stickers) | modified |
diff --git a/education/windows/TOC.yml b/education/windows/TOC.yml
index d3f96435a9..bc030c32e4 100644
--- a/education/windows/TOC.yml
+++ b/education/windows/TOC.yml
@@ -38,8 +38,12 @@ items:
       href: edu-stickers.md
     - name: Configure Take a Test in kiosk mode
       href: edu-take-a-test-kiosk-mode.md
-    - name: Configure federated sign-in
-      href: federated-sign-in.md
+    - name: Federated identity
+      items:
+      - name: Configure federated sign-in
+        href: federated-sign-in.md
+      - name: Configure federation between Google Workspace and Azure AD
+        href: configure-aad-google-trust.md
     - name: Configure Shared PC
       href: /windows/configuration/set-up-shared-or-guest-pc?context=/education/context/context
     - name: Use the Set up School PCs app
diff --git a/education/windows/configure-aad-google-trust.md b/education/windows/configure-aad-google-trust.md
new file mode 100644
index 0000000000..5d51041ce7
--- /dev/null
+++ b/education/windows/configure-aad-google-trust.md
@@ -0,0 +1,128 @@
+---
+title: Configure federation between Google Workspace and Azure AD
+description: Configuration of a federated trust between Google Workspace and Azure AD, with Google Workspace acting as an identity provider (IdP) for Azure AD.
+ms.date: 1/12/2023
+ms.topic: how-to
+---
+
+# Configure federation between Google Workspace and Azure AD
+
+This article describes the steps required to configure Google Workspace as an identity provider (IdP) for Azure AD.\
+Once configured, users will be able to sign in to Azure AD with their Google Workspace credentials.
+
+## Prerequisites
+
+To configure Google Workspace as an IdP for Azure AD, the following prerequisites must be met:
+
+1. An Azure AD tenant, with one or multiple custom DNS domains (that is, domains that aren't in the format \**.onmicrosoft.com*)
+    - If the federated domain hasn't yet been added to Azure AD, you must have access to the DNS domain to create a DNS record. This is required to verify the ownership of the DNS namespace
+    - Learn how to [Add your custom domain name using the Azure Active Directory portal](/azure/active-directory/fundamentals/add-custom-domain)
+1. Access to Azure AD with an account with the *Global Administrator* role
+1. Access to Google Workspace with an account with *super admin* privileges
+
+To test federation, the following prerequisites must be met:
+
+1. A Google Workspace environment, with users already created
+    > [!IMPORTANT]
+    > Users require an email address defined in Google Workspace, which is used to match the users in Azure AD
+1. Individual Azure AD accounts already created: each Google Workspace user will require a matching account defined in Azure AD. These accounts are commonly created through automated solutions, for example:
+    - School Data Sync (SDS)
+    - Azure AD Connect sync for environment with on-premises AD DS
+    - PowerShell scripts that call the Microsoft Graph API
+    - Provisioning tools offered by the IdP - this capability is offered by Google Workspace through [auto-provisioning](https://support.google.com/a/answer/7365072)
+
+## Configure Google Workspace as and IdP for Azure AD
+
+1. Sign in to the [Google Workspace Admin Console](https://admin.google.com) with an account with *super admin* privileges
+1. Select **Apps > Web and mobile apps**
+1. Select **Add app > Search for apps** and search for *microsoft*
+1. In the search results page, hover over the *Microsoft Office 365 - Web (SAML)* app and select **Select**
+   :::image type="content" source="images/google/google-admin-search-app.png" alt-text="Screenshot showing Google Workspace and the search button for Microsoft Office 365 SAML app.":::
+1. On the *Google Identity Provider details* page, select **Download Metadata** and take note of the location where the **IdP metadata** - *GoogleIDPMetadata.xml* - file is saved, as it will be used to setup Azure AD later
+1. On the *Service provider details* page
+      - Select the option **Signed response**
+      - Verify that the Name ID format is set to **PERSISTENT**
+      - Depending on how the Azure AD users have been provisioned in Azure AD, you may need to adjust the **Name ID** mapping. For more information, see (article to write).\
+        If using Google auto-provisioning, select **Basic Information > Primary email**
+      - Select **Continue**
+1. On the *Attribute mapping* page, map the Google attributes to the Azure AD attributes
+
+    |Google Directory attributes|Azure AD attributes|
+    |-|-|
+    |Basic Information: Primary Email|App attributes: IDPEmail|
+
+    > [!IMPORTANT]
+    > You must ensure that your the Azure AD user accounts email match those in your Google Workspace.
+
+1. Select **Finish**
+
+Now that the app is configured, you must enable it for the users in Google Workspace:
+
+1. Sign in to the [Google Workspace Admin Console](https://admin.google.com) with an account with *super admin* privileges
+1. Select **Apps > Web and mobile apps**
+1. Select **Microsoft Office 365**
+1. Select **User access**
+1. Select **ON for everyone > Save**
+
+## Configure Azure AD as a Service Provider (SP) for Google Workspace
+
+The configuration of Azure AD consists of changing the authentication method for the custom DNS domains. This configuration can be done using PowerShell.\
+Using the **IdP metadata** XML file downloaded from Google Workspace, modify the *$DomainName* variable of the following script to match your environment, and then run it in an elevated PowerShell session. When prompted to authenticate to Azure AD, use the credentials of an account with the *Global Administrator* role.
+
+```powershell
+Install-Module -Name MSOnline
+Import-Module MSOnline
+
+$DomainName = "<your domain name>"
+
+$xml = [Xml](Get-Content GoogleIDPMetadata.xml)
+
+$cert = -join $xml.EntityDescriptor.IDPSSODescriptor.KeyDescriptor.KeyInfo.X509Data.X509Certificate.Split()
+$issuerUri = $xml.EntityDescriptor.entityID
+$logOnUri = $xml.EntityDescriptor.IDPSSODescriptor.SingleSignOnService | ? { $_.Binding.Contains('Redirect') } | % { $_.Location }
+$LogOffUri = "https://accounts.google.com/logout"
+$brand = "Google Workspace Identity"
+Connect-MsolService
+$DomainAuthParams = @{
+    DomainName = $DomainName
+    Authentication = "Federated"
+    IssuerUri = $issuerUri
+    FederationBrandName = $brand
+    ActiveLogOnUri = $logOnUri
+    PassiveLogOnUri = $logOnUri
+    LogOffUri = $LogOffUri
+    SigningCertificate = $cert
+    PreferredAuthenticationProtocol = "SAMLP"
+}
+Set-MsolDomainAuthentication @DomainAuthParams
+```
+
+To verify that the configuration is correct, you can use the following PowerShell command:
+
+```powershell
+Get-MsolDomainFederationSettings -DomainName $DomainName
+```
+
+```output
+ActiveLogOnUri                         : https://accounts.google.com/o/saml2/idp?<GUID>
+DefaultInteractiveAuthenticationMethod : 
+FederationBrandName                    : Google Workspace Identity
+IssuerUri                              : https://accounts.google.com/o/saml2?idpid=<GUID>
+LogOffUri                              : https://accounts.google.com/logout
+MetadataExchangeUri                    : 
+NextSigningCertificate                 : 
+OpenIdConnectDiscoveryEndpoint         : 
+PassiveLogOnUri                        : https://accounts.google.com/o/saml2/idp?idpid=<GUID>
+SigningCertificate                     : <BASE64 encoded certificate>
+SupportsMfa                            : 
+```
+
+## Verify federated authentication between Google Workspace and Azure AD
+
+From a private browser session, navigate to https://portal.azure.com and sign in with a Google Workspace account:
+
+1. As username, use the email as defined in Google Workspace
+1. The user will be redirected to Google Workspace to sign in
+1. After Google Workspace authentication, the user will be redirected back to Azure AD and signed in
+
+:::image type="content" source="images/google/google-sso.gif" alt-text="A GIF that shows the user authenticating the Azure portal using a Google Workspace federated identity.":::
\ No newline at end of file
diff --git a/education/windows/federated-sign-in.md b/education/windows/federated-sign-in.md
index 7a3ef3172c..09ceb1908c 100644
--- a/education/windows/federated-sign-in.md
+++ b/education/windows/federated-sign-in.md
@@ -1,7 +1,7 @@
 ---
 title: Configure federated sign-in for Windows devices
 description: Description of federated sign-in feature for Windows 11 SE and how to configure it via Intune
-ms.date: 09/15/2022
+ms.date: 01/12/2023
 ms.topic: how-to
 appliesto:
   - ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 11 SE</a>
@@ -10,7 +10,7 @@ appliesto:
 <!-- MAXADO-6286399 -->
 # Configure federated sign-in for Windows 11 SE
 
-Starting in **Windows 11 SE, version 22H2**, you can enable your users to sign-in using a SAML 2.0 identity provider (IdP). This feature is called **federated sign-in**. Federated sign-in is a great way to simplify the sign-in process for your users: instead of having to remember a username and password defined in Azure AD, they can sign-in using their existing credentials from the IdP. For example, students and educators can use QR code badges to sign-in.
+Starting in Windows 11 SE, version 22H2, you can enable your users to sign-in using a SAML 2.0 identity provider (IdP). This feature is called *federated sign-in*. Federated sign-in is a great way to simplify the sign-in process for your users: instead of having to remember a username and password defined in Azure AD, they can sign-in using their existing credentials from the IdP. For example, students and educators can use QR code badges to sign-in.
 
 ## Benefits of federated sign-in
 
@@ -25,7 +25,9 @@ To implement federated sign-in, the following prerequisites must be met:
 
 1. An Azure AD tenant, with one or multiple domains federated to a third-party SAML 2.0 IdP. For more information, see [Use a SAML 2.0 Identity Provider (IdP) for Single Sign On][AZ-1]
     >[!NOTE]
-    >If your organization uses a third-party federation solution, you can configure single sign-on to Azure Active Directory if the solution is compatible with Azure Active Directory. For questions regarding compatibility, please contact your identity provider. If you're an IdP, and would like to validate your solution for interoperability, please refer to these [guidelines][MSFT-1].
+    >If your organization uses a third-party federation solution, you can configure single sign-on to Azure Active Directory if the solution is compatible with Azure Active Directory. For questions regarding compatibility, contact your identity provider. If you're an IdP, and would like to validate your solution for interoperability, refer to these [guidelines][MSFT-1].
+    >
+    >For a step-by-step guide on how to configure Google Workspace as an identity provider for Azure AD, see [Configure federation between Google Workspace and Azure AD](configure-aad-google-trust.md).
 1. Individual IdP accounts created: each user will require an account defined in the third-party IdP platform
 1. Individual Azure AD accounts created: each user will require a matching account defined in Azure AD. These accounts are commonly created through automated solutions, for example:
     - [School Data Sync (SDS)][SDS-1]
diff --git a/education/windows/images/choose-package.png b/education/windows/images/choose-package.png
deleted file mode 100644
index 868407df56..0000000000
Binary files a/education/windows/images/choose-package.png and /dev/null differ
diff --git a/education/windows/images/google/google-admin-search-app.png b/education/windows/images/google/google-admin-search-app.png
new file mode 100644
index 0000000000..7c3c3185aa
Binary files /dev/null and b/education/windows/images/google/google-admin-search-app.png differ
diff --git a/education/windows/images/google/google-sso.gif b/education/windows/images/google/google-sso.gif
new file mode 100644
index 0000000000..29d0da5d0a
Binary files /dev/null and b/education/windows/images/google/google-sso.gif differ
diff --git a/education/windows/images/icons/group-policy.svg b/education/windows/images/icons/group-policy.svg
deleted file mode 100644
index ace95add6b..0000000000
--- a/education/windows/images/icons/group-policy.svg
+++ /dev/null
@@ -1,3 +0,0 @@
-<svg xmlns="http://www.w3.org/2000/svg" width="18" height="18" viewBox="0 0 2048 2048">
-  <path d="M1792 0q53 0 99 20t82 55 55 81 20 100q0 53-20 99t-55 82-81 55-100 20h-128v1280q0 53-20 99t-55 82-81 55-100 20H256q-53 0-99-20t-82-55-55-81-20-100q0-53 20-99t55-82 81-55 100-20V256q0-53 20-99t55-82 81-55T512 0h1280zM128 1792q0 27 10 50t27 40 41 28 50 10h930q-34-60-34-128t34-128H256q-27 0-50 10t-40 27-28 41-10 50zm1280 128q27 0 50-10t40-27 28-41 10-50V256q0-68 34-128H512q-27 0-50 10t-40 27-28 41-10 50v1280h1024q26 0 45 19t19 45q0 26-19 45t-45 19q-25 0-49 9t-42 28q-18 18-27 42t-10 49q0 27 10 50t27 40 41 28 50 10zm384-1536q27 0 50-10t40-27 28-41 10-50q0-27-10-50t-27-40-41-28-50-10q-27 0-50 10t-40 27-28 41-10 50v128h128zm-1280 0h896v128H512V384zm0 256h256v128H512V640zm0 256h256v128H512V896zm0 256h256v128H512v-128zm640-512q53 0 99 20t82 55 55 81 20 100q0 17-4 33t-4 31v539l-248-124-248 124V960q0-14-4-30t-4-34q0-53 20-99t55-82 81-55 100-20zm0 128q-27 0-50 10t-40 27-28 41-10 50q0 27 10 50t27 40 41 28 50 10q27 0 50-10t40-27 28-41 10-50q0-27-10-50t-27-40-41-28-50-10zm136 549v-204q-30 20-65 29t-71 10q-36 0-71-9t-65-30v204l136-68 136 68z" fill="#0078D4" />
-</svg>
\ No newline at end of file
diff --git a/education/windows/images/icons/information.svg b/education/windows/images/icons/information.svg
deleted file mode 100644
index 761a946709..0000000000
--- a/education/windows/images/icons/information.svg
+++ /dev/null
@@ -1,13 +0,0 @@
-<svg id="bf97f450-0d91-4db3-8ea1-010780a2af52" xmlns="http://www.w3.org/2000/svg" width="18" height="18" viewBox="0 0 18 18">
-  <defs>
-    <linearGradient id="fe22bed8-8e36-415d-8032-3026ad9e8503" x1="8.56" y1="17.59" x2="8.56" y2="0.59" gradientUnits="userSpaceOnUse">
-      <stop offset="0" stop-color="#1988d9" />
-      <stop offset="0.22" stop-color="#218ddc" />
-      <stop offset="0.56" stop-color="#379ce5" />
-      <stop offset="0.9" stop-color="#54aef0" />
-    </linearGradient>
-  </defs>
-  <title>Icon-general-5</title>
-  <path id="b3492ff9-55dd-4864-be78-9e79f3547897" d="M13.77,15.81A8.5,8.5,0,0,1,3.35,2.37l.09-.06a8.5,8.5,0,0,1,10.33,13.5" fill="url(#fe22bed8-8e36-415d-8032-3026ad9e8503)" />
-  <path d="M8.56,6.17a1.24,1.24,0,0,1-.89-.33,1,1,0,0,1-.34-.79,1,1,0,0,1,.34-.79A1.31,1.31,0,0,1,8.56,4a1.28,1.28,0,0,1,.89.3,1,1,0,0,1,.35.79,1,1,0,0,1-.35.8A1.24,1.24,0,0,1,8.56,6.17Zm.64,8.05H7.89a.42.42,0,0,1-.42-.42V7.69a.42.42,0,0,1,.42-.42H9.2a.42.42,0,0,1,.42.42V13.8A.42.42,0,0,1,9.2,14.22Z" fill="#fff" />
-</svg>
\ No newline at end of file
diff --git a/education/windows/images/icons/registry.svg b/education/windows/images/icons/registry.svg
deleted file mode 100644
index 06ab4c09d7..0000000000
--- a/education/windows/images/icons/registry.svg
+++ /dev/null
@@ -1,22 +0,0 @@
-<svg id="b9b1f1bd-1131-4ac5-b607-ad500ee51398" data-name="fluent_icons" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" width="18" height="18" viewBox="0 0 18 18">
-  <defs>
-    <linearGradient id="b0b22e7a-bfc7-4dec-91e9-5f981ed97407" x1="8.55" y1="0.41" x2="8.48" y2="18.62" gradientUnits="userSpaceOnUse">
-      <stop offset="0" stop-color="#76bc2d" />
-      <stop offset="0.32" stop-color="#73b82c" />
-      <stop offset="0.65" stop-color="#6cab29" />
-      <stop offset="0.99" stop-color="#5e9724" />
-      <stop offset="1" stop-color="#5e9624" />
-    </linearGradient>
-    <linearGradient id="e827adc5-7c19-488a-9b2c-abb70d46ae5e" x1="14.75" y1="5.9" x2="14.75" y2="1.1" gradientTransform="translate(18.1 -11.21) rotate(90)" gradientUnits="userSpaceOnUse">
-      <stop offset="0" stop-color="#0078d4" />
-      <stop offset="0.17" stop-color="#1c84dc" />
-      <stop offset="0.38" stop-color="#3990e4" />
-      <stop offset="0.59" stop-color="#4d99ea" />
-      <stop offset="0.8" stop-color="#5a9eee" />
-      <stop offset="1" stop-color="#5ea0ef" />
-    </linearGradient>
-  </defs>
-  <title>Icon-general-18</title>
-  <path d="M6.27,13.29h4.49v4.49H6.27ZM1,3.43V7.3h4.5V2.81H1.65A.63.63,0,0,0,1,3.43ZM1,17.16a.63.63,0,0,0,.63.62H5.52V13.29H1Zm0-4.62h4.5V8.05H1Zm10.49,5.24h3.87a.62.62,0,0,0,.62-.62V13.29H11.51ZM6.27,12.54h4.49V8.05H6.27Zm5.24-4.49v4.49H16V8.05ZM6.27,7.3h4.49V2.81H6.27Z" fill="url(#b0b22e7a-bfc7-4dec-91e9-5f981ed97407)" />
-  <rect x="12.2" y="1.14" width="4.8" height="4.8" rx="0.25" transform="translate(5.14 15.21) rotate(-64.59)" fill="url(#e827adc5-7c19-488a-9b2c-abb70d46ae5e)" />
-</svg>
\ No newline at end of file
diff --git a/education/windows/images/minecraft/mcee-add-payment-method.png b/education/windows/images/minecraft/mcee-add-payment-method.png
deleted file mode 100644
index e583b4eccc..0000000000
Binary files a/education/windows/images/minecraft/mcee-add-payment-method.png and /dev/null differ
diff --git a/education/windows/images/minecraft/mcee-auto-assign-bd.png b/education/windows/images/minecraft/mcee-auto-assign-bd.png
deleted file mode 100644
index b14990583f..0000000000
Binary files a/education/windows/images/minecraft/mcee-auto-assign-bd.png and /dev/null differ
diff --git a/education/windows/images/minecraft/mcee-auto-assign-legacy.png b/education/windows/images/minecraft/mcee-auto-assign-legacy.png
deleted file mode 100644
index 866b37395e..0000000000
Binary files a/education/windows/images/minecraft/mcee-auto-assign-legacy.png and /dev/null differ
diff --git a/education/windows/images/minecraft/mcee-benefits.png b/education/windows/images/minecraft/mcee-benefits.png
deleted file mode 100644
index 96d0287718..0000000000
Binary files a/education/windows/images/minecraft/mcee-benefits.png and /dev/null differ
diff --git a/education/windows/images/minecraft/mcee-icon.png b/education/windows/images/minecraft/mcee-icon.png
deleted file mode 100644
index 32ed1cf134..0000000000
Binary files a/education/windows/images/minecraft/mcee-icon.png and /dev/null differ
diff --git a/education/windows/images/minecraft/mcee-invoice-bills.PNG b/education/windows/images/minecraft/mcee-invoice-bills.PNG
deleted file mode 100644
index 1a07ac3f01..0000000000
Binary files a/education/windows/images/minecraft/mcee-invoice-bills.PNG and /dev/null differ
diff --git a/education/windows/images/minecraft/mcee-view-bills.png b/education/windows/images/minecraft/mcee-view-bills.png
deleted file mode 100644
index 5aeff48109..0000000000
Binary files a/education/windows/images/minecraft/mcee-view-bills.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-admin-permissions.png b/education/windows/images/minecraft/minecraft-admin-permissions.png
deleted file mode 100644
index 3051c3dd84..0000000000
Binary files a/education/windows/images/minecraft/minecraft-admin-permissions.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-assign-roles-2.png b/education/windows/images/minecraft/minecraft-assign-roles-2.png
deleted file mode 100644
index 3ab1d6e072..0000000000
Binary files a/education/windows/images/minecraft/minecraft-assign-roles-2.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-assign-roles.png b/education/windows/images/minecraft/minecraft-assign-roles.png
deleted file mode 100644
index 5dc396155c..0000000000
Binary files a/education/windows/images/minecraft/minecraft-assign-roles.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-assign-to-others.png b/education/windows/images/minecraft/minecraft-assign-to-others.png
deleted file mode 100644
index 4e8fba6126..0000000000
Binary files a/education/windows/images/minecraft/minecraft-assign-to-others.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-assign-to-people-name.png b/education/windows/images/minecraft/minecraft-assign-to-people-name.png
deleted file mode 100644
index 38994cc58f..0000000000
Binary files a/education/windows/images/minecraft/minecraft-assign-to-people-name.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-assign-to-people.png b/education/windows/images/minecraft/minecraft-assign-to-people.png
deleted file mode 100644
index 0f0e3dcdff..0000000000
Binary files a/education/windows/images/minecraft/minecraft-assign-to-people.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-get-the-app.png b/education/windows/images/minecraft/minecraft-get-the-app.png
deleted file mode 100644
index 47024aab6c..0000000000
Binary files a/education/windows/images/minecraft/minecraft-get-the-app.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-in-windows-store-app.png b/education/windows/images/minecraft/minecraft-in-windows-store-app.png
deleted file mode 100644
index e25f2b4df3..0000000000
Binary files a/education/windows/images/minecraft/minecraft-in-windows-store-app.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-my-library.png b/education/windows/images/minecraft/minecraft-my-library.png
deleted file mode 100644
index 1be1660adb..0000000000
Binary files a/education/windows/images/minecraft/minecraft-my-library.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-perms.PNG b/education/windows/images/minecraft/minecraft-perms.PNG
deleted file mode 100644
index 1788d6b593..0000000000
Binary files a/education/windows/images/minecraft/minecraft-perms.PNG and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-private-store.png b/education/windows/images/minecraft/minecraft-private-store.png
deleted file mode 100644
index 0194d4b955..0000000000
Binary files a/education/windows/images/minecraft/minecraft-private-store.png and /dev/null differ
diff --git a/education/windows/images/minecraft/minecraft-student-install-email.png b/education/windows/images/minecraft/minecraft-student-install-email.png
deleted file mode 100644
index 225e8d899e..0000000000
Binary files a/education/windows/images/minecraft/minecraft-student-install-email.png and /dev/null differ
diff --git a/education/windows/images/suspcs/1810_SUSPC_Insert_USB.png b/education/windows/images/suspcs/1810_SUSPC_Insert_USB.png
deleted file mode 100644
index c3fdd47011..0000000000
Binary files a/education/windows/images/suspcs/1810_SUSPC_Insert_USB.png and /dev/null differ
diff --git a/education/windows/images/suspcs/1810_SUSPC_add_apps.png b/education/windows/images/suspcs/1810_SUSPC_add_apps.png
deleted file mode 100644
index d7a296722f..0000000000
Binary files a/education/windows/images/suspcs/1810_SUSPC_add_apps.png and /dev/null differ
diff --git a/education/windows/images/suspcs/1810_SUSPC_app_error.png b/education/windows/images/suspcs/1810_SUSPC_app_error.png
deleted file mode 100644
index a2d3a35e34..0000000000
Binary files a/education/windows/images/suspcs/1810_SUSPC_app_error.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-add-recommended-apps-1807.png b/education/windows/images/suspcs/suspc-add-recommended-apps-1807.png
deleted file mode 100644
index 61a674e363..0000000000
Binary files a/education/windows/images/suspcs/suspc-add-recommended-apps-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-assessment-url-1807.png b/education/windows/images/suspcs/suspc-assessment-url-1807.png
deleted file mode 100644
index c799e26271..0000000000
Binary files a/education/windows/images/suspcs/suspc-assessment-url-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-available-student-settings-1807.png b/education/windows/images/suspcs/suspc-available-student-settings-1807.png
deleted file mode 100644
index d39fc2ceba..0000000000
Binary files a/education/windows/images/suspcs/suspc-available-student-settings-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-configure-student-settings-1807.png b/education/windows/images/suspcs/suspc-configure-student-settings-1807.png
deleted file mode 100644
index 553fb4d689..0000000000
Binary files a/education/windows/images/suspcs/suspc-configure-student-settings-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-createpackage-signin-1807.png b/education/windows/images/suspcs/suspc-createpackage-signin-1807.png
deleted file mode 100644
index 7a80f5c751..0000000000
Binary files a/education/windows/images/suspcs/suspc-createpackage-signin-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-createpackage-summary-1807.png b/education/windows/images/suspcs/suspc-createpackage-summary-1807.png
deleted file mode 100644
index e78ac67856..0000000000
Binary files a/education/windows/images/suspcs/suspc-createpackage-summary-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-current-os-version-1807.png b/education/windows/images/suspcs/suspc-current-os-version-1807.png
deleted file mode 100644
index bc2ba6a08d..0000000000
Binary files a/education/windows/images/suspcs/suspc-current-os-version-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-current-os-version-next-1807.png b/education/windows/images/suspcs/suspc-current-os-version-next-1807.png
deleted file mode 100644
index a0b6632bd3..0000000000
Binary files a/education/windows/images/suspcs/suspc-current-os-version-next-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-device-names-1807.png b/education/windows/images/suspcs/suspc-device-names-1807.png
deleted file mode 100644
index f3ad674b99..0000000000
Binary files a/education/windows/images/suspcs/suspc-device-names-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-savepackage-insertusb-1807.png b/education/windows/images/suspcs/suspc-savepackage-insertusb-1807.png
deleted file mode 100644
index cd75795863..0000000000
Binary files a/education/windows/images/suspcs/suspc-savepackage-insertusb-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-savepackage-ppkgisready-1807.png b/education/windows/images/suspcs/suspc-savepackage-ppkgisready-1807.png
deleted file mode 100644
index fd82b1e50b..0000000000
Binary files a/education/windows/images/suspcs/suspc-savepackage-ppkgisready-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-select-wifi-1807.png b/education/windows/images/suspcs/suspc-select-wifi-1807.png
deleted file mode 100644
index c8b94d6aad..0000000000
Binary files a/education/windows/images/suspcs/suspc-select-wifi-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-select-wifi-network-1807.png b/education/windows/images/suspcs/suspc-select-wifi-network-1807.png
deleted file mode 100644
index 5a362daaa0..0000000000
Binary files a/education/windows/images/suspcs/suspc-select-wifi-network-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-sign-in-select-1807.png b/education/windows/images/suspcs/suspc-sign-in-select-1807.png
deleted file mode 100644
index abffbec690..0000000000
Binary files a/education/windows/images/suspcs/suspc-sign-in-select-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-take-a-test-1807.png b/education/windows/images/suspcs/suspc-take-a-test-1807.png
deleted file mode 100644
index ea6295658f..0000000000
Binary files a/education/windows/images/suspcs/suspc-take-a-test-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-take-a-test-app-1807.png b/education/windows/images/suspcs/suspc-take-a-test-app-1807.png
deleted file mode 100644
index 9d6c503f3c..0000000000
Binary files a/education/windows/images/suspcs/suspc-take-a-test-app-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-time-zone-1807.png b/education/windows/images/suspcs/suspc-time-zone-1807.png
deleted file mode 100644
index 274e411a4d..0000000000
Binary files a/education/windows/images/suspcs/suspc-time-zone-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc-wifi-network-1807.png b/education/windows/images/suspcs/suspc-wifi-network-1807.png
deleted file mode 100644
index 6e03d35363..0000000000
Binary files a/education/windows/images/suspcs/suspc-wifi-network-1807.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_account_signin.PNG b/education/windows/images/suspcs/suspc_account_signin.PNG
deleted file mode 100644
index d045cff914..0000000000
Binary files a/education/windows/images/suspcs/suspc_account_signin.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_and_wcd_comparison.png b/education/windows/images/suspcs/suspc_and_wcd_comparison.png
deleted file mode 100644
index cff874ceb8..0000000000
Binary files a/education/windows/images/suspcs/suspc_and_wcd_comparison.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_choosesettings_apps.PNG b/education/windows/images/suspcs/suspc_choosesettings_apps.PNG
deleted file mode 100644
index babb55a445..0000000000
Binary files a/education/windows/images/suspcs/suspc_choosesettings_apps.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_choosesettings_settings.PNG b/education/windows/images/suspcs/suspc_choosesettings_settings.PNG
deleted file mode 100644
index bd556c0892..0000000000
Binary files a/education/windows/images/suspcs/suspc_choosesettings_settings.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_choosesettings_settings_updated.PNG b/education/windows/images/suspcs/suspc_choosesettings_settings_updated.PNG
deleted file mode 100644
index c62b4fa86f..0000000000
Binary files a/education/windows/images/suspcs/suspc_choosesettings_settings_updated.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_choosesettings_signin.PNG b/education/windows/images/suspcs/suspc_choosesettings_signin.PNG
deleted file mode 100644
index a45a12fbf5..0000000000
Binary files a/education/windows/images/suspcs/suspc_choosesettings_signin.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_choosesettings_signin_final.PNG b/education/windows/images/suspcs/suspc_choosesettings_signin_final.PNG
deleted file mode 100644
index 3ec997cb73..0000000000
Binary files a/education/windows/images/suspcs/suspc_choosesettings_signin_final.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_choosesettings_summary.PNG b/education/windows/images/suspcs/suspc_choosesettings_summary.PNG
deleted file mode 100644
index c659a579e4..0000000000
Binary files a/education/windows/images/suspcs/suspc_choosesettings_summary.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_configurestudentpcsettings.png b/education/windows/images/suspcs/suspc_createpackage_configurestudentpcsettings.png
deleted file mode 100644
index 99a4f8c5fd..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_configurestudentpcsettings.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_configurestudentpcsettings_121117.PNG b/education/windows/images/suspcs/suspc_createpackage_configurestudentpcsettings_121117.PNG
deleted file mode 100644
index 7f8bb1722b..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_configurestudentpcsettings_121117.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_recommendedapps.png b/education/windows/images/suspcs/suspc_createpackage_recommendedapps.png
deleted file mode 100644
index e1e2fdaa46..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_recommendedapps.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_recommendedapps_073117.PNG b/education/windows/images/suspcs/suspc_createpackage_recommendedapps_073117.PNG
deleted file mode 100644
index 22df144bdc..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_recommendedapps_073117.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_recommendedapps_office061217.png b/education/windows/images/suspcs/suspc_createpackage_recommendedapps_office061217.png
deleted file mode 100644
index ac2ccbe4eb..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_recommendedapps_office061217.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_settingspage.PNG b/education/windows/images/suspcs/suspc_createpackage_settingspage.PNG
deleted file mode 100644
index 2e5af10917..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_settingspage.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_signin.png b/education/windows/images/suspcs/suspc_createpackage_signin.png
deleted file mode 100644
index 1d05636ed6..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_signin.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_skipwifi_modaldialog.png b/education/windows/images/suspcs/suspc_createpackage_skipwifi_modaldialog.png
deleted file mode 100644
index 294c970e85..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_skipwifi_modaldialog.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_summary.PNG b/education/windows/images/suspcs/suspc_createpackage_summary.PNG
deleted file mode 100644
index 2699f6e222..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_summary.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_createpackage_summary_073117.PNG b/education/windows/images/suspcs/suspc_createpackage_summary_073117.PNG
deleted file mode 100644
index c0e4b04723..0000000000
Binary files a/education/windows/images/suspcs/suspc_createpackage_summary_073117.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_getpcsready.PNG b/education/windows/images/suspcs/suspc_getpcsready.PNG
deleted file mode 100644
index 1e2bfae0ff..0000000000
Binary files a/education/windows/images/suspcs/suspc_getpcsready.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_getpcsready_getpcsready.PNG b/education/windows/images/suspcs/suspc_getpcsready_getpcsready.PNG
deleted file mode 100644
index 6bb9ec078b..0000000000
Binary files a/education/windows/images/suspcs/suspc_getpcsready_getpcsready.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_getpcsready_installpackage.PNG b/education/windows/images/suspcs/suspc_getpcsready_installpackage.PNG
deleted file mode 100644
index c12bbe4de9..0000000000
Binary files a/education/windows/images/suspcs/suspc_getpcsready_installpackage.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_getstarted.PNG b/education/windows/images/suspcs/suspc_getstarted.PNG
deleted file mode 100644
index cbb3d4977c..0000000000
Binary files a/education/windows/images/suspcs/suspc_getstarted.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_getstarted_final.PNG b/education/windows/images/suspcs/suspc_getstarted_final.PNG
deleted file mode 100644
index d533536ad1..0000000000
Binary files a/education/windows/images/suspcs/suspc_getstarted_final.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_getstarted_resized.png b/education/windows/images/suspcs/suspc_getstarted_resized.png
deleted file mode 100644
index c9c99d8555..0000000000
Binary files a/education/windows/images/suspcs/suspc_getstarted_resized.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_installsetupfile.PNG b/education/windows/images/suspcs/suspc_installsetupfile.PNG
deleted file mode 100644
index 61d0d9a3ad..0000000000
Binary files a/education/windows/images/suspcs/suspc_installsetupfile.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_ppkg_isready.PNG b/education/windows/images/suspcs/suspc_ppkg_isready.PNG
deleted file mode 100644
index e601a05a0f..0000000000
Binary files a/education/windows/images/suspcs/suspc_ppkg_isready.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_ppkgisready_050817.PNG b/education/windows/images/suspcs/suspc_ppkgisready_050817.PNG
deleted file mode 100644
index 7bee1ead44..0000000000
Binary files a/education/windows/images/suspcs/suspc_ppkgisready_050817.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_ppkgready.PNG b/education/windows/images/suspcs/suspc_ppkgready.PNG
deleted file mode 100644
index e285acdaee..0000000000
Binary files a/education/windows/images/suspcs/suspc_ppkgready.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_reviewsettings.PNG b/education/windows/images/suspcs/suspc_reviewsettings.PNG
deleted file mode 100644
index 0948dbccb1..0000000000
Binary files a/education/windows/images/suspcs/suspc_reviewsettings.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_reviewsettings_bluelinks.png b/education/windows/images/suspcs/suspc_reviewsettings_bluelinks.png
deleted file mode 100644
index 46c07c7a1a..0000000000
Binary files a/education/windows/images/suspcs/suspc_reviewsettings_bluelinks.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_runpackage_installpackage.PNG b/education/windows/images/suspcs/suspc_runpackage_installpackage.PNG
deleted file mode 100644
index 4745ceb5a7..0000000000
Binary files a/education/windows/images/suspcs/suspc_runpackage_installpackage.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_savepackage_insertusb.PNG b/education/windows/images/suspcs/suspc_savepackage_insertusb.PNG
deleted file mode 100644
index 6c36d04e88..0000000000
Binary files a/education/windows/images/suspcs/suspc_savepackage_insertusb.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_savepackage_insertusb_050817.PNG b/education/windows/images/suspcs/suspc_savepackage_insertusb_050817.PNG
deleted file mode 100644
index e0f8ceab7a..0000000000
Binary files a/education/windows/images/suspcs/suspc_savepackage_insertusb_050817.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_savepackage_ppkgisready.png b/education/windows/images/suspcs/suspc_savepackage_ppkgisready.png
deleted file mode 100644
index 7f8ca446f5..0000000000
Binary files a/education/windows/images/suspcs/suspc_savepackage_ppkgisready.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_savesettings.PNG b/education/windows/images/suspcs/suspc_savesettings.PNG
deleted file mode 100644
index f8338d3dec..0000000000
Binary files a/education/windows/images/suspcs/suspc_savesettings.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_setupfile_reviewsettings.PNG b/education/windows/images/suspcs/suspc_setupfile_reviewsettings.PNG
deleted file mode 100644
index c5f3425ff5..0000000000
Binary files a/education/windows/images/suspcs/suspc_setupfile_reviewsettings.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_setupfile_savesettings.PNG b/education/windows/images/suspcs/suspc_setupfile_savesettings.PNG
deleted file mode 100644
index 97ba234b8e..0000000000
Binary files a/education/windows/images/suspcs/suspc_setupfile_savesettings.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_setupfileready.PNG b/education/windows/images/suspcs/suspc_setupfileready.PNG
deleted file mode 100644
index 349acbaf9d..0000000000
Binary files a/education/windows/images/suspcs/suspc_setupfileready.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_signin_account.PNG b/education/windows/images/suspcs/suspc_signin_account.PNG
deleted file mode 100644
index 3f8b040f45..0000000000
Binary files a/education/windows/images/suspcs/suspc_signin_account.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_signin_addapps.PNG b/education/windows/images/suspcs/suspc_signin_addapps.PNG
deleted file mode 100644
index 93e572a043..0000000000
Binary files a/education/windows/images/suspcs/suspc_signin_addapps.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_signin_allowguests.PNG b/education/windows/images/suspcs/suspc_signin_allowguests.PNG
deleted file mode 100644
index 0bd0f69680..0000000000
Binary files a/education/windows/images/suspcs/suspc_signin_allowguests.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_signin_setuptakeatest.PNG b/education/windows/images/suspcs/suspc_signin_setuptakeatest.PNG
deleted file mode 100644
index 6c8ba1799b..0000000000
Binary files a/education/windows/images/suspcs/suspc_signin_setuptakeatest.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_start.PNG b/education/windows/images/suspcs/suspc_start.PNG
deleted file mode 100644
index ab34f99a6b..0000000000
Binary files a/education/windows/images/suspcs/suspc_start.PNG and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_wcd_sidebyside.png b/education/windows/images/suspcs/suspc_wcd_sidebyside.png
deleted file mode 100644
index 7fc108133e..0000000000
Binary files a/education/windows/images/suspcs/suspc_wcd_sidebyside.png and /dev/null differ
diff --git a/education/windows/images/suspcs/suspc_win10v1703_getstarted.PNG b/education/windows/images/suspcs/suspc_win10v1703_getstarted.PNG
deleted file mode 100644
index 2777edfef9..0000000000
Binary files a/education/windows/images/suspcs/suspc_win10v1703_getstarted.PNG and /dev/null differ
diff --git a/education/windows/images/wcd/wcd_accountmanagement.PNG b/education/windows/images/wcd/wcd_accountmanagement.PNG
deleted file mode 100644
index 071522f906..0000000000
Binary files a/education/windows/images/wcd/wcd_accountmanagement.PNG and /dev/null differ
diff --git a/education/windows/images/wcd/wcd_exportpackage.PNG b/education/windows/images/wcd/wcd_exportpackage.PNG
deleted file mode 100644
index 19a1c89703..0000000000
Binary files a/education/windows/images/wcd/wcd_exportpackage.PNG and /dev/null differ
diff --git a/education/windows/images/wcd/wcd_setupdevice.PNG b/education/windows/images/wcd/wcd_setupdevice.PNG
deleted file mode 100644
index 01422870d4..0000000000
Binary files a/education/windows/images/wcd/wcd_setupdevice.PNG and /dev/null differ
diff --git a/education/windows/images/wcd/wcd_setupnetwork.PNG b/education/windows/images/wcd/wcd_setupnetwork.PNG
deleted file mode 100644
index f0be6908f5..0000000000
Binary files a/education/windows/images/wcd/wcd_setupnetwork.PNG and /dev/null differ
diff --git a/education/windows/images/wcd/wcd_win10v1703_start_newdesktopproject.PNG b/education/windows/images/wcd/wcd_win10v1703_start_newdesktopproject.PNG
deleted file mode 100644
index f0ce8f6b93..0000000000
Binary files a/education/windows/images/wcd/wcd_win10v1703_start_newdesktopproject.PNG and /dev/null differ
diff --git a/education/windows/images/win-10-activated-enterprise-subscription-active.png b/education/windows/images/win-10-activated-enterprise-subscription-active.png
deleted file mode 100644
index eb888b23b5..0000000000
Binary files a/education/windows/images/win-10-activated-enterprise-subscription-active.png and /dev/null differ
diff --git a/education/windows/images/win-10-activated-enterprise-subscription-not-active.png b/education/windows/images/win-10-activated-enterprise-subscription-not-active.png
deleted file mode 100644
index e4ac7398be..0000000000
Binary files a/education/windows/images/win-10-activated-enterprise-subscription-not-active.png and /dev/null differ
diff --git a/education/windows/images/win-10-not-activated-enterprise-subscription-active.png b/education/windows/images/win-10-not-activated-enterprise-subscription-active.png
deleted file mode 100644
index 5fedfe5d06..0000000000
Binary files a/education/windows/images/win-10-not-activated-enterprise-subscription-active.png and /dev/null differ
diff --git a/education/windows/images/win-10-not-activated-enterprise-subscription-not-active.png b/education/windows/images/win-10-not-activated-enterprise-subscription-not-active.png
deleted file mode 100644
index 84e39071db..0000000000
Binary files a/education/windows/images/win-10-not-activated-enterprise-subscription-not-active.png and /dev/null differ
diff --git a/education/windows/images/win-11-se-stickers-picker.png b/education/windows/images/win-11-se-stickers-picker.png
deleted file mode 100644
index 44fad2a725..0000000000
Binary files a/education/windows/images/win-11-se-stickers-picker.png and /dev/null differ
diff --git a/education/windows/includes/intune-custom-settings-alternative.md b/education/windows/includes/intune-custom-settings-alternative.md
deleted file mode 100644
index 955dc080cc..0000000000
--- a/education/windows/includes/intune-custom-settings-alternative.md
+++ /dev/null
@@ -1,8 +0,0 @@
----
-author: paolomatarazzo
-ms.author: paoloma
-ms.date: 11/08/2022
-ms.topic: include
----
-
-Alternatively, <a href="https://go.microsoft.com/fwlink/?linkid=2109431#view/Microsoft_Intune_DeviceSettings/CreatePolicyFullScreenBlade/policyId/00000000-0000-0000-0000-000000000000/policyType/Windows10Custom/policyJourneyState~/0" target="_blank"><b>create a custom policy</b></a> with the following settings:
\ No newline at end of file
diff --git a/education/windows/includes/intune-settings-catalog-1.md b/education/windows/includes/intune-settings-catalog-1.md
deleted file mode 100644
index 6031492031..0000000000
--- a/education/windows/includes/intune-settings-catalog-1.md
+++ /dev/null
@@ -1,18 +0,0 @@
----
-author: paolomatarazzo
-ms.author: paoloma
-ms.date: 11/08/2022
-ms.topic: include
----
-
-To configure devices with Microsoft Intune, use the settings catalog:
-
-  > [!TIP]
-  > If you're browsing with an account that can create Intune policies, you can skip to step 5 by using this direct link to <a href="https://go.microsoft.com/fwlink/?linkid=2109431#view/Microsoft_Intune_Workflows/SettingsCatalogWizardBlade/mode/create/platform/Windows%2010%20and%20later/policyType/SettingsCatalogWindows10" target="_blank"><b>create a Settings catalog policy</b></a> (opens in a new tab).
-
-1. Go to the <a href="https://go.microsoft.com/fwlink/?linkid=2109431" target="_blank"><b>Microsoft Endpoint Manager admin center</b></a>
-2. Select **Devices > Configuration profiles > Create profile**
-3. Select **Platform > Windows 10 and later** and **Profile type > Settings catalog**
-4. Select **Create**
-5. Specify a **Name** and, optionally, a **Description** > **Next**
-6. In the settings picker, add the following settings:
\ No newline at end of file
diff --git a/education/windows/includes/intune-settings-catalog-2.md b/education/windows/includes/intune-settings-catalog-2.md
deleted file mode 100644
index 41d840b9c8..0000000000
--- a/education/windows/includes/intune-settings-catalog-2.md
+++ /dev/null
@@ -1,11 +0,0 @@
----
-author: paolomatarazzo
-ms.author: paoloma
-ms.date: 11/08/2022
-ms.topic: include
----
-
-7. Select **Next**
-8. Optionally, add *scope tags* > **Next**
-9. Assign the policy to a security group that contains as members the devices or users that you want to configure > **Next**
-10. Review the policy configuration and select **Create**
\ No newline at end of file
diff --git a/education/windows/includes/intune-settings-catalog-info.md b/education/windows/includes/intune-settings-catalog-info.md
deleted file mode 100644
index c2f3b6495b..0000000000
--- a/education/windows/includes/intune-settings-catalog-info.md
+++ /dev/null
@@ -1,8 +0,0 @@
----
-author: paolomatarazzo
-ms.author: paoloma
-ms.date: 11/08/2022
-ms.topic: include
----
-
-For more information about how to create policies with the Intune settings catalog, see [Use the settings catalog to configure settings](/mem/intune/configuration/settings-catalog).
\ No newline at end of file
diff --git a/education/windows/tutorial-school-deployment/images/configure.png b/education/windows/tutorial-school-deployment/images/configure.png
deleted file mode 100644
index 6e3219a7cb..0000000000
Binary files a/education/windows/tutorial-school-deployment/images/configure.png and /dev/null differ
diff --git a/education/windows/tutorial-school-deployment/images/i4e-autopilot-reset.png b/education/windows/tutorial-school-deployment/images/i4e-autopilot-reset.png
deleted file mode 100644
index 69f9fb188a..0000000000
Binary files a/education/windows/tutorial-school-deployment/images/i4e-autopilot-reset.png and /dev/null differ
diff --git a/education/windows/tutorial-school-deployment/images/i4e-factory-reset.png b/education/windows/tutorial-school-deployment/images/i4e-factory-reset.png
deleted file mode 100644
index 5c1215f6d8..0000000000
Binary files a/education/windows/tutorial-school-deployment/images/i4e-factory-reset.png and /dev/null differ
diff --git a/education/windows/windows-11-se-overview.md b/education/windows/windows-11-se-overview.md
index efb6644b18..8a63a27c99 100644
--- a/education/windows/windows-11-se-overview.md
+++ b/education/windows/windows-11-se-overview.md
@@ -79,71 +79,74 @@ The following table lists all the applications included in Windows 11 SE and the
 
 The following applications can also run on Windows 11 SE, and can be deployed using Intune for Education. For more information, see [Configure applications with Microsoft Intune][EDUWIN-1]
 
-| Application                             | Supported version | App Type | Vendor                       |
-|-----------------------------------------|-------------------|----------|------------------------------|
-| 3d builder                              | 15.2.10821.1070   | Win32    | Microsoft                    |
-|Absolute Software Endpoint Agent         | 7.20.0.1          | Win32    | Absolute Software Corporation|
-| AirSecure                               | 8.0.0             | Win32    | AIR                          |
-| Alertus Desktop                         | 5.4.44.0          | Win32    | Alertus technologies         |
-| Brave Browser                           | 106.0.5249.65     | Win32    | Brave                        |
-| Bulb Digital Portfolio                  | 0.0.7.0           | Store    | Bulb                         |
-| CA Secure Browser                       | 14.0.0            | Win32    | Cambium Development          |
-| Cisco Umbrella                          | 3.0.110.0         | Win32    | Cisco                        |
-| CKAuthenticator                         | 3.6+              | Win32    | Content Keeper               |
-| Class Policy                            | 114.0.0           | Win32    | Class Policy                 |
-| Classroom.cloud                         | 1.40.0004         | Win32    | NetSupport                   |
-| CoGat Secure Browser                    | 11.0.0.19         | Win32    | Riverside Insights           |
-| Dragon Professional Individual          | 15.00.100         | Win32    | Nuance Communications        |
-| DRC INSIGHT Online Assessments          | 12.0.0.0          | Store    | Data recognition Corporation |
-| Duo from Cisco                          | 2.25.0            | Win32    | Cisco                        |
-| e-Speaking Voice and Speech recognition | 4.4.0.8           | Win32    | e-speaking                   |
-| Epson iProjection                       |	3.31              | Win32    | Epson                        |
-| eTests                                  | 4.0.25            | Win32    | CASAS                        |
-| FortiClient                             | 7.2.0.4034+       | Win32    | Fortinet                     |
-| Free NaturalReader                      | 16.1.2            | Win32    | Natural Soft                 |
-| Ghotit Real Writer & Reader             | 10.14.2.3         | Win32    | Ghotit Ltd                   |
-| GoGuardian                              | 1.4.4             | Win32    | GoGuardian                   |
-| Google Chrome                           | 102.0.5005.115    | Win32    | Google                       |
-| Illuminate Lockdown Browser             | 2.0.5             | Win32    | Illuminate Education         |
-| Immunet                                 | 7.5.0.20795       | Win32    | Immunet                      |
-| Impero Backdrop Client                  | 4.4.86            | Win32    | Impero Software              |
-| Inspiration 10                          | 10.11             | Win32    | TechEdology Ltd              |
-| JAWS for Windows                        | 2022.2112.24      | Win32    | Freedom Scientific           |
-| Kite Student Portal                     | 9.0.0.0           | Win32    | Dynamic Learning Maps        |
-| Kortext                                 | 2.3.433.0         | Store    | Kortext                      |
-| Kurzweil 3000 Assistive Learning        | 20.13.0000        | Win32    | Kurzweil Educational Systems |
-| LanSchool Classic                       | 9.1.0.46          | Win32    | Stoneware, Inc.              |
-| LanSchool Air                           | 2.0.13312         | Win32    | Stoneware, Inc.              |
-| Lightspeed Smart Agent                  | 1.9.1             | Win32    | Lightspeed Systems           |
-| MetaMoJi ClassRoom                      | 3.12.4.0          | Store    | MetaMoJi Corporation         |
-| Microsoft Connect                       | 10.0.22000.1      | Store    | Microsoft                    |
-| Mozilla Firefox                         | 99.0.1            | Win32    | Mozilla                      |
-| NAPLAN                                  | 2.5.0             | Win32    | NAP                          |
-| Netref Student                          | 22.2.0            | Win32    | NetRef                       |
-| NetSupport Manager                      | 12.01.0014        | Win32    | NetSupport                   |
-| NetSupport Notify                       | 5.10.1.215        | Win32    | NetSupport                   |
-| NetSupport School                       | 14.00.0011        | Win32    | NetSupport                   |
-| NextUp Talker                           | 1.0.49            | Win32    | NextUp Technologies          |
-| NonVisual Desktop Access                | 2021.3.1          | Win32    | NV Access                    |
-| NWEA Secure Testing Browser             | 5.4.356.0         | Win32    | NWEA                         |
-| PaperCut                                | 22.0.6            | Win32    | PaperCut Software International Pty Ltd |
-| Pearson TestNav                         | 1.10.2.0          | Store    | Pearson                      |
-| Questar Secure Browser                  | 4.8.3.376         | Win32    | Questar, Inc                 |
-| ReadAndWriteForWindows                  | 12.0.60.0         | Win32    | Texthelp Ltd.                |
-| Remote Desktop client (MSRDC)           | 1.2.3213.0        | Win32    | Microsoft                    |
-| Remote Help                             | 3.8.0.12          | Win32    | Microsoft                    |
-| Respondus Lockdown Browser              | 2.0.9.00          | Win32    | Respondus                    |
-| Safe Exam Browser                       | 3.3.2.413         | Win32    | Safe Exam Browser            |
-| Senso.Cloud                             | 2021.11.15.0      | Win32    | Senso.Cloud                  |
-| Smoothwall Monitor                      | 2.8.0             | Win32    | Smoothwall Ltd
-| SuperNova Magnifier & Screen Reader     | 21.02             | Win32    | Dolphin Computer Access      |
-| SuperNova Magnifier & Speech            | 21.02             | Win32    | Dolphin Computer Access      |  
-| VitalSourceBookShelf 	                  | 10.2.26.0         | Win32    | VitalSource Technologies Inc | 
-| Winbird                                 |	19                | Win32    | Winbird Co., Ltd.            |           
-| WordQ 	                                | 5.4.23            | Win32    | Mathetmots                   |
-| Zoom                                    | 5.9.1 (2581)      | Win32    | Zoom                         |
-| ZoomText Fusion                         | 2022.2109.10      | Win32    | Freedom Scientific           |
-| ZoomText Magnifier/Reader               | 2022.2109.25      | Win32    | Freedom Scientific           |
+| Application                               | Supported version | App Type | Vendor                                    |
+|-------------------------------------------|-------------------|----------|-------------------------------------------|
+| `3d builder`                              | 18.0.1931.0       | Win32    | `Microsoft`                               |
+| `Absolute Software Endpoint Agent`        | 7.20.0.1          | Win32    | `Absolute Software Corporation`           |
+| `AirSecure`                               | 8.0.0             | Win32    | `AIR`                                     |
+| `Alertus Desktop`                         | 5.4.48.0          | Win32    | `Alertus technologies`                    |
+| `Brave Browser`                           | 106.0.5249.119    | Win32    | `Brave`                                   |
+| `Bulb Digital Portfolio`                  | 0.0.7.0           | `Store`  | `Bulb`                                    |
+| `CA Secure Browser`                       | 14.0.0            | Win32    | `Cambium Development`                     |
+| `Cisco Umbrella`                          | 3.0.110.0         | Win32    | `Cisco`                                   |
+| `CKAuthenticator`                         | 3.6+              | Win32    | `Content Keeper`                          |
+| `Class Policy`                            | 114.0.0           | Win32    | `Class Policy`                            |
+| `Classroom.cloud`                         | 1.40.0004         | Win32    | `NetSupport`                              |
+| `CoGat Secure Browser`                    | 11.0.0.19         | Win32    | `Riverside Insights`                      |
+| `Dragon Professional Individual`          | 15.00.100         | Win32    | `Nuance Communications`                   |
+| `DRC INSIGHT Online Assessments`          | 12.0.0.0          | `Store`  | `Data recognition Corporation`            |
+| `Duo from Cisco`                          | 3.0.0             | Win32    | `Cisco`                                   |
+| `e-Speaking Voice and Speech recognition` | 4.4.0.8           | Win32    | `e-speaking`                              |
+| `EasyReader`                              | 10.0.3.481        | Win32    | `Dolphin Computer Access`                 |
+| `Epson iProjection`                       | 3.31              | Win32    | `Epson`                                   |
+| `eTests`                                  | 4.0.25            | Win32    | `CASAS`                                   |
+| `FortiClient`                             | 7.2.0.4034+       | Win32    | `Fortinet`                                |
+| `Free NaturalReader`                      | 16.1.2            | Win32    | `Natural Soft`                            |
+| `Ghotit Real Writer & Reader`             | 10.14.2.3         | Win32    | `Ghotit Ltd`                              |
+| `GoGuardian`                              | 1.4.4             | Win32    | `GoGuardian`                              |
+| `Google Chrome`                           | 102.0.5005.115    | Win32    | `Google`                                  |
+| `Illuminate Lockdown Browser`             | 2.0.5             | Win32    | `Illuminate Education`                    |
+| `Immunet`                                 | 7.5.8.21178       | Win32    | `Immunet`                                 |
+| `Impero Backdrop Client`                  | 4.4.86            | Win32    | `Impero Software`                         |
+| `IMT Lazarus`                             | 2.86.0            | Win32    | `IMTLazarus`                              |
+| `Inspiration 10`                          | 10.11             | Win32    | `TechEdology Ltd`                         |
+| `JAWS for Windows`                        | 2022.2112.24      | Win32    | `Freedom Scientific`                      |
+| `Kite Student Portal`                     | 9.0.0.0           | Win32    | `Dynamic Learning Maps`                   |
+| `Kortext`                                 | 2.3.433.0         | `Store`  | `Kortext`                                 |
+| `Kurzweil 3000 Assistive Learning`        | 20.13.0000        | Win32    | `Kurzweil Educational Systems`            |
+| `LanSchool Classic`                       | 9.1.0.46          | Win32    | `Stoneware, Inc.`                         |
+| `LanSchool Air`                           | 2.0.13312         | Win32    | `Stoneware, Inc.`                         |
+| `Lightspeed Smart Agent`                  | 1.9.1             | Win32    | `Lightspeed Systems`                      |
+| `MetaMoJi ClassRoom`                      | 3.12.4.0          | `Store`  | `MetaMoJi Corporation`                    |
+| `Microsoft Connect`                       | 10.0.22000.1      | `Store`  | `Microsoft`                               |
+| `Mozilla Firefox`                         | 105.0.0           | Win32    | `Mozilla`                                 |
+| `NAPLAN`                                  | 2.5.0             | Win32    | `NAP`                                     |
+| `Netref Student`                          | 22.2.0            | Win32    | `NetRef`                                  |
+| `NetSupport Manager`                      | 12.01.0014        | Win32    | `NetSupport`                              |
+| `NetSupport Notify`                       | 5.10.1.215        | Win32    | `NetSupport`                              |
+| `NetSupport School`                       | 14.00.0012        | Win32    | `NetSupport`                              |
+| `NextUp Talker`                           | 1.0.49            | Win32    | `NextUp Technologies`                     |
+| `NonVisual Desktop Access`                | 2021.3.1          | Win32    | `NV Access`                               |
+| `NWEA Secure Testing Browser`             | 5.4.356.0         | Win32    | `NWEA`                                    |
+| `PaperCut`                                | 22.0.6            | Win32    | `PaperCut Software International Pty Ltd` |
+| `Pearson TestNav`                         | 1.10.2.0          | `Store`  | `Pearson`                                 |
+| `Questar Secure Browser`                  | 5.0.1.456         | Win32    | `Questar, Inc`                            |
+| `ReadAndWriteForWindows`                  | 12.0.74           | Win32    | `Texthelp Ltd.`                           |
+| `Remote Desktop client (MSRDC)`           | 1.2.3213.0        | Win32    | `Microsoft`                               |
+| `Remote Help`                             | 4.0.1.13          | Win32    | `Microsoft`                               |
+| `Respondus Lockdown Browser`              | 2.0.9.03          | Win32    | `Respondus`                               |
+| `Safe Exam Browser`                       | 3.4.1.505         | Win32    | `Safe Exam Browser`                       |
+| `Senso.Cloud`                             | 2021.11.15.0      | Win32    | `Senso.Cloud`                             |
+| `Smoothwall Monitor`                      | 2.8.0             | Win32    | `Smoothwall Ltd`                          |
+| `SuperNova Magnifier & Screen Reader`     | 21.02             | Win32    | `Dolphin Computer Access`                 |
+| `SuperNova Magnifier & Speech`            | 21.02             | Win32    | `Dolphin Computer Access`                 |
+|`TX Secure Browser`                        | 15.0.0            | Win32    | `Cambium Development`
+| `VitalSourceBookShelf`                    | 10.2.26.0         | Win32    | `VitalSource Technologies Inc`            |
+| `Winbird`                                 | 19                | Win32    | `Winbird Co., Ltd.`                       |
+| `WordQ`                                   | 5.4.23            | Win32    | `Mathetmots`                              |
+| `Zoom`                                    | 5.12.8 (10232)    | Win32    | `Zoom`                                    |
+| `ZoomText Fusion`                         | 2022.2109.10      | Win32    | `Freedom Scientific`                      |
+| `ZoomText Magnifier/Reader`               | 2022.2109.25      | Win32    | `Freedom Scientific`                      |
 
 ## Add your own applications
 
diff --git a/images/grouppolicy-paste.png b/images/grouppolicy-paste.png
deleted file mode 100644
index ba2de148f1..0000000000
Binary files a/images/grouppolicy-paste.png and /dev/null differ
diff --git a/windows/application-management/apps-in-windows-10.md b/windows/application-management/apps-in-windows-10.md
index 82ec923242..506b43cbea 100644
--- a/windows/application-management/apps-in-windows-10.md
+++ b/windows/application-management/apps-in-windows-10.md
@@ -83,6 +83,10 @@ For more information, see:
 
 When your apps are ready, you can add or deploy these apps to your Windows devices. This section lists some common options.
 
+> [!NOTE]
+> Microsoft Store for Business and Microsoft Store for Education will be retired on March 31, 2023. Customers may continue to use the current capabilities for free apps until that time. There will be no support for Microsoft Store for Business and Education for Windows 11.
+>Visit [Evolving the Microsoft Store for Business and Education](https://aka.ms/windows/msfb_evolution) for more information about the new Microsoft Store experience for both Windows 11 and Windows 10, and learn about other options for getting and managing apps.
+
 - **Manually install**: On your devices, users can install apps from the Microsoft Store, from the internet, and from an organization shared drive. These apps, and more, are listed in **Settings** > **Apps** > **Apps and Features**.
 
   If you want to prevent users from downloading apps on organization owned devices, use an MDM provider, like Microsoft Intune. For example, you can create a policy that allows or prevents users from sideloading apps, only allow the private store, and more. For more information on the features you can restrict, see [Windows client device settings to allow or restrict features using Intune](/mem/intune/configuration/device-restrictions-windows-10).
diff --git a/windows/application-management/images/Createpackage.PNG b/windows/application-management/images/Createpackage.PNG
deleted file mode 100644
index 4ae246a743..0000000000
Binary files a/windows/application-management/images/Createpackage.PNG and /dev/null differ
diff --git a/windows/application-management/images/Installation.PNG b/windows/application-management/images/Installation.PNG
deleted file mode 100644
index 9c3197ada5..0000000000
Binary files a/windows/application-management/images/Installation.PNG and /dev/null differ
diff --git a/windows/application-management/images/Managefirstlaunchtasks.PNG b/windows/application-management/images/Managefirstlaunchtasks.PNG
deleted file mode 100644
index edcf1a23e8..0000000000
Binary files a/windows/application-management/images/Managefirstlaunchtasks.PNG and /dev/null differ
diff --git a/windows/application-management/images/PackageSupport.PNG b/windows/application-management/images/PackageSupport.PNG
deleted file mode 100644
index 1bbca6865a..0000000000
Binary files a/windows/application-management/images/PackageSupport.PNG and /dev/null differ
diff --git a/windows/application-management/images/Packageinfo.PNG b/windows/application-management/images/Packageinfo.PNG
deleted file mode 100644
index be3b9b98dd..0000000000
Binary files a/windows/application-management/images/Packageinfo.PNG and /dev/null differ
diff --git a/windows/application-management/images/Selectinstaller.PNG b/windows/application-management/images/Selectinstaller.PNG
deleted file mode 100644
index 7ffd984bed..0000000000
Binary files a/windows/application-management/images/Selectinstaller.PNG and /dev/null differ
diff --git a/windows/application-management/images/donemonitoring..PNG b/windows/application-management/images/donemonitoring..PNG
deleted file mode 100644
index d39102b961..0000000000
Binary files a/windows/application-management/images/donemonitoring..PNG and /dev/null differ
diff --git a/windows/application-management/images/preparecomputer.PNG b/windows/application-management/images/preparecomputer.PNG
deleted file mode 100644
index 43b2e3e965..0000000000
Binary files a/windows/application-management/images/preparecomputer.PNG and /dev/null differ
diff --git a/windows/application-management/images/preparingpackagestep.PNG b/windows/application-management/images/preparingpackagestep.PNG
deleted file mode 100644
index 5b06e11d0d..0000000000
Binary files a/windows/application-management/images/preparingpackagestep.PNG and /dev/null differ
diff --git a/windows/application-management/images/selectEnvironmentThiscomputer.PNG b/windows/application-management/images/selectEnvironmentThiscomputer.PNG
deleted file mode 100644
index bf6f3b4bf0..0000000000
Binary files a/windows/application-management/images/selectEnvironmentThiscomputer.PNG and /dev/null differ
diff --git a/windows/application-management/images/selectEnvironmentVM.PNG b/windows/application-management/images/selectEnvironmentVM.PNG
deleted file mode 100644
index dd6e1f9168..0000000000
Binary files a/windows/application-management/images/selectEnvironmentVM.PNG and /dev/null differ
diff --git a/windows/application-management/images/welcomescreen.PNG b/windows/application-management/images/welcomescreen.PNG
deleted file mode 100644
index cd551740a8..0000000000
Binary files a/windows/application-management/images/welcomescreen.PNG and /dev/null differ
diff --git a/windows/application-management/media/app-upgrade-cm-console.png b/windows/application-management/media/app-upgrade-cm-console.png
deleted file mode 100644
index 2ce9cd411e..0000000000
Binary files a/windows/application-management/media/app-upgrade-cm-console.png and /dev/null differ
diff --git a/windows/application-management/media/app-upgrade-no-supersedence.png b/windows/application-management/media/app-upgrade-no-supersedence.png
deleted file mode 100644
index 9a9bb9bb53..0000000000
Binary files a/windows/application-management/media/app-upgrade-no-supersedence.png and /dev/null differ
diff --git a/windows/application-management/media/app-upgrade-old-version.png b/windows/application-management/media/app-upgrade-old-version.png
deleted file mode 100644
index e430be170e..0000000000
Binary files a/windows/application-management/media/app-upgrade-old-version.png and /dev/null differ
diff --git a/windows/application-management/media/app-upgrade-supersede-deploy-type.png b/windows/application-management/media/app-upgrade-supersede-deploy-type.png
deleted file mode 100644
index 24a45c5939..0000000000
Binary files a/windows/application-management/media/app-upgrade-supersede-deploy-type.png and /dev/null differ
diff --git a/windows/application-management/media/icon_hyperlink.png b/windows/application-management/media/icon_hyperlink.png
deleted file mode 100644
index 847e8f62ad..0000000000
Binary files a/windows/application-management/media/icon_hyperlink.png and /dev/null differ
diff --git a/windows/application-management/provisioned-apps-windows-client-os.md b/windows/application-management/provisioned-apps-windows-client-os.md
index ec5b20af6b..fb6660fbcf 100644
--- a/windows/application-management/provisioned-apps-windows-client-os.md
+++ b/windows/application-management/provisioned-apps-windows-client-os.md
@@ -102,9 +102,7 @@ Provisioned apps are also listed in **Settings** > **Apps and Features**.
 
     ---
     
-- [HEVC Video Extensions](ms-windows-store://pdp/?PFN=Microsoft.HEVCVideoExtension_8wekyb3d8bbwe) | Package name: Microsoft.HEVCVideoExtension
-> [!NOTE]
-> For devices running Windows 11, version 21H2, and any supported version of Windows 10, you need to acquire the [HEVC Video Extensions](ms-windows-store://pdp/?PFN=Microsoft.HEVCVideoExtension_8wekyb3d8bbwe) from the Microsoft Store.
+- [HEVC Video Extensions](ms-windows-store://pdp/?productid=9NMZLZ57R3T7) | Package name: Microsoft.HEVCVideoExtension 
   - Supported versions:
 
     ---
@@ -113,6 +111,8 @@ Provisioned apps are also listed in **Settings** > **Apps and Features**.
     | ❌ |  ✔️|||
     
     ---  
+    >[!NOTE]
+    >For devices running Windows 11, version 21H2, and any supported version of Windows 10, you need to acquire the [HEVC Video Extensions](ms-windows-store://pdp/?productid=9NMZLZ57R3T7) from the Microsoft Store.
 
 - [Microsoft Messaging](ms-windows-store://pdp/?PFN=Microsoft.Messaging_8wekyb3d8bbwe) | Package name:Microsoft.Messaging
   - Supported versions:
diff --git a/windows/application-management/toc.yml b/windows/application-management/toc.yml
index 4be6d524af..395cecb920 100644
--- a/windows/application-management/toc.yml
+++ b/windows/application-management/toc.yml
@@ -20,7 +20,7 @@ items:
     - name: Remove background task resource restrictions
       href: enterprise-background-activity-controls.md
     - name: Enable or block Windows Mixed Reality apps in the enterprise
-      href: manage-windows-mixed-reality.md
+      href: /windows/mixed-reality/enthusiast-guide/manage-windows-mixed-reality
 - name: Application Virtualization (App-V)
   items: 
     - name: App-V for Windows overview
diff --git a/windows/client-management/azure-active-directory-integration-with-mdm.md b/windows/client-management/azure-active-directory-integration-with-mdm.md
index e1d6f4d069..f2c906993c 100644
--- a/windows/client-management/azure-active-directory-integration-with-mdm.md
+++ b/windows/client-management/azure-active-directory-integration-with-mdm.md
@@ -1,6 +1,6 @@
 ---
 title: Azure Active Directory integration with MDM
-description: Azure Active Directory is the world largest enterprise cloud identity management service.
+description: Azure Active Directory is the world's largest enterprise cloud identity management service.
 ms.reviewer: 
 manager: aaroncz
 ms.author: vinpa
@@ -14,7 +14,7 @@ ms.date: 12/31/2017
 
 # Azure Active Directory integration with MDM
 
-Azure Active Directory is the world largest enterprise cloud identity management service. It’s used by organizations to access Office 365 and business applications from Microsoft and third-party software as a service (SaaS) vendors. Many of the rich Windows 10 experiences for organizational users (such as store access or OS state roaming) use Azure AD as the underlying identity infrastructure. Windows integrates with Azure AD, allowing devices to be registered in Azure AD and enrolled into MDM in an integrated flow.
+Azure Active Directory is the world's largest enterprise cloud identity management service. It’s used by organizations to access Office 365 and business applications from Microsoft and third-party software as a service (SaaS) vendors. Many of the rich Windows 10 experiences for organizational users (such as store access or OS state roaming) use Azure AD as the underlying identity infrastructure. Windows integrates with Azure AD, allowing devices to be registered in Azure AD and enrolled into MDM in an integrated flow.
 
 Once a device is enrolled in MDM, the MDM:
 
diff --git a/windows/client-management/change-history-for-mdm-documentation.md b/windows/client-management/change-history-for-mdm-documentation.md
index 899c2dc399..80c06690e1 100644
--- a/windows/client-management/change-history-for-mdm-documentation.md
+++ b/windows/client-management/change-history-for-mdm-documentation.md
@@ -3,7 +3,7 @@ title: Change history for MDM documentation
 description: This article lists new and updated articles for Mobile Device Management.
 author: vinaypamnani-msft
 ms.author: vinpa
-ms.reviewer: 
+ms.reviewer:
 manager: aaroncz
 ms.topic: article
 ms.prod: windows-client
@@ -46,7 +46,7 @@ As of November 2020 This page will no longer be updated. This article lists new
 
 |New or updated article | Description|
 |--- | ---|
-|[Policy CSP - System](mdm/policy-csp-system.md)|Added the following new policy settings:<br>  - System/AllowDesktopAnalyticsProcessing <br>- System/AllowMicrosoftManagedDesktopProcessing <br> - System/AllowUpdateComplianceProcessing<br> - System/AllowWUfBCloudProcessing <br> <br><br>Updated the following policy setting:<br>-  <a href="mdm/policy-csp-system.md#system-allowcommercialdatapipeline" id="system-allowcommercialdatapipeline">System/AllowCommercialDataPipeline</a> <br>|
+|[Policy CSP - System](mdm/policy-csp-system.md)|Added the following new policy settings:<br>  - System/AllowDesktopAnalyticsProcessing <br>- System/AllowMicrosoftManagedDesktopProcessing <br> - System/AllowUpdateComplianceProcessing<br> - System/AllowWUfBCloudProcessing <br> <br><br>Updated the following policy setting:<br>-  <a href="mdm/policy-csp-system.md#allowcommercialdatapipeline" id="system-allowcommercialdatapipeline">System/AllowCommercialDataPipeline</a> <br>|
 
 ## June 2020
 
diff --git a/windows/client-management/enroll-a-windows-10-device-automatically-using-group-policy.md b/windows/client-management/enroll-a-windows-10-device-automatically-using-group-policy.md
index a27bb4a05a..ec40469278 100644
--- a/windows/client-management/enroll-a-windows-10-device-automatically-using-group-policy.md
+++ b/windows/client-management/enroll-a-windows-10-device-automatically-using-group-policy.md
@@ -125,7 +125,7 @@ Requirements:
 
     > [!NOTE]
     > In Windows 10, version 1903, the MDM.admx file was updated to include an option to select which credential is used to enroll the device. **Device Credential** is a new option that will only have an effect on clients that have installed Windows 10, version 1903 or later. The default behavior for older releases is to revert to **User Credential**.
-    > **Device Credential** is only supported for Microsoft Intune enrollment in scenarios with Co-management or Azure Virtual Desktop because the Intune subscription is user centric.
+    > **Device Credential** is only supported for Microsoft Intune enrollment in scenarios with Co-management or [Azure Virtual Desktop multi-session host pools](/mem/intune/fundamentals/azure-virtual-desktop-multi-session) because the Intune subscription is user centric. User credentials are supported for [Azure Virtual Desktop personal host pools](/mem/intune/fundamentals/azure-virtual-desktop).
 
     When a group policy refresh occurs on the client, a task is created and scheduled to run every 5 minutes for the duration of one day. The task is called "Schedule created by enrollment client for automatically enrolling in MDM from Azure Active Directory."
 
diff --git a/windows/client-management/images/NPS_sidepacket_capture_data.png b/windows/client-management/images/NPS_sidepacket_capture_data.png
deleted file mode 100644
index 9d43a3ebed..0000000000
Binary files a/windows/client-management/images/NPS_sidepacket_capture_data.png and /dev/null differ
diff --git a/windows/client-management/images/auditfailure.png b/windows/client-management/images/auditfailure.png
deleted file mode 100644
index f235ad8148..0000000000
Binary files a/windows/client-management/images/auditfailure.png and /dev/null differ
diff --git a/windows/client-management/images/auditsuccess.png b/windows/client-management/images/auditsuccess.png
deleted file mode 100644
index 66ce98acb1..0000000000
Binary files a/windows/client-management/images/auditsuccess.png and /dev/null differ
diff --git a/windows/client-management/images/authenticator_flow_chart.png b/windows/client-management/images/authenticator_flow_chart.png
deleted file mode 100644
index 729895e60e..0000000000
Binary files a/windows/client-management/images/authenticator_flow_chart.png and /dev/null differ
diff --git a/windows/client-management/images/boot-sequence-thumb.png b/windows/client-management/images/boot-sequence-thumb.png
deleted file mode 100644
index 164f9f9848..0000000000
Binary files a/windows/client-management/images/boot-sequence-thumb.png and /dev/null differ
diff --git a/windows/client-management/images/boot-sequence.png b/windows/client-management/images/boot-sequence.png
deleted file mode 100644
index 31e6dc34c9..0000000000
Binary files a/windows/client-management/images/boot-sequence.png and /dev/null differ
diff --git a/windows/client-management/images/bugcheck-analysis.png b/windows/client-management/images/bugcheck-analysis.png
deleted file mode 100644
index e4b4f033f8..0000000000
Binary files a/windows/client-management/images/bugcheck-analysis.png and /dev/null differ
diff --git a/windows/client-management/images/capi.png b/windows/client-management/images/capi.png
deleted file mode 100644
index 76bbcd0650..0000000000
Binary files a/windows/client-management/images/capi.png and /dev/null differ
diff --git a/windows/client-management/images/check-disk.png b/windows/client-management/images/check-disk.png
deleted file mode 100644
index 2c5859470e..0000000000
Binary files a/windows/client-management/images/check-disk.png and /dev/null differ
diff --git a/windows/client-management/images/clientsidepacket_cap_data.png b/windows/client-management/images/clientsidepacket_cap_data.png
deleted file mode 100644
index b162d2e285..0000000000
Binary files a/windows/client-management/images/clientsidepacket_cap_data.png and /dev/null differ
diff --git a/windows/client-management/images/comparisontable.png b/windows/client-management/images/comparisontable.png
deleted file mode 100644
index 0f6781d93e..0000000000
Binary files a/windows/client-management/images/comparisontable.png and /dev/null differ
diff --git a/windows/client-management/images/controlset.png b/windows/client-management/images/controlset.png
deleted file mode 100644
index fe9d3c8820..0000000000
Binary files a/windows/client-management/images/controlset.png and /dev/null differ
diff --git a/windows/client-management/images/eappropertymenu.png b/windows/client-management/images/eappropertymenu.png
deleted file mode 100644
index 127d7a7e49..0000000000
Binary files a/windows/client-management/images/eappropertymenu.png and /dev/null differ
diff --git a/windows/client-management/images/etl.png b/windows/client-management/images/etl.png
deleted file mode 100644
index 14a62c6450..0000000000
Binary files a/windows/client-management/images/etl.png and /dev/null differ
diff --git a/windows/client-management/images/eventviewer.png b/windows/client-management/images/eventviewer.png
deleted file mode 100644
index e0aa5d1721..0000000000
Binary files a/windows/client-management/images/eventviewer.png and /dev/null differ
diff --git a/windows/client-management/images/loadhive.png b/windows/client-management/images/loadhive.png
deleted file mode 100644
index 62c6643140..0000000000
Binary files a/windows/client-management/images/loadhive.png and /dev/null differ
diff --git a/windows/client-management/images/miniport.png b/windows/client-management/images/miniport.png
deleted file mode 100644
index ba1b2fed2d..0000000000
Binary files a/windows/client-management/images/miniport.png and /dev/null differ
diff --git a/windows/client-management/images/msm.png b/windows/client-management/images/msm.png
deleted file mode 100644
index 397df3e350..0000000000
Binary files a/windows/client-management/images/msm.png and /dev/null differ
diff --git a/windows/client-management/images/msmdetails.png b/windows/client-management/images/msmdetails.png
deleted file mode 100644
index cbcf20e114..0000000000
Binary files a/windows/client-management/images/msmdetails.png and /dev/null differ
diff --git a/windows/client-management/images/nm-adapters.png b/windows/client-management/images/nm-adapters.png
deleted file mode 100644
index f4e25fdbc8..0000000000
Binary files a/windows/client-management/images/nm-adapters.png and /dev/null differ
diff --git a/windows/client-management/images/nm-start.png b/windows/client-management/images/nm-start.png
deleted file mode 100644
index ec92f013a2..0000000000
Binary files a/windows/client-management/images/nm-start.png and /dev/null differ
diff --git a/windows/client-management/images/out-of-memory.png b/windows/client-management/images/out-of-memory.png
deleted file mode 100644
index c377389128..0000000000
Binary files a/windows/client-management/images/out-of-memory.png and /dev/null differ
diff --git a/windows/client-management/images/pendingupdate.png b/windows/client-management/images/pendingupdate.png
deleted file mode 100644
index 19d8c9dec4..0000000000
Binary files a/windows/client-management/images/pendingupdate.png and /dev/null differ
diff --git a/windows/client-management/images/revertpending.png b/windows/client-management/images/revertpending.png
deleted file mode 100644
index 7b60c6446d..0000000000
Binary files a/windows/client-management/images/revertpending.png and /dev/null differ
diff --git a/windows/client-management/images/rpc-error.png b/windows/client-management/images/rpc-error.png
deleted file mode 100644
index 0e0828522b..0000000000
Binary files a/windows/client-management/images/rpc-error.png and /dev/null differ
diff --git a/windows/client-management/images/rpc-flow.png b/windows/client-management/images/rpc-flow.png
deleted file mode 100644
index a3d9c13030..0000000000
Binary files a/windows/client-management/images/rpc-flow.png and /dev/null differ
diff --git a/windows/client-management/images/screenshot1.png b/windows/client-management/images/screenshot1.png
deleted file mode 100644
index 5138b41016..0000000000
Binary files a/windows/client-management/images/screenshot1.png and /dev/null differ
diff --git a/windows/client-management/images/sfc-scannow.png b/windows/client-management/images/sfc-scannow.png
deleted file mode 100644
index 1c079288a8..0000000000
Binary files a/windows/client-management/images/sfc-scannow.png and /dev/null differ
diff --git a/windows/client-management/images/task-manager-commit.png b/windows/client-management/images/task-manager-commit.png
deleted file mode 100644
index 86d289eebe..0000000000
Binary files a/windows/client-management/images/task-manager-commit.png and /dev/null differ
diff --git a/windows/client-management/images/task-manager.png b/windows/client-management/images/task-manager.png
deleted file mode 100644
index c52163f46e..0000000000
Binary files a/windows/client-management/images/task-manager.png and /dev/null differ
diff --git a/windows/client-management/images/tat.png b/windows/client-management/images/tat.png
deleted file mode 100644
index 90eb328c38..0000000000
Binary files a/windows/client-management/images/tat.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-10.png b/windows/client-management/images/tcp-ts-10.png
deleted file mode 100644
index 7bf332b57a..0000000000
Binary files a/windows/client-management/images/tcp-ts-10.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-11.png b/windows/client-management/images/tcp-ts-11.png
deleted file mode 100644
index 75b0361f89..0000000000
Binary files a/windows/client-management/images/tcp-ts-11.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-12.png b/windows/client-management/images/tcp-ts-12.png
deleted file mode 100644
index 592ccf0e76..0000000000
Binary files a/windows/client-management/images/tcp-ts-12.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-13.png b/windows/client-management/images/tcp-ts-13.png
deleted file mode 100644
index da6157c72a..0000000000
Binary files a/windows/client-management/images/tcp-ts-13.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-14.png b/windows/client-management/images/tcp-ts-14.png
deleted file mode 100644
index b1db37cd1a..0000000000
Binary files a/windows/client-management/images/tcp-ts-14.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-15.png b/windows/client-management/images/tcp-ts-15.png
deleted file mode 100644
index e3e161317f..0000000000
Binary files a/windows/client-management/images/tcp-ts-15.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-16.png b/windows/client-management/images/tcp-ts-16.png
deleted file mode 100644
index 52a5e24e2b..0000000000
Binary files a/windows/client-management/images/tcp-ts-16.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-17.png b/windows/client-management/images/tcp-ts-17.png
deleted file mode 100644
index e690bbdf1c..0000000000
Binary files a/windows/client-management/images/tcp-ts-17.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-18.png b/windows/client-management/images/tcp-ts-18.png
deleted file mode 100644
index 95cf36dbe7..0000000000
Binary files a/windows/client-management/images/tcp-ts-18.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-19.png b/windows/client-management/images/tcp-ts-19.png
deleted file mode 100644
index 4f2d239e57..0000000000
Binary files a/windows/client-management/images/tcp-ts-19.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-20.png b/windows/client-management/images/tcp-ts-20.png
deleted file mode 100644
index 9b3c573f7e..0000000000
Binary files a/windows/client-management/images/tcp-ts-20.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-21.png b/windows/client-management/images/tcp-ts-21.png
deleted file mode 100644
index 1e29a2061e..0000000000
Binary files a/windows/client-management/images/tcp-ts-21.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-22.png b/windows/client-management/images/tcp-ts-22.png
deleted file mode 100644
index c49dcd72ee..0000000000
Binary files a/windows/client-management/images/tcp-ts-22.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-23.png b/windows/client-management/images/tcp-ts-23.png
deleted file mode 100644
index 16ef4604c1..0000000000
Binary files a/windows/client-management/images/tcp-ts-23.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-24.png b/windows/client-management/images/tcp-ts-24.png
deleted file mode 100644
index 14ae950076..0000000000
Binary files a/windows/client-management/images/tcp-ts-24.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-25.png b/windows/client-management/images/tcp-ts-25.png
deleted file mode 100644
index 21e8b97a08..0000000000
Binary files a/windows/client-management/images/tcp-ts-25.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-4.png b/windows/client-management/images/tcp-ts-4.png
deleted file mode 100644
index 73bc5f90be..0000000000
Binary files a/windows/client-management/images/tcp-ts-4.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-5.png b/windows/client-management/images/tcp-ts-5.png
deleted file mode 100644
index ee64c96da0..0000000000
Binary files a/windows/client-management/images/tcp-ts-5.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-6.png b/windows/client-management/images/tcp-ts-6.png
deleted file mode 100644
index 8db75fdb08..0000000000
Binary files a/windows/client-management/images/tcp-ts-6.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-7.png b/windows/client-management/images/tcp-ts-7.png
deleted file mode 100644
index 4b61bf7e36..0000000000
Binary files a/windows/client-management/images/tcp-ts-7.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-8.png b/windows/client-management/images/tcp-ts-8.png
deleted file mode 100644
index f0ef8300ba..0000000000
Binary files a/windows/client-management/images/tcp-ts-8.png and /dev/null differ
diff --git a/windows/client-management/images/tcp-ts-9.png b/windows/client-management/images/tcp-ts-9.png
deleted file mode 100644
index dba375fd65..0000000000
Binary files a/windows/client-management/images/tcp-ts-9.png and /dev/null differ
diff --git a/windows/client-management/images/unloadhive.png b/windows/client-management/images/unloadhive.png
deleted file mode 100644
index e8eb2f859e..0000000000
Binary files a/windows/client-management/images/unloadhive.png and /dev/null differ
diff --git a/windows/client-management/images/unloadhive1.png b/windows/client-management/images/unloadhive1.png
deleted file mode 100644
index 3b269f294c..0000000000
Binary files a/windows/client-management/images/unloadhive1.png and /dev/null differ
diff --git a/windows/client-management/images/wcm.png b/windows/client-management/images/wcm.png
deleted file mode 100644
index 6c26a3aeb7..0000000000
Binary files a/windows/client-management/images/wcm.png and /dev/null differ
diff --git a/windows/client-management/images/wifi-stack.png b/windows/client-management/images/wifi-stack.png
deleted file mode 100644
index cf94f491c4..0000000000
Binary files a/windows/client-management/images/wifi-stack.png and /dev/null differ
diff --git a/windows/client-management/images/windbg.png b/windows/client-management/images/windbg.png
deleted file mode 100644
index 2f489e81a7..0000000000
Binary files a/windows/client-management/images/windbg.png and /dev/null differ
diff --git a/windows/client-management/images/wlan.png b/windows/client-management/images/wlan.png
deleted file mode 100644
index fea20f7272..0000000000
Binary files a/windows/client-management/images/wlan.png and /dev/null differ
diff --git a/windows/client-management/includes/allow-cortana-shortdesc.md b/windows/client-management/includes/allow-cortana-shortdesc.md
deleted file mode 100644
index 234b73f7d2..0000000000
--- a/windows/client-management/includes/allow-cortana-shortdesc.md
+++ /dev/null
@@ -1,11 +0,0 @@
----
-author: dansimp
-ms.author: dansimp
-ms.date: 10/02/2018
-ms.reviewer: 
-manager: dansimp
-ms.prod: edge
-ms.topic: include
----
-
-Since Microsoft Edge is integration with Cortana, Microsoft Edge allows users to use Cortana voice assistant by default. With this policy, you can configure Microsoft Edge to prevent users from using Cortana but can still search to find items on their device.
diff --git a/windows/client-management/includes/configure-favorites-shortdesc.md b/windows/client-management/includes/configure-favorites-shortdesc.md
deleted file mode 100644
index 34e0cded8f..0000000000
--- a/windows/client-management/includes/configure-favorites-shortdesc.md
+++ /dev/null
@@ -1,11 +0,0 @@
----
-author: dansimp
-ms.author: dansimp
-ms.date:  10/02/2018
-ms.reviewer: 
-manager: dansimp
-ms.prod: edge
-ms.topic: include
----
-
-Discontinued in Windows 10, version 1809.  Use the **[Provision Favorites](../available-policies.md#provision-favorites)** policy instead. 
diff --git a/windows/client-management/includes/do-not-sync-shortdesc.md b/windows/client-management/includes/do-not-sync-shortdesc.md
deleted file mode 100644
index 2fe09c0260..0000000000
--- a/windows/client-management/includes/do-not-sync-shortdesc.md
+++ /dev/null
@@ -1,11 +0,0 @@
----
-author: dansimp
-ms.author: dansimp
-ms.date:  10/02/2018
-ms.reviewer: 
-manager: dansimp
-ms.prod: edge
-ms.topic: include
----
-
-By default, Microsoft Edge turns on the _Sync your settings_ toggle in **Settings > Device sync settings** letting users choose what to sync on their devices. Enabling this policy turns off and disables the _Sync your settings_ toggle preventing the syncing of user’s settings between their devices. If you want syncing turned off by default in Microsoft Edge but not disabled, enable this policy and select the _Allow users to turn syncing on_ option. 
diff --git a/windows/client-management/includes/microsoft-browser-extension-policy-shortdesc.md b/windows/client-management/includes/microsoft-browser-extension-policy-shortdesc.md
deleted file mode 100644
index 2b26624e8c..0000000000
--- a/windows/client-management/includes/microsoft-browser-extension-policy-shortdesc.md
+++ /dev/null
@@ -1,12 +0,0 @@
----
-author: dansimp
-ms.author: dansimp
-ms.date:  04/23/2020
-ms.reviewer: 
-manager: dansimp
-ms.prod: edge
-ms.topic: include
----
-
-[Microsoft browser extension policy](/legal/microsoft-edge/microsoft-browser-extension-policy):
-This article describes the supported mechanisms for extending or modifying the behavior or user experience of Microsoft Edge and Internet Explorer, or the content these browsers display. Techniques that aren't explicitly listed in this article are considered to be **unsupported**.
\ No newline at end of file
diff --git a/windows/client-management/includes/search-provider-discovery-shortdesc.md b/windows/client-management/includes/search-provider-discovery-shortdesc.md
deleted file mode 100644
index 8524933996..0000000000
--- a/windows/client-management/includes/search-provider-discovery-shortdesc.md
+++ /dev/null
@@ -1,11 +0,0 @@
----
-author: dansimp
-ms.author: dansimp
-ms.date:  10/02/2018
-ms.reviewer: 
-manager: dansimp
-ms.prod: edge
-ms.topic: include
----
-
-Microsoft Edge follows the OpenSearch 1.1 specification to discover and use web search providers. When a user browses to a search service, the OpenSearch description is picked up and saved for later use. Users can then choose to add the search service to use in the Microsoft Edge address bar.
diff --git a/windows/client-management/mdm/firewall-csp.md b/windows/client-management/mdm/firewall-csp.md
index 3d2f9042c4..a425989761 100644
--- a/windows/client-management/mdm/firewall-csp.md
+++ b/windows/client-management/mdm/firewall-csp.md
@@ -52,6 +52,11 @@ Firewall
 ------------DisableStealthMode
 ------------Shielded
 ------------DisableUnicastResponsesToMulticastBroadcast
+------------EnableLogDroppedPackets
+------------EnableLogSuccessConnections
+------------EnableLogIgnoredRules
+------------LogMaxFileSize
+------------LogFilePath
 ------------DisableInboundNotifications
 ------------AuthAppsAllowUserPrefMerge
 ------------GlobalPortsAllowUserPrefMerge
@@ -65,6 +70,11 @@ Firewall
 ------------DisableStealthMode
 ------------Shielded
 ------------DisableUnicastResponsesToMulticastBroadcast
+------------EnableLogDroppedPackets
+------------EnableLogSuccessConnections
+------------EnableLogIgnoredRules
+------------LogMaxFileSize
+------------LogFilePath
 ------------DisableInboundNotifications
 ------------AuthAppsAllowUserPrefMerge
 ------------GlobalPortsAllowUserPrefMerge
@@ -78,6 +88,11 @@ Firewall
 ------------DisableStealthMode
 ------------Shielded
 ------------DisableUnicastResponsesToMulticastBroadcast
+------------EnableLogDroppedPackets
+------------EnableLogSuccessConnections
+------------EnableLogIgnoredRules
+------------LogMaxFileSize
+------------LogFilePath
 ------------DisableInboundNotifications
 ------------AuthAppsAllowUserPrefMerge
 ------------GlobalPortsAllowUserPrefMerge
@@ -223,6 +238,25 @@ Boolean value. If it's true, unicast responses to multicast broadcast traffic ar
 Default value is false.
 Value type is bool. Supported operations are Add, Get and Replace.
 
+<a href="" id="enablelogdroppedpackets"></a>**/EnableLogDroppedPackets**
+Boolean value. If this value is true, firewall will log all dropped packets. The merge law for this option is to let "on" values win.
+Default value is false. Supported operations are Get and Replace.
+
+<a href="" id="enablelogsuccessconnections"></a>**/EnableLogSuccessConnections**
+Boolean value. If this value is true, firewall will log all successful inbound connections. The merge law for this option is to let "on" values win.
+Default value is false. Supported operations are Get and Replace.
+
+<a href="" id="enablelogignoredrules"></a>**/EnableLogIgnoredRules**
+Boolean value. If this value is true, firewall will log ignored firewall rules. The merge law for this option is to let "on" values win.
+Default value is false. Supported operations are Get and Replace.
+
+<a href="" id="logmaxfilesize"></a>**/LogMaxFileSize**
+Integer value that specifies the size, in kilobytes, of the log file where dropped packets, successful connections and ignored rules are logged. The merge law for this option is to let the value of the GroupPolicyRSoPStore win if it is configured, otherwise the MdmStore value wins if it is configured, otherwise the local store value is used.
+Default value is 1024. Supported operations are Get and Replace
+
+<a href="" id="logfilepath"></a>**/LogFilePath**
+String value that represents the file path to the log where firewall logs dropped packets, successful connections and ignored rules. The merge law for this option is to let the value of the GroupPolicyRSoPStore win if it is configured, otherwise the MdmStore value wins if it is configured, otherwise the local store value is used. Default value is "%systemroot%\system32\LogFiles\Firewall\pfirewall.log". Supported operations are Get and Replace
+
 <a href="" id="disableinboundnotifications"></a>**/DisableInboundNotifications**
 Boolean value. If this value is false, the firewall MAY display a notification to the user when an application is blocked from listening on a port.  If this value is on, the firewall MUST NOT display such a notification. The merge law for this option is to let the value of the GroupPolicyRSoPStore win if it's configured; otherwise, the local store value is used.
 Default value is false.
@@ -349,7 +383,7 @@ Value type is string. Supported operations are Add, Get, Replace, and Delete.
 
 
 <a href="" id="icmptypesandcodes"></a>**FirewallRules/_FirewallRuleName_/IcmpTypesAndCodes**
-ICMP types and codes applicable to the firewall rule. To specify all ICMP types and codes, use the “\*” character. For specific ICMP types and codes, use the “:” character to separate the type and code, for example, 3:4, 1:\*. The “\*” character can be used to represent any code. The “\*” character cannot be used to specify any type; examples such as “\*:4” or “\*:\*” are invalid.
+Comma separated list of ICMP types and codes applicable to the firewall rule. To specify all ICMP types and codes, use the “\*” character. For specific ICMP types and codes, use the “:” character to separate the type and code, for example, 3:4, 1:\*. The “\*” character can be used to represent any code. The “\*” character cannot be used to specify any type; examples such as “\*:4” or “\*:\*” are invalid.
 If not specified, the default is All.
 Value type is string. Supported operations are Add, Get, Replace, and Delete.
 
@@ -431,6 +465,7 @@ Comma separated list of interface types. Valid values:
 - RemoteAccess
 - Wireless
 - Lan
+- MBB (i.e. Mobile Broadband)
 
 If not specified, the default is All.
 Value type is string. Supported operations are Get and Replace.
diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens-1st-gen-commercial-suite.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens-1st-gen-commercial-suite.md
index 5b7486628f..dccc4df62a 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens-1st-gen-commercial-suite.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens-1st-gen-commercial-suite.md
@@ -1,7 +1,7 @@
 ---
 title: Policies in Policy CSP supported by HoloLens (1st gen) Commercial Suite
 description: Learn the policies in Policy CSP supported by HoloLens (1st gen) Commercial Suite.
-ms.reviewer: 
+ms.reviewer:
 manager: aaroncz
 ms.author: vinpa
 ms.topic: article
@@ -48,8 +48,8 @@ ms.date: 09/17/2019
 - [Settings/AllowDateTime](policy-csp-settings.md#settings-allowdatetime)
 - [Settings/AllowVPN](policy-csp-settings.md#settings-allowvpn)
 - [Speech/AllowSpeechModelUpdate](policy-csp-speech.md#speech-allowspeechmodelupdate)
-- [System/AllowLocation](policy-csp-system.md#system-allowlocation)
-- [System/AllowTelemetry](policy-csp-system.md#system-allowtelemetry)
+- [System/AllowLocation](policy-csp-system.md#allowlocation)
+- [System/AllowTelemetry](policy-csp-system.md#allowtelemetry)
 - [Update/AllowAutoUpdate](policy-csp-update.md#update-allowautoupdate)
 - [Update/AllowUpdateService](policy-csp-update.md#update-allowupdateservice)
 - [Update/RequireDeferUpgrade](policy-csp-update.md#update-requiredeferupgrade)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens-1st-gen-development-edition.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens-1st-gen-development-edition.md
index eebc6a88cf..78c0ec3a24 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens-1st-gen-development-edition.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens-1st-gen-development-edition.md
@@ -1,7 +1,7 @@
 ---
 title: Policies in Policy CSP supported by HoloLens (1st gen) Development Edition
 description: Learn about the policies in Policy CSP supported by HoloLens (1st gen) Development Edition.
-ms.reviewer: 
+ms.reviewer:
 manager: aaroncz
 ms.author: vinpa
 ms.topic: article
@@ -46,8 +46,8 @@ ms.date: 07/18/2019
 - [Settings/AllowDateTime](policy-csp-settings.md#settings-allowdatetime)
 - [Settings/AllowVPN](policy-csp-settings.md#settings-allowvpn)
 - [Speech/AllowSpeechModelUpdate](policy-csp-speech.md#speech-allowspeechmodelupdate)
-- [System/AllowTelemetry](policy-csp-system.md#system-allowtelemetry)
-- [System/AllowLocation](policy-csp-system.md#system-allowlocation)
+- [System/AllowTelemetry](policy-csp-system.md#allowtelemetry)
+- [System/AllowLocation](policy-csp-system.md#allowlocation)
 - [Update/AllowAutoUpdate](policy-csp-update.md#update-allowautoupdate)
 - [Update/AllowUpdateService](policy-csp-update.md#update-allowupdateservice)
 - [Update/RequireUpdateApproval](policy-csp-update.md#update-requireupdateapproval)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
index 00aeb772d0..082b79a3aa 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
@@ -1,7 +1,7 @@
 ---
 title: Policies in Policy CSP supported by HoloLens 2
 description: Learn about the policies in Policy CSP supported by HoloLens 2.
-ms.reviewer: 
+ms.reviewer:
 manager: aaroncz
 ms.author: vinpa
 ms.topic: article
@@ -18,6 +18,7 @@ ms.date: 08/01/2022
 - [ApplicationManagement/AllowAllTrustedApps](policy-csp-applicationmanagement.md#applicationmanagement-allowalltrustedapps)
 - [ApplicationManagement/AllowAppStoreAutoUpdate](policy-csp-applicationmanagement.md#applicationmanagement-allowappstoreautoupdate)
 - [ApplicationManagement/AllowDeveloperUnlock](policy-csp-applicationmanagement.md#applicationmanagement-allowdeveloperunlock)
+- [ApplicationManagement/RequirePrivateStoreOnly](policy-csp-applicationmanagement.md#applicationmanagement-requireprivatestoreonly) <sup>11</sup>
 - [Authentication/AllowFastReconnect](policy-csp-authentication.md#authentication-allowfastreconnect)
 - [Authentication/PreferredAadTenantDomainName](policy-csp-authentication.md#authentication-preferredaadtenantdomainname)
 - [Bluetooth/AllowDiscoverableMode](policy-csp-bluetooth.md#bluetooth-allowdiscoverablemode)
@@ -103,10 +104,10 @@ ms.date: 08/01/2022
 - [Storage/ConfigStorageSenseCloudContentDehydrationThreshold](policy-csp-storage.md#storage-configstoragesensecloudcontentdehydrationthreshold) <sup>12</sup>
 - [Storage/ConfigStorageSenseDownloadsCleanupThreshold](policy-csp-storage.md#storage-configstoragesensedownloadscleanupthreshold) <sup>12</sup>
 - [Storage/ConfigStorageSenseGlobalCadence](policy-csp-storage.md#storage-configstoragesenseglobalcadence) <sup>12</sup>
-- [System/AllowCommercialDataPipeline](policy-csp-system.md#system-allowcommercialdatapipeline)
-- [System/AllowLocation](policy-csp-system.md#system-allowlocation)
-- [System/AllowStorageCard](policy-csp-system.md#system-allowstoragecard)
-- [System/AllowTelemetry](policy-csp-system.md#system-allowtelemetry)
+- [System/AllowCommercialDataPipeline](policy-csp-system.md#allowcommercialdatapipeline)
+- [System/AllowLocation](policy-csp-system.md#allowlocation)
+- [System/AllowStorageCard](policy-csp-system.md#allowstoragecard)
+- [System/AllowTelemetry](policy-csp-system.md#allowtelemetry)
 - [TimeLanguageSettings/ConfigureTimeZone](./policy-csp-timelanguagesettings.md#timelanguagesettings-configuretimezone) <sup>9</sup>
 - [Update/ActiveHoursEnd](./policy-csp-update.md#update-activehoursend) <sup>9</sup>
 - [Update/ActiveHoursMaxRange](./policy-csp-update.md#update-activehoursmaxrange) <sup>9</sup>
diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md
index bcc22cc6cb..a1cd81ffcb 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-surface-hub.md
@@ -64,9 +64,9 @@ ms.date: 07/22/2020
 - [DeliveryOptimization/DOPercentageMaxDownloadBandwidth](policy-csp-deliveryoptimization.md#deliveryoptimization-dopercentagemaxdownloadbandwidth)
 - [Desktop/PreventUserRedirectionOfProfileFolders](policy-csp-desktop.md#desktop-preventuserredirectionofprofilefolders)
 - [RestrictedGroups/ConfigureGroupMembership](policy-csp-restrictedgroups.md#restrictedgroups-configuregroupmembership)
-- [System/AllowLocation](policy-csp-system.md#system-allowlocation)
-- [System/AllowStorageCard](policy-csp-system.md#system-allowstoragecard)
-- [System/AllowTelemetry](policy-csp-system.md#system-allowtelemetry)
+- [System/AllowLocation](policy-csp-system.md#allowlocation)
+- [System/AllowStorageCard](policy-csp-system.md#allowstoragecard)
+- [System/AllowTelemetry](policy-csp-system.md#allowtelemetry)
 - [TextInput/AllowIMELogging](policy-csp-textinput.md#textinput-allowimelogging)
 - [TextInput/AllowIMENetworkAccess](policy-csp-textinput.md#textinput-allowimenetworkaccess)
 - [TextInput/AllowInputPanel](policy-csp-textinput.md#textinput-allowinputpanel)
diff --git a/windows/client-management/mdm/policies-in-policy-csp-that-can-be-set-using-eas.md b/windows/client-management/mdm/policies-in-policy-csp-that-can-be-set-using-eas.md
index 601ad0b197..ee156ca4b2 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-that-can-be-set-using-eas.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-that-can-be-set-using-eas.md
@@ -1,7 +1,7 @@
 ---
 title: Policies in Policy CSP that can be set using Exchange Active Sync (EAS)
 description: Learn about the policies in Policy CSP that can be set using Exchange Active Sync (EAS).
-ms.reviewer: 
+ms.reviewer:
 manager: aaroncz
 ms.author: vinpa
 ms.topic: article
@@ -30,8 +30,8 @@ ms.date: 07/18/2019
 - [DeviceLock/PreventLockScreenSlideShow](policy-csp-devicelock.md#devicelock-preventlockscreenslideshow)
 - [Search/AllowSearchToUseLocation](policy-csp-search.md#search-allowsearchtouselocation)
 - [Security/RequireDeviceEncryption](policy-csp-security.md#security-requiredeviceencryption)
-- [System/AllowStorageCard](policy-csp-system.md#system-allowstoragecard)
-- [System/TelemetryProxy](policy-csp-system.md#system-telemetryproxy)
+- [System/AllowStorageCard](policy-csp-system.md#allowstoragecard)
+- [System/TelemetryProxy](policy-csp-system.md#telemetryproxy)
 - [Wifi/AllowInternetSharing](policy-csp-wifi.md#wifi-allowinternetsharing)
 - [Wifi/AllowWiFi](policy-csp-wifi.md#wifi-allowwifi)
 
diff --git a/windows/client-management/mdm/policy-csp-admx-datacollection.md b/windows/client-management/mdm/policy-csp-admx-datacollection.md
index 657cdef18f..d658533761 100644
--- a/windows/client-management/mdm/policy-csp-admx-datacollection.md
+++ b/windows/client-management/mdm/policy-csp-admx-datacollection.md
@@ -1,92 +1,95 @@
 ---
-title: Policy CSP - ADMX_DataCollection
-description: Learn about the Policy CSP - ADMX_DataCollection.
+title: ADMX_DataCollection Policy CSP
+description: Learn more about the ADMX_DataCollection Area in Policy CSP.
+author: vinaypamnani-msft
+manager: aaroncz
 ms.author: vinpa
+ms.date: 01/09/2023
 ms.localizationpriority: medium
-ms.topic: article
 ms.prod: windows-client
 ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.date: 12/01/2020
-ms.reviewer: 
-manager: aaroncz
+ms.topic: reference
 ---
 
+<!-- Auto-Generated CSP Document -->
+
+<!-- ADMX_DataCollection-Begin -->
 # Policy CSP - ADMX_DataCollection
 
-<hr/>
-
-<!--Policies-->
-## ADMX_DataCollection policies
-
 > [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](../understanding-admx-backed-policies.md).
+> This CSP contains ADMX-backed policies which require a special SyncML format to enable or disable. You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
 >
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](../understanding-admx-backed-policies.md#enabling-a-policy).
->
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
 
-<dl>
-  <dd>
-    <a href="#admx-datacollection-commercialidpolicy">ADMX_DataCollection/CommercialIdPolicy</a>
-  </dd>
-</dl>
+<!-- ADMX_DataCollection-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- ADMX_DataCollection-Editable-End -->
 
+<!-- CommercialIdPolicy-Begin -->
+## CommercialIdPolicy
 
-<hr/>
+<!-- CommercialIdPolicy-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 2004 [10.0.19041.1202] and later <br> :heavy_check_mark: Windows 10, version 2009 [10.0.19042.1202] and later <br> :heavy_check_mark: Windows 10, version 21H1 [10.0.19043.1202] and later <br> :heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+<!-- CommercialIdPolicy-Applicability-End -->
 
-<!--Policy-->
-<a href="" id="admx-datacollection-commercialidpolicy"></a>**ADMX_DataCollection/CommercialIdPolicy**
+<!-- CommercialIdPolicy-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/ADMX_DataCollection/CommercialIdPolicy
+```
+<!-- CommercialIdPolicy-OmaUri-End -->
 
-<!--SupportedSKUs-->
+<!-- CommercialIdPolicy-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting defines the identifier used to uniquely associate this device's diagnostic data data as belonging to a given organization. If your organization is participating in a program that requires this device to be identified as belonging to your organization then use this setting to provide that identification. The value for this setting will be provided by Microsoft as part of the onboarding process for the program.
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Business|Yes|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+- If you disable or do not configure this policy setting, then Microsoft will not be able to use this identifier to associate this machine and its diagnostic data data with your organization.
+<!-- CommercialIdPolicy-Description-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- CommercialIdPolicy-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+> [!IMPORTANT]
+> Starting with the January 2023 preview cumulative update, this policy is no longer supported to configure the processor option. For more information, see [Changes to Windows diagnostic data collection](/windows/privacy/changes-to-windows-diagnostic-data-collection#significant-changes-coming-to-the-windows-diagnostic-data-processor-configuration).
+<!-- CommercialIdPolicy-Editable-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- CommercialIdPolicy-DFProperties-Begin -->
+**Description framework properties**:
 
-> [!div class = "checklist"]
-> * Device
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+<!-- CommercialIdPolicy-DFProperties-End -->
 
-<hr/>
+<!-- CommercialIdPolicy-AdmxBacked-Begin -->
+> [!TIP]
+> This is an ADMX-backed policy and requires SyncML format for configuration. For an example of SyncML format, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
 
-<!--/Scope-->
-<!--Description-->
-This policy setting defines the identifier used to uniquely associate this device’s telemetry data as belonging to a given organization.
+**ADMX mapping**:
 
-If your organization is participating in a program that requires this device to be identified as belonging to your organization, then use this setting to provide that identification. The value for this setting will be provided by Microsoft as part of the onboarding process for the program.
+| Name | Value |
+|:--|:--|
+| Name | CommercialIdPolicy |
+| Friendly Name | Configure the Commercial ID |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- CommercialIdPolicy-AdmxBacked-End -->
 
-If you disable or don't configure this policy setting, then Microsoft won't be able to use this identifier to associate this machine and its telemetry data with your organization.
+<!-- CommercialIdPolicy-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- CommercialIdPolicy-Examples-End -->
 
-<!--/Description-->
+<!-- CommercialIdPolicy-End -->
 
+<!-- ADMX_DataCollection-CspMoreInfo-Begin -->
+<!-- Add any additional information about this CSP here. Anything outside this section will get overwritten. -->
+<!-- ADMX_DataCollection-CspMoreInfo-End -->
 
-<!--ADMXBacked-->
-ADMX Info:
--   GP Friendly name: *Configure the Commercial ID*
--   GP name: *CommercialIdPolicy*
--   GP path: *Windows Components\Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
+<!-- ADMX_DataCollection-End -->
 
-<!--/ADMXBacked-->
-<!--/Policy-->
-<hr/>
+## Related articles
 
-> [!NOTE]
-> These policies are for upcoming release.
-
-<!--/Policies-->
-
-## Related topics
-
-[ADMX-backed policies in Policy CSP](./policies-in-policy-csp-admx-backed.md)
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/mdm/policy-csp-system.md b/windows/client-management/mdm/policy-csp-system.md
index e26bcb675c..3475130df0 100644
--- a/windows/client-management/mdm/policy-csp-system.md
+++ b/windows/client-management/mdm/policy-csp-system.md
@@ -1,1615 +1,2159 @@
 ---
-title: Policy CSP - System
-description: Learn policy settings that determine whether users can access the Insider build controls in the advanced options for Windows Update.
+title: System Policy CSP
+description: Learn more about the System Area in Policy CSP.
+author: vinaypamnani-msft
+manager: aaroncz
 ms.author: vinpa
-ms.topic: article
+ms.date: 01/09/2023
+ms.localizationpriority: medium
 ms.prod: windows-client
 ms.technology: itpro-manage
-author: vinaypamnani-msft
-ms.localizationpriority: medium
-ms.date: 08/26/2021
-ms.reviewer: 
-manager: aaroncz
+ms.topic: reference
 ---
 
+<!-- Auto-Generated CSP Document -->
+
+<!-- System-Begin -->
 # Policy CSP - System
 
-<hr/>
+> [!TIP]
+> This CSP contains ADMX-backed policies which require a special SyncML format to enable or disable. You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+>
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
 
-<!--Policies-->
-## System policies
+<!-- System-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- System-Editable-End -->
 
-<dl>
-  <dd>
-    <a href="#system-allowbuildpreview">System/AllowBuildPreview</a>
-  </dd>
-  <dd>
-    <a href="#system-allowcommercialdatapipeline">System/AllowCommercialDataPipeline</a>
-  </dd>
-  <dd>
-    <a href="#system-allowdesktopanalyticsprocessing">System/AllowDesktopAnalyticsProcessing </a>
-  </dd>
-  <dd>
-    <a href="#system-allowdevicenameindiagnosticdata">System/AllowDeviceNameInDiagnosticData</a>
-  </dd>
-  <dd>
-    <a href="#system-allowembeddedmode">System/AllowEmbeddedMode</a>
-  </dd>
-  <dd>
-    <a href="#system-allowexperimentation">System/AllowExperimentation</a>
-  </dd>
-  <dd>
-    <a href="#system-allowfontproviders">System/AllowFontProviders</a>
-  </dd>
-  <dd>
-    <a href="#system-allowlocation">System/AllowLocation</a>
-  </dd>
-  <dd>
-    <a href="#system-allowmicrosoftmanageddesktopprocessing">System/AllowMicrosoftManagedDesktopProcessing</a>
-  </dd>
-  <dd>
-    <a href="#system-allowstoragecard">System/AllowStorageCard</a>
-  </dd>
-  <dd>
-    <a href="#system-allowtelemetry">System/AllowTelemetry</a>
-  </dd>
-  <dd>
-    <a href="#system-allowupdatecomplianceprocessing">System/AllowUpdateComplianceProcessing</a>
-  </dd>
-  <dd>
-    <a href="#system-allowusertoresetphone">System/AllowUserToResetPhone</a>
-  </dd>
- <dd>
-    <a href="#system-allowwufbcloudprocessing">System/AllowWUfBCloudProcessing</a>
-  </dd>
-  <dd>
-    <a href="#system-bootstartdriverinitialization">System/BootStartDriverInitialization</a>
-  </dd>
-  <dd>
-    <a href="#system-configuremicrosoft365uploadendpoint">System/ConfigureMicrosoft365UploadEndpoint</a>
-  </dd>
-  <dd>
-    <a href="#system-configuretelemetryoptinchangenotification">System/ConfigureTelemetryOptInChangeNotification</a>
-  </dd>
-  <dd>
-    <a href="#system-configuretelemetryoptinsettingsux">System/ConfigureTelemetryOptInSettingsUx</a>
-  </dd>
-  <dd>
-    <a href="#system-disabledevicedelete">System/DisableDeviceDelete</a>
-  </dd>
-  <dd>
-    <a href="#system-disablediagnosticdataviewer">System/DisableDiagnosticDataViewer</a>
-  </dd>
-  <dd>
-    <a href="#system-disableenterpriseauthproxy">System/DisableEnterpriseAuthProxy</a>
-  </dd>
-  <dd>
-    <a href="#system-disableonedrivefilesync">System/DisableOneDriveFileSync</a>
-  </dd>
-  <dd>
-    <a href="#system-disablesystemrestore">System/DisableSystemRestore</a>
-  </dd>
-  <dd>
-    <a href="#system-feedbackhubalwayssavediagnosticslocally">System/FeedbackHubAlwaysSaveDiagnosticsLocally</a>
-  </dd>
-  <dd>
-    <a href="#system-limitdiagnosticlogcollection">System/LimitDiagnosticLogCollection</a>
-  </dd>
-  <dd>
-    <a href="#system-limitdumpcollection">System/LimitDumpCollection</a>
-  </dd>
-  <dd>
-    <a href="#system-limitenhanceddiagnosticdatawindowsanalytics">System/LimitEnhancedDiagnosticDataWindowsAnalytics</a>
-  </dd>
-  <dd>
-    <a href="#system-telemetryproxy">System/TelemetryProxy</a>
-  </dd>
-  <dd>
-    <a href="#system-turnofffilehistory">System/TurnOffFileHistory</a>
-  </dd>
-</dl>
+<!-- AllowBuildPreview-Begin -->
+## AllowBuildPreview
 
+<!-- AllowBuildPreview-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+<!-- AllowBuildPreview-Applicability-End -->
 
-<hr/>
+<!-- AllowBuildPreview-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowBuildPreview
+```
+<!-- AllowBuildPreview-OmaUri-End -->
 
-<!--Policy-->
-<a href="" id="system-allowbuildpreview"></a>**System/AllowBuildPreview**
+<!-- AllowBuildPreview-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting determines whether users can get preview builds of Windows, by configuring controls in Settings > Update and security > Windows Insider Program.
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+- If you enable or do not configure this policy setting, users can download and install preview builds of Windows by configuring Windows Insider Program settings.
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+- If you disable this policy setting, Windows Insider Program settings will be unavailable to users through the Settings app.
 
-<!--/SupportedSKUs-->
-<hr/>
+This policy is only supported up to Windows 10, Version 1703. Please use 'Manage preview builds' under 'Windows Update for Business' for newer Windows 10 versions.
+<!-- AllowBuildPreview-Description-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- AllowBuildPreview-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- AllowBuildPreview-Editable-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- AllowBuildPreview-DFProperties-Begin -->
+**Description framework properties**:
 
-<hr/>
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 2 |
+<!-- AllowBuildPreview-DFProperties-End -->
 
-<!--/Scope-->
-<!--Description-->
+<!-- AllowBuildPreview-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. The item "Get Insider builds" is unavailable, users are unable to make their devices available for preview software. |
+| 1 | Allowed. Users can make their devices available for downloading and installing preview software. |
+| 2 (Default) | Not configured. Users can make their devices available for downloading and installing preview software. |
+<!-- AllowBuildPreview-AllowedValues-End -->
+
+<!-- AllowBuildPreview-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | AllowBuildPreview |
+| Friendly Name | Toggle user control over Insider builds |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\PreviewBuilds |
+| Registry Value Name | AllowBuildPreview |
+| ADMX File Name | AllowBuildPreview.admx |
+<!-- AllowBuildPreview-GpMapping-End -->
+
+<!-- AllowBuildPreview-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowBuildPreview-Examples-End -->
+
+<!-- AllowBuildPreview-End -->
+
+<!-- AllowCommercialDataPipeline-Begin -->
+## AllowCommercialDataPipeline
+
+<!-- AllowCommercialDataPipeline-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+<!-- AllowCommercialDataPipeline-Applicability-End -->
+
+<!-- AllowCommercialDataPipeline-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowCommercialDataPipeline
+```
+<!-- AllowCommercialDataPipeline-OmaUri-End -->
+
+<!-- AllowCommercialDataPipeline-Description-Begin -->
+<!-- Description-Source-ADMX -->
+AllowCommercialDataPipeline configures an Azure Active Directory joined device so that Microsoft is the processor of the Windows diagnostic data collected from the device, subject to the Product Terms at <https://go.microsoft.com/fwlink/?linkid=2185086>.
+To enable this behavior:
+
+1. Enable this policy setting
+2. Join an Azure Active Directory account to the device
+
+Windows diagnostic data is collected when the Allow Telemetry policy setting is set to value 1 - Required or above. Configuring this setting does not change the Windows diagnostic data collection level set for the device
+- If you disable or do not configure this setting, Microsoft will be the controller of the Windows diagnostic data collected from the device and processed in accordance with Microsoft's privacy statement at <https://go.microsoft.com/fwlink/?LinkId=521839> unless you have enabled policies like 'Allow Update Compliance Processing' or 'Allow Desktop Analytics Processing".
+See the documentation at <https://go.microsoft.com/fwlink/?linkid=2011107> for information on this and other policies that will result in Microsoft being the processor of Windows diagnostic data.
+<!-- AllowCommercialDataPipeline-Description-End -->
+
+<!-- AllowCommercialDataPipeline-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
 > [!NOTE]
-> This policy setting applies only to devices running Windows 10 Pro, Windows 10 Enterprise, and Windows 10 Education.
+> Configuring this setting doesn't affect the operation of optional analytics processor services like Desktop Analytics and Windows Update for Business reports.
 
-This policy setting determines whether users can access the Insider build controls in the Advanced Options for Windows Update. These controls are located under "Get Insider builds," and enable users to make their devices available for downloading and installing Windows preview software.
+> [!IMPORTANT]
+> Starting with the January 2023 preview cumulative update, this policy is no longer supported to configure the processor option. For more information, see [Changes to Windows diagnostic data collection](/windows/privacy/changes-to-windows-diagnostic-data-collection#significant-changes-coming-to-the-windows-diagnostic-data-processor-configuration).
+<!-- AllowCommercialDataPipeline-Editable-End -->
 
-If you enable or don't configure this policy setting, users can download and install Windows preview software on their devices. If you disable this policy setting, the item "Get Insider builds" will be unavailable.
+<!-- AllowCommercialDataPipeline-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Toggle user control over Insider builds*
--   GP name: *AllowBuildPreview*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *AllowBuildPreview.admx*
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- AllowCommercialDataPipeline-DFProperties-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
+<!-- AllowCommercialDataPipeline-AllowedValues-Begin -->
+**Allowed values**:
 
--   0 – Not allowed. The item "Get Insider builds" is unavailable, users are unable to make their devices available for preview software.
--   1 – Allowed. Users can make their devices available for downloading and installing preview software.
--   2 (default) – Not configured. Users can make their devices available for downloading and installing preview software.
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 1 | Enabled. |
+<!-- AllowCommercialDataPipeline-AllowedValues-End -->
 
-<!--/SupportedValues-->
-<!--/Policy-->
+<!-- AllowCommercialDataPipeline-GpMapping-Begin -->
+**Group policy mapping**:
 
-<hr/>
+| Name | Value |
+|:--|:--|
+| Name | AllowCommercialDataPipeline |
+| Friendly Name | Allow commercial data pipeline |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- AllowCommercialDataPipeline-GpMapping-End -->
 
-<!--Policy-->
-<a href="" id="system-allowcommercialdatapipeline"></a>**System/AllowCommercialDataPipeline**
+<!-- AllowCommercialDataPipeline-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowCommercialDataPipeline-Examples-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- AllowCommercialDataPipeline-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- AllowDesktopAnalyticsProcessing-Begin -->
+## AllowDesktopAnalyticsProcessing
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- AllowDesktopAnalyticsProcessing-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763.1217] and later <br> :heavy_check_mark: Windows 10, version 1903 [10.0.18362.836] and later <br> :heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+<!-- AllowDesktopAnalyticsProcessing-Applicability-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- AllowDesktopAnalyticsProcessing-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowDesktopAnalyticsProcessing
+```
+<!-- AllowDesktopAnalyticsProcessing-OmaUri-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- AllowDesktopAnalyticsProcessing-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting, in combination with the Allow Telemetry and Configure the Commercial ID, enables organizations to configure the device so that Microsoft is the processor for Windows diagnostic data collected from the device, subject to the Product Terms at <https://go.microsoft.com/fwlink/?linkid=2185086>.
+To enable this behavior:
 
-<hr/>
+1. Enable this policy setting
+2. Join an Azure Active Directory account to the device
 
-<!--/Scope-->
-<!--Description-->
-This policy setting configures an Azure Active Directory-joined device, so that Microsoft is the processor of the Windows diagnostic data collected from the device, subject to the [Product Terms](https://www.microsoft.com/licensing/terms/productoffering).
-
-To enable this behavior, you must complete two steps:
-
- 1. Enable this policy setting.
- 2. Join an Azure Active Directory account to the device.
-
-Windows diagnostic data is collected when the Allow Telemetry policy setting is set to 1 – **Required (Basic)** or above.
-
-If you disable or don't configure this setting, Microsoft will be the controller of the Windows diagnostic data collected from the device and processed in accordance with Microsoft’s [privacy statement](https://go.microsoft.com/fwlink/?LinkId=521839) unless you have enabled policies like Allow Update Compliance Processing or Allow Desktop Analytics Processing.
-
-Configuring this setting doesn't change the Windows diagnostic data collection level set for the device or the operation of optional analytics processor services like Desktop Analytics and Windows Update for Business reports.
-
-See the documentation at [ConfigureWDD](https://aka.ms/ConfigureWDD) for information on this and other policies that will result in Microsoft being the processor of Windows diagnostic data.
-
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Allow commercial data pipeline*
--   GP name: *AllowCommercialDataPipeline*
--   GP element: *AllowCommercialDataPipeline*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
-
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
-
--   0 (default) - Disabled.
--   1 - Enabled.
-
-<!--/SupportedValues-->
-<!--Example-->
-
-<!--/Example-->
-<!--Validation-->
-
-<!--/Validation-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="system-allowdesktopanalyticsprocessing"></a>**System/AllowDesktopAnalyticsProcessing**
-
-<!--/Scope-->
-<!--Description-->
-
-This policy setting, in combination with the Allow Telemetry and Configure the Commercial ID policy settings, enables organizations to configure the device so that Microsoft is the processor for Windows diagnostic data collected from the device, subject to the [Product Terms](https://www.microsoft.com/licensing/terms/productoffering).
-
-To enable this behavior, you must complete three steps:
-
- 1. Enable this policy setting.
- 2. Set **AllowTelemetry** to 1 – **Required (Basic)** or above.
- 3. Set the Configure the Commercial ID setting for your Desktop Analytics workspace.
-
-This setting has no effect on devices, unless they're properly enrolled in Desktop Analytics.
+3. Set Allow Telemetry to value 1 - Required, or higher
+4. Set the Configure the Commercial ID setting for your Desktop Analytics workspace
 
 When these policies are configured, Windows diagnostic data collected from the device will be subject to Microsoft processor commitments.
+This setting has no effect on devices unless they are properly enrolled in Desktop Analytics.
+- If you disable this policy setting, devices will not appear in Desktop Analytics.
+<!-- AllowDesktopAnalyticsProcessing-Description-End -->
 
-If you disable or don't configure this policy setting, devices won't appear in Desktop Analytics.
+<!-- AllowDesktopAnalyticsProcessing-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+> [!IMPORTANT]
+> Starting with the January 2023 preview cumulative update, this policy is no longer supported to configure the processor option. For more information, see [Changes to Windows diagnostic data collection](/windows/privacy/changes-to-windows-diagnostic-data-collection#significant-changes-coming-to-the-windows-diagnostic-data-processor-configuration).
+<!-- AllowDesktopAnalyticsProcessing-Editable-End -->
 
-The following list shows the supported values:
+<!-- AllowDesktopAnalyticsProcessing-DFProperties-Begin -->
+**Description framework properties**:
 
--   0 (default) – Disabled.
--   2 – Allowed.
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- AllowDesktopAnalyticsProcessing-DFProperties-End -->
 
+<!-- AllowDesktopAnalyticsProcessing-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--/Policy-->
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 2 | Allowed. |
+<!-- AllowDesktopAnalyticsProcessing-AllowedValues-End -->
 
-<hr/>
+<!-- AllowDesktopAnalyticsProcessing-GpMapping-Begin -->
+**Group policy mapping**:
 
-<!--Policy-->
-<a href="" id="system-allowdevicenameindiagnosticdata"></a>**System/AllowDeviceNameInDiagnosticData**
+| Name | Value |
+|:--|:--|
+| Name | AllowDesktopAnalyticsProcessing |
+| Friendly Name | Allow Desktop Analytics Processing |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- AllowDesktopAnalyticsProcessing-GpMapping-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- AllowDesktopAnalyticsProcessing-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowDesktopAnalyticsProcessing-Examples-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- AllowDesktopAnalyticsProcessing-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- AllowDeviceNameInDiagnosticData-Begin -->
+## AllowDeviceNameInDiagnosticData
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- AllowDeviceNameInDiagnosticData-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+<!-- AllowDeviceNameInDiagnosticData-Applicability-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- AllowDeviceNameInDiagnosticData-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowDeviceNameInDiagnosticData
+```
+<!-- AllowDeviceNameInDiagnosticData-OmaUri-End -->
 
-<hr/>
+<!-- AllowDeviceNameInDiagnosticData-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy allows the device name to be sent to Microsoft as part of Windows diagnostic data.
 
-<!--/Scope-->
-<!--Description-->
-This policy allows the device name to be sent to Microsoft as part of Windows diagnostic data. If you disable or don't configure this policy setting, then device name won't be sent to Microsoft as part of Windows diagnostic data.
+- If you disable or do not configure this policy setting, then device name will not be sent to Microsoft as part of Windows diagnostic data.
+<!-- AllowDeviceNameInDiagnosticData-Description-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Allow device name to be sent in Windows diagnostic data*
--   GP name: *AllowDeviceNameInDiagnosticData*
--   GP element: *AllowDeviceNameInDiagnosticData*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
+<!-- AllowDeviceNameInDiagnosticData-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- AllowDeviceNameInDiagnosticData-Editable-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
+<!-- AllowDeviceNameInDiagnosticData-DFProperties-Begin -->
+**Description framework properties**:
 
--   0 (default) – Disabled.
--   1 – Allowed.
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- AllowDeviceNameInDiagnosticData-DFProperties-End -->
 
-<!--/SupportedValues-->
-<!--Example-->
+<!-- AllowDeviceNameInDiagnosticData-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--/Example-->
-<!--Validation-->
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 1 | Allowed. |
+<!-- AllowDeviceNameInDiagnosticData-AllowedValues-End -->
 
-<!--/Validation-->
-<!--/Policy-->
+<!-- AllowDeviceNameInDiagnosticData-GpMapping-Begin -->
+**Group policy mapping**:
 
-<hr/>
+| Name | Value |
+|:--|:--|
+| Name | AllowDeviceNameInDiagnosticData |
+| Friendly Name | Allow device name to be sent in Windows diagnostic data |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- AllowDeviceNameInDiagnosticData-GpMapping-End -->
 
-<!--Policy-->
-<a href="" id="system-allowembeddedmode"></a>**System/AllowEmbeddedMode**
+<!-- AllowDeviceNameInDiagnosticData-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowDeviceNameInDiagnosticData-Examples-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- AllowDeviceNameInDiagnosticData-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- AllowEmbeddedMode-Begin -->
+## AllowEmbeddedMode
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- AllowEmbeddedMode-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+<!-- AllowEmbeddedMode-Applicability-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- AllowEmbeddedMode-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowEmbeddedMode
+```
+<!-- AllowEmbeddedMode-OmaUri-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- AllowEmbeddedMode-Description-Begin -->
+<!-- Description-Source-DDF -->
+Specifies whether set general purpose device to be in embedded mode. Most restricted value is 0.
+<!-- AllowEmbeddedMode-Description-End -->
 
-<hr/>
+<!-- AllowEmbeddedMode-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- AllowEmbeddedMode-Editable-End -->
 
-<!--/Scope-->
-<!--Description-->
-Specifies whether set general purpose device to be in embedded mode.
+<!-- AllowEmbeddedMode-DFProperties-Begin -->
+**Description framework properties**:
 
-Most restricted value is 0.
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- AllowEmbeddedMode-DFProperties-End -->
 
-<!--/Description-->
-<!--SupportedValues-->
-The following list shows the supported values:
+<!-- AllowEmbeddedMode-AllowedValues-Begin -->
+**Allowed values**:
 
--   0 (default) – Not allowed.
--   1 – Allowed.
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not allowed. |
+| 1 | Allowed. |
+<!-- AllowEmbeddedMode-AllowedValues-End -->
 
-<!--/SupportedValues-->
-<!--/Policy-->
+<!-- AllowEmbeddedMode-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowEmbeddedMode-Examples-End -->
 
-<hr/>
+<!-- AllowEmbeddedMode-End -->
 
-<!--Policy-->
-<a href="" id="system-allowexperimentation"></a>**System/AllowExperimentation**
+<!-- AllowExperimentation-Begin -->
+## AllowExperimentation
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- AllowExperimentation-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+<!-- AllowExperimentation-Applicability-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- AllowExperimentation-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowExperimentation
+```
+<!-- AllowExperimentation-OmaUri-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
+<!-- AllowExperimentation-Description-Begin -->
+<!-- Description-Source-DDF -->
 > [!NOTE]
-> This policy isn't supported in Windows 10, version 1607.
+> This policy is not supported in Windows 10, version 1607. This policy setting determines the level that Microsoft can experiment with the product to study user preferences or device behavior. Most restricted value is 0.
+<!-- AllowExperimentation-Description-End -->
 
-This policy setting determines the level that Microsoft can experiment with the product to study user preferences or device behavior.
+<!-- AllowExperimentation-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- AllowExperimentation-Editable-End -->
 
-Most restricted value is 0.
+<!-- AllowExperimentation-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/Description-->
-<!--SupportedValues-->
-The following list shows the supported values:
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 1 |
+<!-- AllowExperimentation-DFProperties-End -->
 
--   0 – Disabled.
--   1 (default) – Permits Microsoft to configure device settings only.
--   2 – Allows Microsoft to conduct full experimentation.
+<!-- AllowExperimentation-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--/SupportedValues-->
-<!--/Policy-->
+| Value | Description |
+|:--|:--|
+| 0 | Disabled. |
+| 1 (Default) | Permits Microsoft to configure device settings only. |
+| 2 | Allows Microsoft to conduct full experimentation. |
+<!-- AllowExperimentation-AllowedValues-End -->
 
-<hr/>
+<!-- AllowExperimentation-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowExperimentation-Examples-End -->
 
-<!--Policy-->
-<a href="" id="system-allowfontproviders"></a>**System/AllowFontProviders**
+<!-- AllowExperimentation-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- AllowFontProviders-Begin -->
+## AllowFontProviders
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- AllowFontProviders-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1703 [10.0.15063] and later |
+<!-- AllowFontProviders-Applicability-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- AllowFontProviders-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowFontProviders
+```
+<!-- AllowFontProviders-OmaUri-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- AllowFontProviders-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting determines whether Windows is allowed to download fonts and font catalog data from an online font provider.
 
-> [!div class = "checklist"]
-> * Device
+- If you enable this policy setting, Windows periodically queries an online font provider to determine whether a new font catalog is available. Windows may also download font data if needed to format or render text.
 
-<hr/>
+- If you disable this policy setting, Windows does not connect to an online font provider and only enumerates locally-installed fonts.
 
-<!--/Scope-->
-<!--Description-->
-Boolean policy setting that determines whether Windows is allowed to download fonts and font catalog data from an online font provider. If you enable this setting, Windows periodically queries an online font provider to determine whether a new font catalog is available. Windows may also download font data if needed to format or render text. If you disable this policy setting, Windows doesn't connect to an online font provider and only enumerates locally installed fonts.
+- If you do not configure this policy setting, the default behavior depends on the Windows edition. Changes to this policy take effect on reboot.
+<!-- AllowFontProviders-Description-End -->
 
+<!-- AllowFontProviders-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
 This MDM setting corresponds to the EnableFontProviders Group Policy setting. If both the Group Policy and the MDM settings are configured, the group policy setting takes precedence. If neither is configured, the behavior depends on a DisableFontProviders registry value. In server editions, this registry value is set to 1 by default, so the default behavior is false (disabled). In all other editions, the registry value isn't set by default, so the default behavior is true (enabled).
 
 This setting is used by lower-level components for text display and fond handling and hasn't direct effect on web browsers, which may download web fonts used in web content.
 
 > [!NOTE]
 > Reboot is required after setting the policy; alternatively you can stop and restart the FontCache service.
+<!-- AllowFontProviders-Editable-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Enable Font Providers*
--   GP name: *EnableFontProviders*
--   GP path: *Network/Fonts*
--   GP ADMX file name: *GroupPolicy.admx*
+<!-- AllowFontProviders-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 1 |
+<!-- AllowFontProviders-DFProperties-End -->
 
--   0 - false - No traffic to fs.microsoft.com, and only locally installed fonts are available.
--   1 - true (default) - There may be network traffic to fs.microsoft.com, and downloadable fonts are available to apps that support them.
+<!-- AllowFontProviders-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--/SupportedValues-->
-<!--Validation-->
-To verify if System/AllowFontProviders is set to true:
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. No traffic to fs.microsoft.com and only locally installed fonts are available. |
+| 1 (Default) | Allowed. There may be network traffic to fs.microsoft.com and downloadable fonts are available to apps that support them. |
+<!-- AllowFontProviders-AllowedValues-End -->
 
--  After a client machine is rebooted, check whether there's any network traffic from client machine to fs.microsoft.com.
+<!-- AllowFontProviders-GpMapping-Begin -->
+**Group policy mapping**:
 
-<!--/Validation-->
-<!--/Policy-->
+| Name | Value |
+|:--|:--|
+| Name | EnableFontProviders |
+| Friendly Name | Enable Font Providers |
+| Location | Computer Configuration |
+| Path | Network > Fonts |
+| Registry Key Name | Software\Policies\Microsoft\Windows\System |
+| Registry Value Name | EnableFontProviders |
+| ADMX File Name | GroupPolicy.admx |
+<!-- AllowFontProviders-GpMapping-End -->
 
-<hr/>
+<!-- AllowFontProviders-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowFontProviders-Examples-End -->
 
-<!--Policy-->
-<a href="" id="system-allowlocation"></a>**System/AllowLocation**
+<!-- AllowFontProviders-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- AllowLocation-Begin -->
+## AllowLocation
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- AllowLocation-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+<!-- AllowLocation-Applicability-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- AllowLocation-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowLocation
+```
+<!-- AllowLocation-OmaUri-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- AllowLocation-Description-Begin -->
+<!-- Description-Source-DDF -->
+Specifies whether to allow app access to the Location service. Most restricted value is 0. While the policy is set to 0 (Force Location Off) or 2 (Force Location On), any Location service call from an app would trigger the value set by this policy. When switching the policy back from 0 (Force Location Off) or 2 (Force Location On) to 1 (User Control), the app reverts to its original Location service setting. For example, an app's original Location setting is Off. The administrator then sets the AllowLocation policy to 2 (Force Location On. ) The Location service starts working for that app, overriding the original setting. Later, if the administrator switches the AllowLocation policy back to 1 (User Control), the app will revert to using its original setting of Off.
+<!-- AllowLocation-Description-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- AllowLocation-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- AllowLocation-Editable-End -->
 
-<hr/>
+<!-- AllowLocation-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/Scope-->
-<!--Description-->
-Specifies whether to allow app access to the Location service.
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 1 |
+<!-- AllowLocation-DFProperties-End -->
 
-Most restricted value is 0.
+<!-- AllowLocation-AllowedValues-Begin -->
+**Allowed values**:
 
-While the policy is set to 0 (Force Location Off) or 2 (Force Location On), any Location service call from an app would trigger the value set by this policy.
+| Value | Description |
+|:--|:--|
+| 0 | Force Location Off. All Location Privacy settings are toggled off and grayed out. Users cannot change the settings, and no apps are allowed access to the Location service, including Cortana and Search. |
+| 1 (Default) | Location service is allowed. The user has control and can change Location Privacy settings on or off. |
+| 2 | Force Location On. All Location Privacy settings are toggled on and grayed out. Users cannot change the settings and all consent permissions will be automatically suppressed. |
+<!-- AllowLocation-AllowedValues-End -->
 
-When switching the policy back from 0 (Force Location Off) or 2 (Force Location On) to 1 (User Control), the app reverts to its original Location service setting.
+<!-- AllowLocation-GpMapping-Begin -->
+**Group policy mapping**:
 
-For example, an app's original Location setting is Off. The administrator then sets the **AllowLocation** policy to 2 (Force Location On.) The Location service starts working for that app, overriding the original setting. Later, if the administrator switches the **AllowLocation** policy back to 1 (User Control), the app will revert to using its original setting of Off.
+| Name | Value |
+|:--|:--|
+| Name | DisableLocation_2 |
+| Friendly Name | Turn off location |
+| Location | Computer Configuration |
+| Path | Windows Components > Location and Sensors |
+| Registry Key Name | Software\Policies\Microsoft\Windows\LocationAndSensors |
+| Registry Value Name | DisableLocation |
+| ADMX File Name | Sensors.admx |
+<!-- AllowLocation-GpMapping-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Turn off location*
--   GP name: *DisableLocation_2*
--   GP path: *Windows Components/Location and Sensors*
--   GP ADMX file name: *Sensors.admx*
+<!-- AllowLocation-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowLocation-Examples-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
+<!-- AllowLocation-End -->
 
--   0 – Force Location Off. All Location Privacy settings are toggled off and grayed out. Users can't change the settings, and no apps are allowed access to the Location service, including Cortana and Search.
--   1 (default) – Location service is allowed. The user has control and can change Location Privacy settings on or off.
--   2 – Force Location On. All Location Privacy settings are toggled on and grayed out. Users can't change the settings and all consent permissions will be automatically suppressed.
+<!-- AllowMicrosoftManagedDesktopProcessing-Begin -->
+## AllowMicrosoftManagedDesktopProcessing
 
-<!--/SupportedValues-->
-<!--/Policy-->
-<hr/>
+<!-- AllowMicrosoftManagedDesktopProcessing-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763.1217] and later <br> :heavy_check_mark: Windows 10, version 1903 [10.0.18362.836] and later <br> :heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+<!-- AllowMicrosoftManagedDesktopProcessing-Applicability-End -->
 
-<!--Policy-->
-<a href="" id="system-allowmicrosoftmanageddesktopprocessing"></a>**System/AllowMicrosoftManagedDesktopProcessing**
+<!-- AllowMicrosoftManagedDesktopProcessing-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowMicrosoftManagedDesktopProcessing
+```
+<!-- AllowMicrosoftManagedDesktopProcessing-OmaUri-End -->
 
-<!--/Scope-->
-<!--Description-->
+<!-- AllowMicrosoftManagedDesktopProcessing-Description-Begin -->
+<!-- Description-Source-DDF -->
+This policy is deprecated and will only work on Windows 10 version 1809. Setting this policy will have no effect for other supported versions of Windows.
+This policy setting configures an Azure Active Directory joined device so that Microsoft is the processor of the Windows diagnostic data collected from the device, subject to the Product Terms at <https://go.microsoft.com/fwlink/?linkid=2185086>.
+For customers who enroll into the Microsoft Managed Desktop service, enabling this policy is required to allow Microsoft to process data for operational and analytic needs. See <https://go.microsoft.com/fwlink/?linkid=2184944> for more information.
+hen these policies are configured, Windows diagnostic data collected from the device will be subject to Microsoft processor commitments.
+This setting has no effect on devices unless they are properly enrolled in Microsoft Managed Desktop.
+- If you disable this policy setting, devices may not appear in Microsoft Managed Desktop.
+<!-- AllowMicrosoftManagedDesktopProcessing-Description-End -->
 
-This policy setting configures an Azure Active Directory-joined device so that Microsoft is the processor of the Windows diagnostic data.
+<!-- AllowMicrosoftManagedDesktopProcessing-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+> [!IMPORTANT]
+> Starting with the January 2023 preview cumulative update, this policy is no longer supported to configure the processor option. For more information, see [Changes to Windows diagnostic data collection](/windows/privacy/changes-to-windows-diagnostic-data-collection#significant-changes-coming-to-the-windows-diagnostic-data-processor-configuration).
+<!-- AllowMicrosoftManagedDesktopProcessing-Editable-End -->
 
-For customers who enroll into the Microsoft Managed Desktop service, this policy will be enabled by default to allow Microsoft to process data for operational and analytic needs. For more information, see [Privacy and personal data](/microsoft-365/managed-desktop/service-description/privacy-personal-data).
+<!-- AllowMicrosoftManagedDesktopProcessing-DFProperties-Begin -->
+**Description framework properties**:
 
-This setting has no effect on devices, unless they're properly enrolled in Microsoft Managed Desktop.
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- AllowMicrosoftManagedDesktopProcessing-DFProperties-End -->
+
+<!-- AllowMicrosoftManagedDesktopProcessing-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 32 | Allowed. |
+<!-- AllowMicrosoftManagedDesktopProcessing-AllowedValues-End -->
+
+<!-- AllowMicrosoftManagedDesktopProcessing-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowMicrosoftManagedDesktopProcessing-Examples-End -->
+
+<!-- AllowMicrosoftManagedDesktopProcessing-End -->
+
+<!-- AllowStorageCard-Begin -->
+## AllowStorageCard
+
+<!-- AllowStorageCard-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+<!-- AllowStorageCard-Applicability-End -->
+
+<!-- AllowStorageCard-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowStorageCard
+```
+<!-- AllowStorageCard-OmaUri-End -->
+
+<!-- AllowStorageCard-Description-Begin -->
+<!-- Description-Source-DDF -->
+Controls whether the user is allowed to use the storage card for device storage. This setting prevents programmatic access to the storage card. Most restricted value is 0.
+<!-- AllowStorageCard-Description-End -->
+
+<!-- AllowStorageCard-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- AllowStorageCard-Editable-End -->
+
+<!-- AllowStorageCard-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 1 |
+<!-- AllowStorageCard-DFProperties-End -->
+
+<!-- AllowStorageCard-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | SD card use is not allowed and USB drives are disabled. This setting does not prevent programmatic access to the storage card. |
+| 1 (Default) | Allow a storage card. |
+<!-- AllowStorageCard-AllowedValues-End -->
+
+<!-- AllowStorageCard-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowStorageCard-Examples-End -->
+
+<!-- AllowStorageCard-End -->
+
+<!-- AllowTelemetry-Begin -->
+## AllowTelemetry
+
+<!-- AllowTelemetry-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :heavy_check_mark: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+<!-- AllowTelemetry-Applicability-End -->
+
+<!-- AllowTelemetry-OmaUri-Begin -->
+```User
+./User/Vendor/MSFT/Policy/Config/System/AllowTelemetry
+```
+
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowTelemetry
+```
+<!-- AllowTelemetry-OmaUri-End -->
+
+<!-- AllowTelemetry-Description-Begin -->
+<!-- Description-Source-ADMX -->
+By configuring this policy setting you can adjust what diagnostic data is collected from Windows. This policy setting also restricts the user from increasing the amount of diagnostic data collection via the Settings app. The diagnostic data collected under this policy impacts the operating system and apps that are considered part of Windows and does not apply to any additional apps installed by your organization.
+
+- Diagnostic data off (not recommended). Using this value, no diagnostic data is sent from the device. This value is only supported on Enterprise, Education, and Server editions.
+- Send required diagnostic data. This is the minimum diagnostic data necessary to keep Windows secure, up to date, and performing as expected. Using this value disables the "Optional diagnostic data" control in the Settings app.
+- Send optional diagnostic data. Additional diagnostic data is collected that helps us to detect, diagnose and fix issues, as well as make product improvements. Required diagnostic data will always be included when you choose to send optional diagnostic data. Optional diagnostic data can also include diagnostic log files and crash dumps. Use the "Limit Dump Collection" and the "Limit Diagnostic Log Collection" policies for more granular control of what optional diagnostic data is sent.
+
+- If you disable or do not configure this policy setting, the device will send required diagnostic data and the end user can choose whether to send optional diagnostic data from the Settings app.
+
+**Note**:
+The "Configure diagnostic data opt-in settings user interface" group policy can be used to prevent end users from changing their data collection settings.
+<!-- AllowTelemetry-Description-End -->
+
+<!-- AllowTelemetry-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- AllowTelemetry-Editable-End -->
+
+<!-- AllowTelemetry-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 1 |
+<!-- AllowTelemetry-DFProperties-End -->
+
+<!-- AllowTelemetry-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 | Security. Information that is required to help keep Windows more secure, including data about the Connected User Experience and Telemetry component settings, the Malicious Software Removal Tool, and Windows Defender. <br>Note: This value is only applicable to Windows 10 Enterprise, Windows 10 Education, Windows 10 Mobile Enterprise, Windows 10 IoT Core (IoT Core), and Windows Server 2016. Using this setting on other devices is equivalent to setting the value of 1. |
+| 1 (Default) | Basic. Basic device info, including: quality-related data, app compatibility, app usage data, and data from the Security level. |
+| 3 | Full. All data necessary to identify and help to fix problems, plus data from the Security, Basic, and Enhanced levels. |
+<!-- AllowTelemetry-AllowedValues-End -->
+
+<!-- AllowTelemetry-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | AllowTelemetry |
+| Friendly Name | Allow Diagnostic Data |
+| Location | Computer and User Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- AllowTelemetry-GpMapping-End -->
+
+<!-- AllowTelemetry-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowTelemetry-Examples-End -->
+
+<!-- AllowTelemetry-End -->
+
+<!-- AllowUpdateComplianceProcessing-Begin -->
+## AllowUpdateComplianceProcessing
+
+<!-- AllowUpdateComplianceProcessing-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763.1217] and later <br> :heavy_check_mark: Windows 10, version 1903 [10.0.18362.836] and later <br> :heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+<!-- AllowUpdateComplianceProcessing-Applicability-End -->
+
+<!-- AllowUpdateComplianceProcessing-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowUpdateComplianceProcessing
+```
+<!-- AllowUpdateComplianceProcessing-OmaUri-End -->
+
+<!-- AllowUpdateComplianceProcessing-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting, in combination with the Allow Telemetry and Configure the Commercial ID, enables organizations to configure the device so that Microsoft is the processor of the Windows diagnostic data collected from the device, subject to the Product Terms at <https://go.microsoft.com/fwlink/?linkid=2185086>.
+To enable this behavior:
+
+1. Enable this policy setting
+2. Join an Azure Active Directory account to the device
+
+3. Set Allow Telemetry to value 1 - Required, or higher
+4. Set the Configure the Commercial ID setting for your Update Compliance workspace
 
 When these policies are configured, Windows diagnostic data collected from the device will be subject to Microsoft processor commitments.
+- If you disable or do not configure this policy setting, devices will not appear in Update Compliance.
+<!-- AllowUpdateComplianceProcessing-Description-End -->
 
-If you disable this policy setting, devices may not appear in Microsoft Managed Desktop.
+<!-- AllowUpdateComplianceProcessing-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+> [!IMPORTANT]
+> Starting with the January 2023 preview cumulative update, this policy is no longer supported to configure the processor option. For more information, see [Changes to Windows diagnostic data collection](/windows/privacy/changes-to-windows-diagnostic-data-collection#significant-changes-coming-to-the-windows-diagnostic-data-processor-configuration).
+<!-- AllowUpdateComplianceProcessing-Editable-End -->
 
->[!IMPORTANT]
-> You should not disable or make changes to this policy as that will severely impact the ability of Microsoft Managed Desktop to manage the devices.
+<!-- AllowUpdateComplianceProcessing-DFProperties-Begin -->
+**Description framework properties**:
 
-<hr/>
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- AllowUpdateComplianceProcessing-DFProperties-End -->
 
-<!--Policy-->
-<a href="" id="system-allowstoragecard"></a>**System/AllowStorageCard**
+<!-- AllowUpdateComplianceProcessing-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 16 | Enabled. |
+<!-- AllowUpdateComplianceProcessing-AllowedValues-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- AllowUpdateComplianceProcessing-GpMapping-Begin -->
+**Group policy mapping**:
 
-<!--/SupportedSKUs-->
-<hr/>
+| Name | Value |
+|:--|:--|
+| Name | AllowUpdateComplianceProcessing |
+| Friendly Name | Allow Update Compliance Processing |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- AllowUpdateComplianceProcessing-GpMapping-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- AllowUpdateComplianceProcessing-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowUpdateComplianceProcessing-Examples-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- AllowUpdateComplianceProcessing-End -->
 
-<hr/>
+<!-- AllowUserToResetPhone-Begin -->
+## AllowUserToResetPhone
 
-<!--/Scope-->
-<!--Description-->
-Controls whether the user is allowed to use the storage card for device storage. This setting prevents programmatic access to the storage card.
+<!-- AllowUserToResetPhone-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1507 [10.0.10240] and later |
+<!-- AllowUserToResetPhone-Applicability-End -->
 
-Most restricted value is 0.
+<!-- AllowUserToResetPhone-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowUserToResetPhone
+```
+<!-- AllowUserToResetPhone-OmaUri-End -->
 
-<!--/Description-->
-<!--SupportedValues-->
-The following list shows the supported values:
+<!-- AllowUserToResetPhone-Description-Begin -->
+<!-- Description-Source-DDF -->
+Specifies whether to allow the user to factory reset the device by using control panel and hardware key combination. Most restricted value is 0. Tip, This policy is also applicable to Windows 10 and not exclusive to phone.
+<!-- AllowUserToResetPhone-Description-End -->
 
--   0 – SD card use isn't allowed, and USB drives are disabled. This setting doesn't prevent programmatic access to the storage card.
--   1 (default) – Allow a storage card.
+<!-- AllowUserToResetPhone-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- AllowUserToResetPhone-Editable-End -->
 
-<!--/SupportedValues-->
-<!--/Policy-->
+<!-- AllowUserToResetPhone-DFProperties-Begin -->
+**Description framework properties**:
 
-<hr/>
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 1 |
+<!-- AllowUserToResetPhone-DFProperties-End -->
 
-<!--Policy-->
-<a href="" id="system-allowtelemetry"></a>**System/AllowTelemetry**
+<!-- AllowUserToResetPhone-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+| Value | Description |
+|:--|:--|
+| 0 | Not allowed. |
+| 1 (Default) | Allowed to reset to factory default settings. |
+<!-- AllowUserToResetPhone-AllowedValues-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- AllowUserToResetPhone-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowUserToResetPhone-Examples-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- AllowUserToResetPhone-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- AllowWUfBCloudProcessing-Begin -->
+## AllowWUfBCloudProcessing
 
-> [!div class = "checklist"]
-> * User
-> * Device
+<!-- AllowWUfBCloudProcessing-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763.1217] and later <br> :heavy_check_mark: Windows 10, version 1903 [10.0.18362.836] and later <br> :heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+<!-- AllowWUfBCloudProcessing-Applicability-End -->
 
-<hr/>
+<!-- AllowWUfBCloudProcessing-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/AllowWUfBCloudProcessing
+```
+<!-- AllowWUfBCloudProcessing-OmaUri-End -->
 
-<!--/Scope-->
-<!--Description-->
-Allows the device to send diagnostic and usage telemetry data, such as Watson.
+<!-- AllowWUfBCloudProcessing-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting configures an Azure Active Directory joined device so that Microsoft is the processor of the Windows diagnostic data collected from the device, subject to the Product Terms at <https://go.microsoft.com/fwlink/?linkid=2185086>.
+To enable this behavior:
 
-For more information about diagnostic data, including what is and what isn't collected by Windows, see [Configure Windows diagnostic data in your organization](/windows/privacy/configure-windows-diagnostic-data-in-your-organization).
+1. Enable this policy setting
+2. Join an Azure Active Directory account to the device
 
-The following list shows the supported values for Windows 8.1:
--   0 - Not allowed.
--   1 – Allowed, except for Secondary Data Requests.
--   2 (default) – Allowed.
-
-In Windows 10, you can configure this policy setting to decide what level of diagnostic data to send to Microsoft.
-
-The following list shows the supported values for Windows 10 version 1809 and older, choose the value that is applicable to your OS version (older OS values are displayed in the brackets):
-
-- 0 – **Off (Security)** This value turns Windows diagnostic data off.
-
-    > [!NOTE]
-    > This value is only applicable to Windows 10 Enterprise, Windows 10 Education, Windows 10 IoT Core (IoT Core), HoloLens 2, and Windows Server 2016 (and later versions). Using this setting on other devices editions of Windows is equivalent to setting the value of 1.
-
-- 1 – **Required (Basic)** Sends basic device info, including quality-related data, app compatibility, and other similar data to keep the device secure and up-to-date.
-
-- 2 – (**Enhanced**) Sends the same data as a value of 1, plus extra insights, including how Windows apps are used, how they perform, and advanced reliability data, such as limited crash dumps.
-
-    > [!NOTE]
-    > **Enhanced** is no longer an option for Windows Holographic, version 21H1.
-
-- 3 – **Optional (Full)** Sends the same data as a value of 2, plus extra data necessary to identify and fix problems with devices such as enhanced error logs.
-
-Most restrictive value is 0.
-
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Allow Telemetry*
--   GP name: *AllowTelemetry*
--   GP element: *AllowTelemetry*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
-
-<!--/ADMXMapped-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="system-allowupdatecomplianceprocessing"></a>**System/AllowUpdateComplianceProcessing**
-
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-
-This policy setting, in combination with the Allow Telemetry and Configure the Commercial ID policy settings, enables organizations to configure the device so that Microsoft is the processor of the Windows diagnostic data collected from the device, subject to the [Product Terms](https://www.microsoft.com/licensing/terms/productoffering).
-
-To enable this behavior, you must complete three steps:
-
- 1. Enable this policy setting.
- 2. Set **AllowTelemetry** to 1 – **Required (Basic)** or above.
- 3. If you're using Update Compliance rather than Windows Update for Business reports, set the Configure the Commercial ID setting for your Update Compliance workspace.
+3. Set Allow Telemetry to value 1 - Required, or higher
 
 When these policies are configured, Windows diagnostic data collected from the device will be subject to Microsoft processor commitments.
+- If you disable or do not configure this policy setting, devices enrolled to the Windows Update for Business deployment service will not be able to take advantage of some deployment service features.
+<!-- AllowWUfBCloudProcessing-Description-End -->
 
-If you disable or don't configure this policy setting, devices won't appear in Windows Update for Business reports or Update Compliance.
+<!-- AllowWUfBCloudProcessing-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+> [!IMPORTANT]
+> Starting with the January 2023 preview cumulative update, this policy is no longer supported to configure the processor option. For more information, see [Changes to Windows diagnostic data collection](/windows/privacy/changes-to-windows-diagnostic-data-collection#significant-changes-coming-to-the-windows-diagnostic-data-processor-configuration).
+<!-- AllowWUfBCloudProcessing-Editable-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Allow Update Compliance Processing*
--   GP name: *AllowUpdateComplianceProcessing*
--   GP element: *AllowUpdateComplianceProcessing*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
+<!-- AllowWUfBCloudProcessing-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- AllowWUfBCloudProcessing-DFProperties-End -->
 
--   0 - Disabled.
--   16 - Enabled.
-<!--/SupportedValues-->
-<!--/Policy-->
+<!-- AllowWUfBCloudProcessing-AllowedValues-Begin -->
+**Allowed values**:
 
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 8 | Enabled. |
+<!-- AllowWUfBCloudProcessing-AllowedValues-End -->
 
-<hr/>
+<!-- AllowWUfBCloudProcessing-GpMapping-Begin -->
+**Group policy mapping**:
 
-<!--Policy-->
-<a href="" id="system-allowusertoresetphone"></a>**System/AllowUserToResetPhone**
+| Name | Value |
+|:--|:--|
+| Name | AllowWUfBCloudProcessing |
+| Friendly Name | Allow WUfB Cloud Processing |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- AllowWUfBCloudProcessing-GpMapping-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- AllowWUfBCloudProcessing-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- AllowWUfBCloudProcessing-Examples-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- AllowWUfBCloudProcessing-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- BootStartDriverInitialization-Begin -->
+## BootStartDriverInitialization
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- BootStartDriverInitialization-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1703 [10.0.15063] and later |
+<!-- BootStartDriverInitialization-Applicability-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- BootStartDriverInitialization-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/BootStartDriverInitialization
+```
+<!-- BootStartDriverInitialization-OmaUri-End -->
 
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Specifies whether to allow the user to factory reset the device by using control panel and hardware key combination.
-
-Most restricted value is 0.
-
-> [!TIP]
-> This policy is also applicable to Windows 10 and not exclusive to phone.
-<!--/Description-->
-<!--SupportedValues-->
-The following list shows the supported values:
--   0 – Not allowed.
--   1 (default) – Allowed to reset to factory default settings.
-<!--/SupportedValues-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="system-allowwufbcloudprocessing"></a>**System/AllowWUfBCloudProcessing**
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-
-This policy setting configures an Azure Active Directory-joined device so that Microsoft is the processor of the Windows diagnostic data collected from the device, subject to the [Product Terms](https://www.microsoft.com/licensing/terms/productoffering).
-
-To enable this behavior, you must complete three steps:
-
- 1. Enable this policy setting.
- 2. Set **AllowTelemetry** to 1 – **Required (Basic)** or above.
- 3. Join an Azure Active Directory account to the device.
-
-When these policies are configured, Windows diagnostic data collected from the device will be subject to Microsoft processor commitments.
-
-If you disable or don't configure this policy setting, devices enrolled to the Windows Update for Business deployment service won't be able to take advantage of some deployment service features.
-
-<hr/>
-
-<!--/Description-->
-<!--SupportedValues-->
-The following list shows the supported values:
-
--   0 - Disabled.
--   8 - Enabled.
-<!--/SupportedValues-->
-
-
-<!--Policy-->
-<a href="" id="system-bootstartdriverinitialization"></a>**System/BootStartDriverInitialization**
-
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
+<!-- BootStartDriverInitialization-Description-Begin -->
+<!-- Description-Source-ADMX -->
 This policy setting allows you to specify which boot-start drivers are initialized based on a classification determined by an Early Launch Antimalware boot-start driver. The Early Launch Antimalware boot-start driver can return the following classifications for each boot-start driver:
--  Good: The driver has been signed and hasn't been tampered with.
--  Bad: The driver has been identified as malware. It's recommended that you don't allow known bad drivers to be initialized.
--  Bad, but required for boot: The driver has been identified as malware, but the computer can't successfully boot without loading this driver.
--  Unknown: This driver hasn't been attested to by your malware detection application and hasn't been classified by the Early Launch Antimalware boot-start driver.
+- Good: The driver has been signed and has not been tampered with.
+- Bad: The driver has been identified as malware. It is recommended that you do not allow known bad drivers to be initialized.
+- Bad, but required for boot: The driver has been identified as malware, but the computer cannot successfully boot without loading this driver.
+- Unknown: This driver has not been attested to by your malware detection application and has not been classified by the Early Launch Antimalware boot-start driver.
 
-If you enable this policy setting, you'll be able to choose which boot-start drivers to initialize next time the computer is started.
+- If you enable this policy setting you will be able to choose which boot-start drivers to initialize the next time the computer is started.
 
-If you disable or don't configure this policy setting, the boot start drivers determined to be Good, Unknown, or Bad, but Boot Critical are initialized and the initialization of drivers determined to be Bad is skipped.
+- If you disable or do not configure this policy setting, the boot start drivers determined to be Good, Unknown or Bad but Boot Critical are initialized and the initialization of drivers determined to be Bad is skipped.
 
-If your malware detection application doesn't include an Early Launch Antimalware boot-start driver or if your Early Launch Antimalware boot-start driver has been disabled, this setting has no effect and all boot-start drivers are initialized.
+If your malware detection application does not include an Early Launch Antimalware boot-start driver or if your Early Launch Antimalware boot-start driver has been disabled, this setting has no effect and all boot-start drivers are initialized.
+<!-- BootStartDriverInitialization-Description-End -->
 
-<!--/Description-->
+<!-- BootStartDriverInitialization-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- BootStartDriverInitialization-Editable-End -->
+
+<!-- BootStartDriverInitialization-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+<!-- BootStartDriverInitialization-DFProperties-End -->
+
+<!-- BootStartDriverInitialization-AdmxBacked-Begin -->
 > [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](../understanding-admx-backed-policies.md).
->
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](../understanding-admx-backed-policies.md#enabling-a-policy).
->
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+> This is an ADMX-backed policy and requires SyncML format for configuration. For an example of SyncML format, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
 
-<!--ADMXBacked-->
-ADMX Info:
--   GP Friendly name: *Boot-Start Driver Initialization Policy*
--   GP name: *POL_DriverLoadPolicy_Name*
--   GP path: *System/Early Launch Antimalware*
--   GP ADMX file name: *earlylauncham.admx*
+**ADMX mapping**:
 
-<!--/ADMXBacked-->
-<!--/Policy-->
+| Name | Value |
+|:--|:--|
+| Name | POL_DriverLoadPolicy_Name |
+| Friendly Name | Boot-Start Driver Initialization Policy |
+| Location | Computer Configuration |
+| Path | System > Early Launch Antimalware |
+| Registry Key Name | System\CurrentControlSet\Policies\EarlyLaunch |
+| Registry Value Name | DriverLoadPolicy |
+| ADMX File Name | EarlyLaunchAM.admx |
+<!-- BootStartDriverInitialization-AdmxBacked-End -->
 
-<hr/>
+<!-- BootStartDriverInitialization-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- BootStartDriverInitialization-Examples-End -->
 
-<!--Policy-->
-<a href="" id="system-configuremicrosoft365uploadendpoint"></a>**System/ConfigureMicrosoft365UploadEndpoint**
+<!-- BootStartDriverInitialization-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- ConfigureMicrosoft365UploadEndpoint-Begin -->
+## ConfigureMicrosoft365UploadEndpoint
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- ConfigureMicrosoft365UploadEndpoint-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+<!-- ConfigureMicrosoft365UploadEndpoint-Applicability-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- ConfigureMicrosoft365UploadEndpoint-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/ConfigureMicrosoft365UploadEndpoint
+```
+<!-- ConfigureMicrosoft365UploadEndpoint-OmaUri-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-This policy sets the upload endpoint for this device’s diagnostic data as part of the Microsoft 365 Update Readiness program.
+<!-- ConfigureMicrosoft365UploadEndpoint-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy sets the upload endpoint for this device's diagnostic data as part of the Desktop Analytics program.
 
 If your organization is participating in the program and has been instructed to configure a custom upload endpoint, then use this setting to define that endpoint.
-
 The value for this setting will be provided by Microsoft as part of the onboarding process for the program.
+<!-- ConfigureMicrosoft365UploadEndpoint-Description-End -->
 
-Supported value type is string.
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Configure Microsoft 365 Update Readiness upload endpoint*
--   GP name: *ConfigureMicrosoft365UploadEndpoint*
--   GP element: *ConfigureMicrosoft365UploadEndpoint*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
+<!-- ConfigureMicrosoft365UploadEndpoint-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- ConfigureMicrosoft365UploadEndpoint-Editable-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
+<!-- ConfigureMicrosoft365UploadEndpoint-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/SupportedValues-->
-<!--Example-->
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+<!-- ConfigureMicrosoft365UploadEndpoint-DFProperties-End -->
 
-<!--/Example-->
-<!--Validation-->
+<!-- ConfigureMicrosoft365UploadEndpoint-GpMapping-Begin -->
+**Group policy mapping**:
 
-<!--/Validation-->
-<!--/Policy-->
+| Name | Value |
+|:--|:--|
+| Name | ConfigureMicrosoft365UploadEndpoint |
+| Friendly Name | Configure diagnostic data upload endpoint for Desktop Analytics |
+| Element Name | Desktop Analytics Custom Upload Endpoint |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- ConfigureMicrosoft365UploadEndpoint-GpMapping-End -->
 
-<hr/>
+<!-- ConfigureMicrosoft365UploadEndpoint-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- ConfigureMicrosoft365UploadEndpoint-Examples-End -->
 
-<!--Policy-->
-<a href="" id="system-configuretelemetryoptinchangenotification"></a>**System/ConfigureTelemetryOptInChangeNotification**
+<!-- ConfigureMicrosoft365UploadEndpoint-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- ConfigureTelemetryOptInChangeNotification-Begin -->
+## ConfigureTelemetryOptInChangeNotification
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- ConfigureTelemetryOptInChangeNotification-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+<!-- ConfigureTelemetryOptInChangeNotification-Applicability-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- ConfigureTelemetryOptInChangeNotification-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/ConfigureTelemetryOptInChangeNotification
+```
+<!-- ConfigureTelemetryOptInChangeNotification-OmaUri-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- ConfigureTelemetryOptInChangeNotification-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting controls whether notifications are shown, following a change to diagnostic data opt-in settings, on first logon and when the changes occur in settings.
 
-> [!div class = "checklist"]
-> * Device
+If you set this policy setting to "Disable diagnostic data change notifications", diagnostic data opt-in change notifications will not appear.
 
-<hr/>
+If you set this policy setting to "Enable diagnostic data change notifications" or don't configure this policy setting, diagnostic data opt-in change notifications appear at first logon and when the changes occur in Settings.
+<!-- ConfigureTelemetryOptInChangeNotification-Description-End -->
 
-<!--/Scope-->
-<!--Description-->
-This policy setting determines whether a device shows notifications about telemetry levels to people on first sign in or when changes occur in Settings. 
+<!-- ConfigureTelemetryOptInChangeNotification-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- ConfigureTelemetryOptInChangeNotification-Editable-End -->
 
-- If you set this policy setting to "Disable telemetry change notifications", telemetry level notifications stop appearing.
-- If you set this policy setting to "Enable telemetry change notifications" or don't configure this policy setting, telemetry notifications appear at first sign in and when changes occur in Settings.
+<!-- ConfigureTelemetryOptInChangeNotification-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Configure telemetry opt-in change notifications.*
--   GP name: *ConfigureTelemetryOptInChangeNotification*
--   GP element: *ConfigureTelemetryOptInChangeNotification*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- ConfigureTelemetryOptInChangeNotification-DFProperties-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
--   0 (default) - Enable telemetry change notifications
--   1 - Disable telemetry change notifications
-<!--/SupportedValues-->
-<!--/Policy-->
+<!-- ConfigureTelemetryOptInChangeNotification-AllowedValues-Begin -->
+**Allowed values**:
 
-<hr/>
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Enable telemetry change notifications. |
+| 1 | Disable telemetry change notifications. |
+<!-- ConfigureTelemetryOptInChangeNotification-AllowedValues-End -->
 
-<!--Policy-->
-<a href="" id="system-configuretelemetryoptinsettingsux"></a>**System/ConfigureTelemetryOptInSettingsUx**
+<!-- ConfigureTelemetryOptInChangeNotification-GpMapping-Begin -->
+**Group policy mapping**:
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+| Name | Value |
+|:--|:--|
+| Name | ConfigureTelemetryOptInChangeNotification |
+| Friendly Name | Configure diagnostic data opt-in change notifications |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- ConfigureTelemetryOptInChangeNotification-GpMapping-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- ConfigureTelemetryOptInChangeNotification-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- ConfigureTelemetryOptInChangeNotification-Examples-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- ConfigureTelemetryOptInChangeNotification-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- ConfigureTelemetryOptInSettingsUx-Begin -->
+## ConfigureTelemetryOptInSettingsUx
 
-> [!div class = "checklist"]
-> * Device
+<!-- ConfigureTelemetryOptInSettingsUx-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1803 [10.0.17134] and later |
+<!-- ConfigureTelemetryOptInSettingsUx-Applicability-End -->
 
-<hr/>
+<!-- ConfigureTelemetryOptInSettingsUx-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/ConfigureTelemetryOptInSettingsUx
+```
+<!-- ConfigureTelemetryOptInSettingsUx-OmaUri-End -->
 
-<!--/Scope-->
-<!--Description-->
-This policy setting determines whether people can change their own telemetry levels in Settings. This setting should be used in conjunction with the Allow Telemetry settings.
+<!-- ConfigureTelemetryOptInSettingsUx-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting determines whether an end user can change diagnostic data settings in the Settings app.
 
-If you set this policy setting to "Disable Telemetry opt-in Settings", telemetry levels are disabled in Settings, preventing people from changing them.
+If you set this policy setting to "Disable diagnostic data opt-in settings", diagnostic data settings are disabled in the Settings app.
 
-If you set this policy setting to "Enable Telemetry opt-in Settings" or don't configure this policy setting, people can change their own telemetry levels in Settings.
+- If you don't configure this policy setting, or you set it to "Enable diagnostic data opt-in settings", end users can change the device diagnostic settings in the Settings app.
 
-> [!Note]
-> Set the Allow Telemetry policy setting to prevent people from sending diagnostic data to Microsoft beyond your organization's acceptable level of data disclosure.
+**Note**:
+To set a limit on the amount of diagnostic data that is sent to Microsoft by your organization, use the "Allow Diagnostic Data" policy setting.
+<!-- ConfigureTelemetryOptInSettingsUx-Description-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Configure telemetry opt-in setting user interface.*
--   GP name: *ConfigureTelemetryOptInSettingsUx*
--   GP element: *ConfigureTelemetryOptInSettingsUx*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
+<!-- ConfigureTelemetryOptInSettingsUx-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- ConfigureTelemetryOptInSettingsUx-Editable-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
--   0 (default) - Enable Telemetry opt-in Settings
--   1 - Disable Telemetry opt-in Settings
-<!--/SupportedValues-->
-<!--/Policy-->
+<!-- ConfigureTelemetryOptInSettingsUx-DFProperties-Begin -->
+**Description framework properties**:
 
-<hr/>
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- ConfigureTelemetryOptInSettingsUx-DFProperties-End -->
 
-<!--Policy-->
-<a href="" id="system-disabledevicedelete"></a>**System/DisableDeviceDelete**
+<!-- ConfigureTelemetryOptInSettingsUx-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Enable Telemetry opt-in Settings. |
+| 1 | Disable Telemetry opt-in Settings. |
+<!-- ConfigureTelemetryOptInSettingsUx-AllowedValues-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- ConfigureTelemetryOptInSettingsUx-GpMapping-Begin -->
+**Group policy mapping**:
 
-<!--/SupportedSKUs-->
-<hr/>
+| Name | Value |
+|:--|:--|
+| Name | ConfigureTelemetryOptInSettingsUx |
+| Friendly Name | Configure diagnostic data opt-in settings user interface |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- ConfigureTelemetryOptInSettingsUx-GpMapping-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- ConfigureTelemetryOptInSettingsUx-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- ConfigureTelemetryOptInSettingsUx-Examples-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- ConfigureTelemetryOptInSettingsUx-End -->
 
-<hr/>
+<!-- DisableDeviceDelete-Begin -->
+## DisableDeviceDelete
 
-<!--/Scope-->
-<!--Description-->
-This policy setting controls whether the Delete diagnostic data button is enabled in Diagnostic & Feedback Settings page.
+<!-- DisableDeviceDelete-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+<!-- DisableDeviceDelete-Applicability-End -->
+
+<!-- DisableDeviceDelete-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/DisableDeviceDelete
+```
+<!-- DisableDeviceDelete-OmaUri-End -->
+
+<!-- DisableDeviceDelete-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting controls whether the Delete diagnostic data button is enabled in Diagnostic & feedback Settings page.
 
 - If you enable this policy setting, the Delete diagnostic data button will be disabled in Settings page, preventing the deletion of diagnostic data collected by Microsoft from the device.
+
 - If you disable or don't configure this policy setting, the Delete diagnostic data button will be enabled in Settings page, which allows people to erase all diagnostic data collected by Microsoft from that device.
+<!-- DisableDeviceDelete-Description-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Disable deleting diagnostic data*
--   GP name: *DisableDeviceDelete*
--   GP element: *DisableDeviceDelete*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
+<!-- DisableDeviceDelete-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- DisableDeviceDelete-Editable-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
+<!-- DisableDeviceDelete-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/SupportedValues-->
-<!--Example-->
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- DisableDeviceDelete-DFProperties-End -->
 
-<!--/Example-->
-<!--Validation-->
+<!-- DisableDeviceDelete-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--/Validation-->
-<!--/Policy-->
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not disabled. |
+| 1 | Disabled. |
+<!-- DisableDeviceDelete-AllowedValues-End -->
 
-<hr/>
+<!-- DisableDeviceDelete-GpMapping-Begin -->
+**Group policy mapping**:
 
-<!--Policy-->
-<a href="" id="system-disablediagnosticdataviewer"></a>**System/DisableDiagnosticDataViewer**
+| Name | Value |
+|:--|:--|
+| Name | DisableDeviceDelete |
+| Friendly Name | Disable deleting diagnostic data |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- DisableDeviceDelete-GpMapping-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- DisableDeviceDelete-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- DisableDeviceDelete-Examples-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- DisableDeviceDelete-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- DisableDiagnosticDataViewer-Begin -->
+## DisableDiagnosticDataViewer
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- DisableDiagnosticDataViewer-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1809 [10.0.17763] and later |
+<!-- DisableDiagnosticDataViewer-Applicability-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- DisableDiagnosticDataViewer-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/DisableDiagnosticDataViewer
+```
+<!-- DisableDiagnosticDataViewer-OmaUri-End -->
 
-<hr/>
+<!-- DisableDiagnosticDataViewer-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting controls whether users can enable and launch the Diagnostic Data Viewer from the Diagnostic & feedback Settings page.
 
-<!--/Scope-->
-<!--Description-->
-This policy setting controls whether users can enable and launch the Diagnostic Data Viewer from the Diagnostic & Feedback Settings page.
+- If you enable this policy setting, the Diagnostic Data Viewer will not be enabled in Settings page, and it will prevent the viewer from showing diagnostic data collected by Microsoft from the device.
 
-- If you enable this policy setting, the Diagnostic Data Viewer won't be enabled in Settings page, and it will prevent the viewer from showing diagnostic data collected by Microsoft from the device.
 - If you disable or don't configure this policy setting, the Diagnostic Data Viewer will be enabled in Settings page.
+<!-- DisableDiagnosticDataViewer-Description-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Disable diagnostic data viewer.*
--   GP name: *DisableDiagnosticDataViewer*
--   GP element: *DisableDiagnosticDataViewer*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
+<!-- DisableDiagnosticDataViewer-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- DisableDiagnosticDataViewer-Editable-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
+<!-- DisableDiagnosticDataViewer-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/SupportedValues-->
-<!--Example-->
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- DisableDiagnosticDataViewer-DFProperties-End -->
 
-<!--/Example-->
-<!--Validation-->
+<!-- DisableDiagnosticDataViewer-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--/Validation-->
-<!--/Policy-->
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not disabled. |
+| 1 | Disabled. |
+<!-- DisableDiagnosticDataViewer-AllowedValues-End -->
 
-<hr/>
+<!-- DisableDiagnosticDataViewer-GpMapping-Begin -->
+**Group policy mapping**:
 
-<!--Policy-->
-<a href="" id="system-disableenterpriseauthproxy"></a>**System/DisableEnterpriseAuthProxy**
+| Name | Value |
+|:--|:--|
+| Name | DisableDiagnosticDataViewer |
+| Friendly Name | Disable diagnostic data viewer |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- DisableDiagnosticDataViewer-GpMapping-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- DisableDiagnosticDataViewer-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- DisableDiagnosticDataViewer-Examples-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- DisableDiagnosticDataViewer-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- DisableDirectXDatabaseUpdate-Begin -->
+## DisableDirectXDatabaseUpdate
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- DisableDirectXDatabaseUpdate-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+<!-- DisableDirectXDatabaseUpdate-Applicability-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- DisableDirectXDatabaseUpdate-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/DisableDirectXDatabaseUpdate
+```
+<!-- DisableDirectXDatabaseUpdate-OmaUri-End -->
 
-<hr/>
+<!-- DisableDirectXDatabaseUpdate-Description-Begin -->
+<!-- Description-Source-DDF -->
+This group policy allows control over whether the DirectX Database Updater task will be run on the system.
+<!-- DisableDirectXDatabaseUpdate-Description-End -->
 
-<!--/Scope-->
-<!--Description-->
-This policy setting blocks the Connected User Experience and Telemetry service from automatically using an authenticated proxy, to send data back to Microsoft on Windows 10. If you disable or don't configure this policy setting, the Connected User Experience and Telemetry service will automatically use an authenticated proxy, to send data back to Microsoft. Enabling this policy will block the Connected User Experience and Telemetry service from automatically using an authenticated proxy.
+<!-- DisableDirectXDatabaseUpdate-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- DisableDirectXDatabaseUpdate-Editable-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Configure Authenticated Proxy usage for the Connected User Experience and Telemetry service*
--   GP name: *DisableEnterpriseAuthProxy*
--   GP element: *DisableEnterpriseAuthProxy*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
+<!-- DisableDirectXDatabaseUpdate-DFProperties-Begin -->
+**Description framework properties**:
 
-<!--/ADMXMapped-->
-<!--/Policy-->
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- DisableDirectXDatabaseUpdate-DFProperties-End -->
 
-<hr/>
+<!-- DisableDirectXDatabaseUpdate-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--Policy-->
-<a href="" id="system-disableonedrivefilesync"></a>**System/DisableOneDriveFileSync**
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not disabled. |
+| 1 | Disabled. |
+<!-- DisableDirectXDatabaseUpdate-AllowedValues-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- DisableDirectXDatabaseUpdate-GpMapping-Begin -->
+**Group policy mapping**:
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+| Name | Value |
+|:--|:--|
+| Name | DisableDirectXDatabaseUpdate |
+| Path | GroupPolicy > AT > Network > DirectXDatabase |
+<!-- DisableDirectXDatabaseUpdate-GpMapping-End -->
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- DisableDirectXDatabaseUpdate-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- DisableDirectXDatabaseUpdate-Examples-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- DisableDirectXDatabaseUpdate-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- DisableEnterpriseAuthProxy-Begin -->
+## DisableEnterpriseAuthProxy
 
-<hr/>
+<!-- DisableEnterpriseAuthProxy-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+<!-- DisableEnterpriseAuthProxy-Applicability-End -->
 
-<!--/Scope-->
-<!--Description-->
-Allows IT Admins to prevent apps and features from working with files on OneDrive. If you enable this policy setting:
+<!-- DisableEnterpriseAuthProxy-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/DisableEnterpriseAuthProxy
+```
+<!-- DisableEnterpriseAuthProxy-OmaUri-End -->
 
-* Users can't access OneDrive from the OneDrive app or file picker.
-* Microsoft Store apps can't access OneDrive using the WinRT API.
+<!-- DisableEnterpriseAuthProxy-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting blocks the Connected User Experience and Telemetry service from automatically using an authenticated proxy to send data back to Microsoft on Windows 10.
+- If you disable or do not configure this policy setting, the Connected User Experience and Telemetry service will automatically use an authenticated proxy to send data back to Microsoft. Enabling this policy will block the Connected User Experience and Telemetry service from automatically using an authenticated proxy.
+<!-- DisableEnterpriseAuthProxy-Description-End -->
+
+<!-- DisableEnterpriseAuthProxy-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- DisableEnterpriseAuthProxy-Editable-End -->
+
+<!-- DisableEnterpriseAuthProxy-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- DisableEnterpriseAuthProxy-DFProperties-End -->
+
+<!-- DisableEnterpriseAuthProxy-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 1 | Enable. |
+| 0 (Default) | Disable. |
+<!-- DisableEnterpriseAuthProxy-AllowedValues-End -->
+
+<!-- DisableEnterpriseAuthProxy-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | DisableEnterpriseAuthProxy |
+| Friendly Name | Configure Authenticated Proxy usage for the Connected User Experience and Telemetry service |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- DisableEnterpriseAuthProxy-GpMapping-End -->
+
+<!-- DisableEnterpriseAuthProxy-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- DisableEnterpriseAuthProxy-Examples-End -->
+
+<!-- DisableEnterpriseAuthProxy-End -->
+
+<!-- DisableOneDriveFileSync-Begin -->
+## DisableOneDriveFileSync
+
+<!-- DisableOneDriveFileSync-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1703 [10.0.15063] and later |
+<!-- DisableOneDriveFileSync-Applicability-End -->
+
+<!-- DisableOneDriveFileSync-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/DisableOneDriveFileSync
+```
+<!-- DisableOneDriveFileSync-OmaUri-End -->
+
+<!-- DisableOneDriveFileSync-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting lets you prevent apps and features from working with files on OneDrive.
+- If you enable this policy setting:
+
+* Users can't access OneDrive from the OneDrive app and file picker.
+* Windows Store apps can't access OneDrive using the WinRT API.
 * OneDrive doesn't appear in the navigation pane in File Explorer.
 * OneDrive files aren't kept in sync with the cloud.
 * Users can't automatically upload photos and videos from the camera roll folder.
 
-If you disable or don't configure this policy setting, apps and features can work with OneDrive file storage.
+- If you disable or do not configure this policy setting, apps and features can work with OneDrive file storage.
+<!-- DisableOneDriveFileSync-Description-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Prevent the usage of OneDrive for file storage*
--   GP name: *PreventOnedriveFileSync*
--   GP path: *Windows Components/OneDrive*
--   GP ADMX file name: *SkyDrive.admx*
+<!-- DisableOneDriveFileSync-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- DisableOneDriveFileSync-Editable-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
+<!-- DisableOneDriveFileSync-DFProperties-Begin -->
+**Description framework properties**:
 
--   0 (default) – False (sync enabled).
--   1 – True (sync disabled).
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- DisableOneDriveFileSync-DFProperties-End -->
 
-<!--/SupportedValues-->
-<!--Validation-->
-To validate on Desktop, do the following steps:
+<!-- DisableOneDriveFileSync-AllowedValues-Begin -->
+**Allowed values**:
 
-1.   Enable policy.
-2.   Restart machine.
-3.   Verify that OneDrive.exe isn't running in Task Manager.
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Sync enabled. |
+| 1 | Sync disabled. |
+<!-- DisableOneDriveFileSync-AllowedValues-End -->
 
-<!--/Validation-->
-<!--/Policy-->
+<!-- DisableOneDriveFileSync-GpMapping-Begin -->
+**Group policy mapping**:
 
-<hr/>
+| Name | Value |
+|:--|:--|
+| Name | PreventOnedriveFileSync |
+| Friendly Name | Prevent the usage of OneDrive for file storage |
+| Location | Computer Configuration |
+| Path | Windows Components > OneDrive |
+| Registry Key Name | Software\Policies\Microsoft\Windows\OneDrive |
+| Registry Value Name | DisableFileSyncNGSC |
+| ADMX File Name | SkyDrive.admx |
+<!-- DisableOneDriveFileSync-GpMapping-End -->
 
-<!--Policy-->
-<a href="" id="system-disablesystemrestore"></a>**System/DisableSystemRestore**
+<!-- DisableOneDriveFileSync-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- DisableOneDriveFileSync-Examples-End -->
 
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
+<!-- DisableOneDriveFileSync-End -->
 
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
+<!-- DisableOneSettingsDownloads-Begin -->
+## DisableOneSettingsDownloads
 
-<!--/SupportedSKUs-->
-<hr/>
+<!-- DisableOneSettingsDownloads-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+<!-- DisableOneSettingsDownloads-Applicability-End -->
 
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
+<!-- DisableOneSettingsDownloads-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/DisableOneSettingsDownloads
+```
+<!-- DisableOneSettingsDownloads-OmaUri-End -->
 
-> [!div class = "checklist"]
-> * Device
+<!-- DisableOneSettingsDownloads-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting controls whether Windows attempts to connect with the OneSettings service.
 
-<hr/>
+- If you enable this policy, Windows will not attempt to connect with the OneSettings Service.
 
-<!--/Scope-->
-<!--Description-->
+- If you disable or don't configure this policy setting, Windows will periodically attempt to connect with the OneSettings service to download configuration settings.
+<!-- DisableOneSettingsDownloads-Description-End -->
+
+<!-- DisableOneSettingsDownloads-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- DisableOneSettingsDownloads-Editable-End -->
+
+<!-- DisableOneSettingsDownloads-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- DisableOneSettingsDownloads-DFProperties-End -->
+
+<!-- DisableOneSettingsDownloads-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Not disabled. |
+| 1 | Disabled. |
+<!-- DisableOneSettingsDownloads-AllowedValues-End -->
+
+<!-- DisableOneSettingsDownloads-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | DisableOneSettingsDownloads |
+| Friendly Name | Disable OneSettings Downloads |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- DisableOneSettingsDownloads-GpMapping-End -->
+
+<!-- DisableOneSettingsDownloads-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- DisableOneSettingsDownloads-Examples-End -->
+
+<!-- DisableOneSettingsDownloads-End -->
+
+<!-- DisableSystemRestore-Begin -->
+## DisableSystemRestore
+
+<!-- DisableSystemRestore-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1703 [10.0.15063] and later |
+<!-- DisableSystemRestore-Applicability-End -->
+
+<!-- DisableSystemRestore-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/DisableSystemRestore
+```
+<!-- DisableSystemRestore-OmaUri-End -->
+
+<!-- DisableSystemRestore-Description-Begin -->
+<!-- Description-Source-ADMX -->
 Allows you to disable System Restore.
 
 This policy setting allows you to turn off System Restore.
 
-System Restore enables users, in case of a problem, to restore their computers to a previous state without losing personal data files. By default, System Restore is turned on for the boot volume.
+System Restore enables users, in the event of a problem, to restore their computers to a previous state without losing personal data files. By default, System Restore is turned on for the boot volume.
 
-If you enable this policy setting, System Restore is turned off, then System Restore Wizard can't be accessed. The option to configure System Restore or create a restore point through System Protection is also disabled.
+- If you enable this policy setting, System Restore is turned off, and the System Restore Wizard cannot be accessed. The option to configure System Restore or create a restore point through System Protection is also disabled.
 
-If you disable or don't configure this policy setting, users can perform System Restore, and configure System Restore settings through System Protection.
+- If you disable or do not configure this policy setting, users can perform System Restore and configure System Restore settings through System Protection.
 
 Also, see the "Turn off System Restore configuration" policy setting. If the "Turn off System Restore" policy setting is disabled or not configured, the "Turn off System Restore configuration" policy setting is used to determine whether the option to configure System Restore is available.
+<!-- DisableSystemRestore-Description-End -->
 
-<!--/Description-->
+<!-- DisableSystemRestore-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- DisableSystemRestore-Editable-End -->
+
+<!-- DisableSystemRestore-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+<!-- DisableSystemRestore-DFProperties-End -->
+
+<!-- DisableSystemRestore-AdmxBacked-Begin -->
 > [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](../understanding-admx-backed-policies.md).
->
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](../understanding-admx-backed-policies.md#enabling-a-policy).
->
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:
--   GP Friendly name: *Turn off System Restore*
--   GP name: *SR_DisableSR*
--   GP path: *System/System Restore*
--   GP ADMX file name: *systemrestore.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="system-feedbackhubalwayssavediagnosticslocally"></a>**System/FeedbackHubAlwaysSaveDiagnosticsLocally**
-
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|Yes|Yes|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-When feedback in the Feedback Hub is being filed, diagnostic logs are collected for certain types of feedback. We now offer the option for users to save it locally, in addition to sending it to Microsoft. This policy will allow enterprises to mandate that all diagnostics are saved locally for use in internal investigations.
-
-<!--/Description-->
-<!--SupportedValues-->
-The following list shows the supported values:
-
-- 0 (default) - False. The Feedback Hub won't always save a local copy of diagnostics that may be created when feedback is submitted. The user will have the option to do so.
-- 1 - True. The Feedback Hub should always save a local copy of diagnostics that may be created when feedback is submitted.
-
-<!--/SupportedValues-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="system-limitdiagnosticlogcollection"></a>**System/LimitDiagnosticLogCollection**
-
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-This policy setting specifies whether diagnostic log data can be collected when more information is needed to troubleshoot a problem. It's sent only if we have permission to collect optional diagnostic data, and only if the device meets the criteria for more data collection.
-
-If you disable or don't configure this policy setting, we may occasionally collect advanced diagnostic data if the user has opted to send optional diagnostic data.
-
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Limit Diagnostic Log Collection*
--   GP name: *LimitDiagnosticLogCollection*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
-
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
-
--   0 – Disabled
--   1 – Enabled
-
-<!--/SupportedValues-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="system-limitdumpcollection"></a>**System/LimitDumpCollection**
-
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-This policy setting limits the type of dumps that can be collected when more information is needed to troubleshoot a problem. These dumps aren't sent unless we have permission to collect optional diagnostic data.
-
-With this policy setting being enabled, Windows Error Reporting is limited to sending kernel mini dumps and user mode triage dumps only.
-
-If you disable or don't configure this policy setting, we may occasionally collect full or heap dumps if the user has opted to send optional diagnostic data.
-
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Limit Dump Collection*
--   GP name: *LimitDumpCollection*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
-
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
-
--   0 – Disabled
--   1 – Enabled
-<!--/SupportedValues-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="system-limitenhanceddiagnosticdatawindowsanalytics"></a>**System/LimitEnhancedDiagnosticDataWindowsAnalytics**
-
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-This policy setting, in combination with the Allow Telemetry policy setting, enables organizations to send Microsoft a specific set of diagnostic data for IT insights via Windows Analytics services.
-
-To enable this behavior, you must complete two steps:
-
- 1. Enable this policy setting.
-
- 2. Set the **AllowTelemetry** level:
-
-    - For Windows 10 version 1809 and older: set **AllowTelemetry** to Enhanced.
-
-      > [!NOTE]
-      > **Enhanced** is no longer an option for Windows Holographic, version 21H1.
-
-    - For Windows 10 version 19H1 and later: set **AllowTelemetry** to Optional (Full).
-
-When you configure these policy settings, a basic level of diagnostic data plus other events that are required for Windows Analytics are sent to Microsoft. These events are documented here: <a href="/windows/privacy/enhanced-diagnostic-data-windows-analytics-events-and-fields" data-raw-source="[Windows 10, version 1709 enhanced telemetry events and fields used by Windows Analytics](/windows/privacy/enhanced-diagnostic-data-windows-analytics-events-and-fields)">Windows 10, version 1709 enhanced telemetry events and fields used by Windows Analytics</a>.
-
-Enabling enhanced diagnostic data in the Allow Telemetry policy in combination with not configuring this policy will also send the required events for Windows Analytics, plus enhanced level telemetry data. This setting has no effect on computers configured to send Required (Basic) or Optional (Full) diagnostic data to Microsoft.
-
-If you disable or don't configure this policy setting, then the level of diagnostic data sent to Microsoft is determined by the System/AllowTelemetry policy.
-
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Limit Enhanced diagnostic data to the minimum required by Windows Analytics*
--   GP name: *LimitEnhancedDiagnosticDataWindowsAnalytics*
--   GP element: *LimitEnhancedDiagnosticDataWindowsAnalytics*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
-
-<!--/ADMXMapped-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="system-telemetryproxy"></a>**System/TelemetryProxy**
-
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Allows you to specify the fully qualified domain name (FQDN) or IP address of a proxy server to forward Connected User Experiences and Telemetry requests. The format for this setting is *&lt;server&gt;:&lt;port&gt;*. The connection is made over a Secure Sockets Layer (SSL) connection. If the named proxy fails, or if there's no proxy specified when this policy is enabled, the Connected User Experiences and Telemetry data won't be transmitted and will remain on the local device.
-
-If you disable or don't configure this policy setting, Connected User Experiences and Telemetry will go to Microsoft using the default proxy configuration.
-
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Configure Connected User Experiences and Telemetry*
--   GP name: *TelemetryProxy*
--   GP element: *TelemetryProxyName*
--   GP path: *Data Collection and Preview Builds*
--   GP ADMX file name: *DataCollection.admx*
-
-<!--/ADMXMapped-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="system-turnofffilehistory"></a>**System/TurnOffFileHistory**
-
-<!--SupportedSKUs-->
-The table below shows the applicability of Windows:
-
-|Edition|Windows 10|Windows 11|
-|--- |--- |--- |
-|Home|No|No|
-|Pro|Yes|Yes|
-|Windows SE|No|Yes|
-|Enterprise|Yes|Yes|
-|Education|Yes|Yes|
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
+> This is an ADMX-backed policy and requires SyncML format for configuration. For an example of SyncML format, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+
+**ADMX mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | SR_DisableSR |
+| Friendly Name | Turn off System Restore |
+| Location | Computer Configuration |
+| Path | System > System Restore |
+| Registry Key Name | Software\Policies\Microsoft\Windows NT\SystemRestore |
+| Registry Value Name | DisableSR |
+| ADMX File Name | SystemRestore.admx |
+<!-- DisableSystemRestore-AdmxBacked-End -->
+
+<!-- DisableSystemRestore-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- DisableSystemRestore-Examples-End -->
+
+<!-- DisableSystemRestore-End -->
+
+<!-- EnableOneSettingsAuditing-Begin -->
+## EnableOneSettingsAuditing
+
+<!-- EnableOneSettingsAuditing-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+<!-- EnableOneSettingsAuditing-Applicability-End -->
+
+<!-- EnableOneSettingsAuditing-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/EnableOneSettingsAuditing
+```
+<!-- EnableOneSettingsAuditing-OmaUri-End -->
+
+<!-- EnableOneSettingsAuditing-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting controls whether Windows records attempts to connect with the OneSettings service to the EventLog.
+
+- If you enable this policy, Windows will record attempts to connect with the OneSettings service to the Microsoft\Windows\Privacy-Auditing\Operational EventLog channel.
+
+- If you disable or don't configure this policy setting, Windows will not record attempts to connect with the OneSettings service to the EventLog.
+<!-- EnableOneSettingsAuditing-Description-End -->
+
+<!-- EnableOneSettingsAuditing-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- EnableOneSettingsAuditing-Editable-End -->
+
+<!-- EnableOneSettingsAuditing-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- EnableOneSettingsAuditing-DFProperties-End -->
+
+<!-- EnableOneSettingsAuditing-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 1 | Enabled. |
+<!-- EnableOneSettingsAuditing-AllowedValues-End -->
+
+<!-- EnableOneSettingsAuditing-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | EnableOneSettingsAuditing |
+| Friendly Name | Enable OneSettings Auditing |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- EnableOneSettingsAuditing-GpMapping-End -->
+
+<!-- EnableOneSettingsAuditing-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- EnableOneSettingsAuditing-Examples-End -->
+
+<!-- EnableOneSettingsAuditing-End -->
+
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-Begin -->
+## FeedbackHubAlwaysSaveDiagnosticsLocally
+
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-Applicability-End -->
+
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/FeedbackHubAlwaysSaveDiagnosticsLocally
+```
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-OmaUri-End -->
+
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-Description-Begin -->
+<!-- Description-Source-DDF -->
+Diagnostic files created when a feedback is filed in the Feedback Hub app will always be saved locally. If this policy is not present or set to false, users will be presented with the option to save locally. The default is to not save locally.
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-Description-End -->
+
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-Editable-End -->
+
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-DFProperties-End -->
+
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | False. The Feedback Hub will not always save a local copy of diagnostics that may be created when a feedback is submitted. The user will have the option to do so. |
+| 1 | True. The Feedback Hub should always save a local copy of diagnostics that may be created when a feedback is submitted. |
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-AllowedValues-End -->
+
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-Examples-End -->
+
+<!-- FeedbackHubAlwaysSaveDiagnosticsLocally-End -->
+
+<!-- HideUnsupportedHardwareNotifications-Begin -->
+## HideUnsupportedHardwareNotifications
+
+<!-- HideUnsupportedHardwareNotifications-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows Insider Preview |
+<!-- HideUnsupportedHardwareNotifications-Applicability-End -->
+
+<!-- HideUnsupportedHardwareNotifications-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/HideUnsupportedHardwareNotifications
+```
+<!-- HideUnsupportedHardwareNotifications-OmaUri-End -->
+
+<!-- HideUnsupportedHardwareNotifications-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy controls messages which are shown when Windows is running on a device that does not meet the minimum system requirements for this OS version.
+
+- If you enable this policy setting, these messages will never appear on desktop or in the Settings app.
+
+- If you disable or do not configure this policy setting, these messages will appear on desktop and in the Settings app when Windows is running on a device that does not meet the minimum system requirements for this OS version.
+<!-- HideUnsupportedHardwareNotifications-Description-End -->
+
+<!-- HideUnsupportedHardwareNotifications-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- HideUnsupportedHardwareNotifications-Editable-End -->
+
+<!-- HideUnsupportedHardwareNotifications-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- HideUnsupportedHardwareNotifications-DFProperties-End -->
+
+<!-- HideUnsupportedHardwareNotifications-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 1 | Enabled. |
+<!-- HideUnsupportedHardwareNotifications-AllowedValues-End -->
+
+<!-- HideUnsupportedHardwareNotifications-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | HideUnsupportedHardwareNotifications |
+| Friendly Name | Hide messages when Windows system requirements are not met |
+| Location | Computer Configuration |
+| Path | System |
+| Registry Key Name | Software\Microsoft\Windows\CurrentVersion\Policies\System |
+| Registry Value Name | HideUnsupportedHardwareNotifications |
+| ADMX File Name | ControlPanel.admx |
+<!-- HideUnsupportedHardwareNotifications-GpMapping-End -->
+
+<!-- HideUnsupportedHardwareNotifications-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- HideUnsupportedHardwareNotifications-Examples-End -->
+
+<!-- HideUnsupportedHardwareNotifications-End -->
+
+<!-- LimitDiagnosticLogCollection-Begin -->
+## LimitDiagnosticLogCollection
+
+<!-- LimitDiagnosticLogCollection-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+<!-- LimitDiagnosticLogCollection-Applicability-End -->
+
+<!-- LimitDiagnosticLogCollection-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/LimitDiagnosticLogCollection
+```
+<!-- LimitDiagnosticLogCollection-OmaUri-End -->
+
+<!-- LimitDiagnosticLogCollection-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting controls whether additional diagnostic logs are collected when more information is needed to troubleshoot a problem on the device. Diagnostic logs are only sent when the device has been configured to send optional diagnostic data.
+
+By enabling this policy setting, diagnostic logs will not be collected.
+
+- If you disable or do not configure this policy setting, we may occasionally collect diagnostic logs if the device has been configured to send optional diagnostic data.
+<!-- LimitDiagnosticLogCollection-Description-End -->
+
+<!-- LimitDiagnosticLogCollection-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- LimitDiagnosticLogCollection-Editable-End -->
+
+<!-- LimitDiagnosticLogCollection-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- LimitDiagnosticLogCollection-DFProperties-End -->
+
+<!-- LimitDiagnosticLogCollection-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 1 | Enabled. |
+<!-- LimitDiagnosticLogCollection-AllowedValues-End -->
+
+<!-- LimitDiagnosticLogCollection-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | LimitDiagnosticLogCollection |
+| Friendly Name | Limit Diagnostic Log Collection |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- LimitDiagnosticLogCollection-GpMapping-End -->
+
+<!-- LimitDiagnosticLogCollection-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- LimitDiagnosticLogCollection-Examples-End -->
+
+<!-- LimitDiagnosticLogCollection-End -->
+
+<!-- LimitDumpCollection-Begin -->
+## LimitDumpCollection
+
+<!-- LimitDumpCollection-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 11, version 21H2 [10.0.22000] and later |
+<!-- LimitDumpCollection-Applicability-End -->
+
+<!-- LimitDumpCollection-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/LimitDumpCollection
+```
+<!-- LimitDumpCollection-OmaUri-End -->
+
+<!-- LimitDumpCollection-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting limits the type of dumps that can be collected when more information is needed to troubleshoot a problem. Dumps are only sent when the device has been configured to send optional diagnostic data.
+
+By enabling this setting, Windows Error Reporting is limited to sending kernel mini dumps and user mode triage dumps.
+
+- If you disable or do not configure this policy setting, we may occasionally collect full or heap dumps if the user has opted to send optional diagnostic data.
+<!-- LimitDumpCollection-Description-End -->
+
+<!-- LimitDumpCollection-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- LimitDumpCollection-Editable-End -->
+
+<!-- LimitDumpCollection-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- LimitDumpCollection-DFProperties-End -->
+
+<!-- LimitDumpCollection-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 1 | Enabled. |
+<!-- LimitDumpCollection-AllowedValues-End -->
+
+<!-- LimitDumpCollection-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | LimitDumpCollection |
+| Friendly Name | Limit Dump Collection |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- LimitDumpCollection-GpMapping-End -->
+
+<!-- LimitDumpCollection-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- LimitDumpCollection-Examples-End -->
+
+<!-- LimitDumpCollection-End -->
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-Begin -->
+## LimitEnhancedDiagnosticDataWindowsAnalytics
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1709 [10.0.16299] and later |
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-Applicability-End -->
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/LimitEnhancedDiagnosticDataWindowsAnalytics
+```
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-OmaUri-End -->
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-Description-Begin -->
+<!-- Description-Source-ADMX -->
+This policy setting, in combination with the "Allow Diagnostic Data" policy setting, enables organizations to send the minimum data required by Desktop Analytics.
+
+To enable the behavior described above, complete the following steps:
+
+1. Enable this policy setting
+2. Set the "Allow Diagnostic Data" policy to "Send optional diagnostic data"
+
+3. Enable the "Limit Dump Collection" policy
+4. Enable the "Limit Diagnostic Log Collection" policy
+
+When these policies are configured, Microsoft will collect only required diagnostic data and the events required by Desktop Analytics, which can be viewed at <https://go.microsoft.com/fwlink/?linkid=2116020>.
+
+- If you disable or do not configure this policy setting, diagnostic data collection is determined by the "Allow Diagnostic Data" policy setting or by the end user from the Settings app.
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-Description-End -->
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-Editable-End -->
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-DFProperties-End -->
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-AllowedValues-Begin -->
+**Allowed values**:
+
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Disabled. |
+| 1 | Enabled. |
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-AllowedValues-End -->
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | LimitEnhancedDiagnosticDataWindowsAnalytics |
+| Friendly Name | Limit optional diagnostic data for Desktop Analytics |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-GpMapping-End -->
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-Examples-End -->
+
+<!-- LimitEnhancedDiagnosticDataWindowsAnalytics-End -->
+
+<!-- TelemetryProxy-Begin -->
+## TelemetryProxy
+
+<!-- TelemetryProxy-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1607 [10.0.14393] and later |
+<!-- TelemetryProxy-Applicability-End -->
+
+<!-- TelemetryProxy-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/TelemetryProxy
+```
+<!-- TelemetryProxy-OmaUri-End -->
+
+<!-- TelemetryProxy-Description-Begin -->
+<!-- Description-Source-DDF -->
+Allows you to specify the fully qualified domain name (FQDN) or IP address of a proxy server to forward Connected User Experiences and Telemetry requests. The format for this setting is `<server>`:`<port>`. The connection is made over a Secure Sockets Layer (SSL) connection. If the named proxy fails, or if there is no proxy specified when this policy is enabled, the Connected User Experiences and Telemetry data will not be transmitted and will remain on the local device.
+- If you disable or do not configure this policy setting, Connected User Experiences and Telemetry will go to Microsoft using the default proxy configuration.
+<!-- TelemetryProxy-Description-End -->
+
+<!-- TelemetryProxy-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- TelemetryProxy-Editable-End -->
+
+<!-- TelemetryProxy-DFProperties-Begin -->
+**Description framework properties**:
+
+| Property name | Property value |
+|:--|:--|
+| Format | chr (string) |
+| Access Type | Add, Delete, Get, Replace |
+<!-- TelemetryProxy-DFProperties-End -->
+
+<!-- TelemetryProxy-GpMapping-Begin -->
+**Group policy mapping**:
+
+| Name | Value |
+|:--|:--|
+| Name | TelemetryProxy |
+| Friendly Name | Configure Connected User Experiences and Telemetry |
+| Element Name | Proxy Server Name |
+| Location | Computer Configuration |
+| Path | WindowsComponents > Data Collection and Preview Builds |
+| Registry Key Name | Software\Policies\Microsoft\Windows\DataCollection |
+| ADMX File Name | DataCollection.admx |
+<!-- TelemetryProxy-GpMapping-End -->
+
+<!-- TelemetryProxy-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- TelemetryProxy-Examples-End -->
+
+<!-- TelemetryProxy-End -->
+
+<!-- TurnOffFileHistory-Begin -->
+## TurnOffFileHistory
+
+<!-- TurnOffFileHistory-Applicability-Begin -->
+| Scope | Editions | Applicable OS |
+|:--|:--|:--|
+| :heavy_check_mark: Device <br> :x: User | :x: Home <br> :heavy_check_mark: Pro <br> :heavy_check_mark: Enterprise <br> :heavy_check_mark: Education <br> :heavy_check_mark: Windows SE | :heavy_check_mark: Windows 10, version 1903 [10.0.18362] and later |
+<!-- TurnOffFileHistory-Applicability-End -->
+
+<!-- TurnOffFileHistory-OmaUri-Begin -->
+```Device
+./Device/Vendor/MSFT/Policy/Config/System/TurnOffFileHistory
+```
+<!-- TurnOffFileHistory-OmaUri-End -->
+
+<!-- TurnOffFileHistory-Description-Begin -->
+<!-- Description-Source-ADMX -->
 This policy setting allows you to turn off File History.
 
-If you enable this policy setting, File History can't be activated to create regular, automatic backups.
+- If you enable this policy setting, File History cannot be activated to create regular, automatic backups.
 
-If you disable or don't configure this policy setting, File History can be activated to create regular, automatic backups.
+- If you disable or do not configure this policy setting, File History can be activated to create regular, automatic backups.
+<!-- TurnOffFileHistory-Description-End -->
 
-<!--/Description-->
-<!--ADMXMapped-->
-ADMX Info:
--   GP Friendly name: *Turn off File History*
--   GP name: *DisableFileHistory*
--   GP path: *Windows Components/File History*
--   GP ADMX file name: *FileHistory.admx*
+<!-- TurnOffFileHistory-Editable-Begin -->
+<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
+<!-- TurnOffFileHistory-Editable-End -->
 
-<!--/ADMXMapped-->
-<!--SupportedValues-->
-The following list shows the supported values:
+<!-- TurnOffFileHistory-DFProperties-Begin -->
+**Description framework properties**:
 
--   false (default) - allow File History
--   true  - turn off File History
-<!--/SupportedValues-->
-<!--Example-->
+| Property name | Property value |
+|:--|:--|
+| Format | int |
+| Access Type | Add, Delete, Get, Replace |
+| Default Value  | 0 |
+<!-- TurnOffFileHistory-DFProperties-End -->
 
-<!--/Example-->
-<!--Validation-->
+<!-- TurnOffFileHistory-AllowedValues-Begin -->
+**Allowed values**:
 
-<!--/Validation-->
-<!--/Policy-->
-<hr/>
+| Value | Description |
+|:--|:--|
+| 0 (Default) | Allow file history. |
+| 1 | Turn off file history. |
+<!-- TurnOffFileHistory-AllowedValues-End -->
 
-<!--/Policies-->
+<!-- TurnOffFileHistory-GpMapping-Begin -->
+**Group policy mapping**:
 
-## Related topics
+| Name | Value |
+|:--|:--|
+| Name | DisableFileHistory |
+| Friendly Name | Turn off File History |
+| Location | Computer Configuration |
+| Path | Windows Components > File History |
+| Registry Key Name | Software\Policies\Microsoft\Windows\FileHistory |
+| Registry Value Name | Disabled |
+| ADMX File Name | FileHistory.admx |
+<!-- TurnOffFileHistory-GpMapping-End -->
 
-[Policy configuration service provider](policy-configuration-service-provider.md)
\ No newline at end of file
+<!-- TurnOffFileHistory-Examples-Begin -->
+<!-- Add any examples for this policy here. Examples outside this section will get overwritten. -->
+<!-- TurnOffFileHistory-Examples-End -->
+
+<!-- TurnOffFileHistory-End -->
+
+<!-- System-CspMoreInfo-Begin -->
+<!-- Add any additional information about this CSP here. Anything outside this section will get overwritten. -->
+<!-- System-CspMoreInfo-End -->
+
+<!-- System-End -->
+
+## Related articles
+
+[Policy configuration service provider](policy-configuration-service-provider.md)
diff --git a/windows/client-management/understanding-admx-backed-policies.md b/windows/client-management/understanding-admx-backed-policies.md
index 4a730f6508..344d0eb5a7 100644
--- a/windows/client-management/understanding-admx-backed-policies.md
+++ b/windows/client-management/understanding-admx-backed-policies.md
@@ -1,6 +1,6 @@
 ---
 title: Understanding ADMX policies
-description: In Windows 10, you can use ADMX policies for Windows 10 mobile device management (MDM) across Windows 10 devices.
+description: You can use ADMX policies for Windows mobile device management (MDM) across Windows devices.
 ms.author: vinpa
 ms.topic: article
 ms.prod: windows-client
@@ -237,7 +237,7 @@ Below is the internal OS mapping of a Group Policy to an MDM area and name. This
 
 `./[Device|User]/Vendor/MSFT/Policy/Config/[config|result]/<area>/<policy>`
 
-The data payload of the SyncML needs to be encoded so that it doesn't conflict with the boilerplate SyncML XML tags. Use this online tool for encoding and encoding the policy data [Coder's Toolbox](http://coderstoolbox.net/string/#!encoding=xml&action=encode&charset=us_ascii)
+The data payload of the SyncML needs to be encoded so that it doesn't conflict with the boilerplate SyncML XML tags. Use this online tool for encoding and decoding the policy data [Coder's Toolbox](https://coderstoolbox.net/string/#!encoding=xml&action=encode&charset=us_ascii).
 
 **Snippet of manifest for AppVirtualization area:**
 
diff --git a/windows/configuration/cortana-at-work/cortana-at-work-crm.md b/windows/configuration/cortana-at-work/cortana-at-work-crm.md
deleted file mode 100644
index 404702922b..0000000000
--- a/windows/configuration/cortana-at-work/cortana-at-work-crm.md
+++ /dev/null
@@ -1,59 +0,0 @@
----
-title: Set up and test Cortana with Microsoft Dynamics CRM (Preview feature) in Windows
-description: How to set up Cortana to give salespeople insights on important CRM activities, including sales leads, accounts, and opportunities.
-ms.prod: windows-client
-author: aczechowski
-ms.localizationpriority: medium
-ms.author: aaroncz
-ms.date: 10/05/2017
-ms.reviewer: 
-manager: dougeby
-ms.technology: itpro-configure
----
-
-# Set up and test Cortana with Microsoft Dynamics CRM (Preview feature) in your organization
-
-Cortana integration is a Preview feature that's available for your test or dev environment, starting with the CRM Online 2016 Update. If you decide to use this Preview feature, you'll need to turn in on and accept the license terms. After that, your salespeople will get proactive insights from Cortana on important CRM activities, including sales leads, accounts, and opportunities; presenting the most relevant information at any given time. This information can even include getting company-specific news that surfaces when the person is meeting with a representative from another company.
-
->[!NOTE]
->For more info about Dynamics CRM integration, how to turn on Cortana, and how to provide feedback, see [Preview feature: Set up Cortana integration](https://go.microsoft.com/fwlink/p/?LinkId=746819).
-
-![Cortana at work, showing the sales data pulled from Dynamics CRM.](../images/cortana-crm-screen.png)
-
-## Turn on Cortana with Dynamics CRM in your organization
-You must be a CRM administrator to turn on and use Preview features. For more info about what Preview features are and how to use them, see [What are Preview features and how do I enable them](/dynamics365/marketing/marketing-preview-features).
-
-**To turn on Cortana with Dynamics CRM**
-
-1. Go to **Settings**, and then click **Administration**.
-
-2. Choose **System Settings**, and then click the **Previews** tab.
-
-3. Read the license terms, and if you agree, select the **I’ve read and agree to the license terms** check box.
-
-4. For each preview feature you want to enable, click **Yes**.
-
-## Turn on Cortana with Dynamics CRM on your employees’ devices
-You must tell your employees to turn on Cortana, before they’ll be able to use it with Dynamics CRM.
-
-**To turn on local Cortana with Dynamics CRM**
-
-1. Click on the **Cortana** search box in the taskbar, and then click the **Notebook** icon.
-
-2. Click on **Connected Services**, click **Dynamics CRM**, and then click **Connect**.
-
-    ![Cotana at work, showing how to turn on the connected services for Dynamics CRM.](../images/cortana-connect-crm.png)
-
-    The employee can also disconnect by clicking **Disconnect** from the **Dynamics CRM** screen.
-
-## Turn off Cortana with Dynamics CRM
-Cortana can only access data in Dynamics CRM when it’s turned on. If you don’t want Cortana to access your corporate data, you can turn it off.
-
-**To turn off Cortana with Dynamics CRM**
-1. Go to **Settings**, and then click **Administration**.
-
-2. Choose **System Settings**, and then click the **Previews** tab.
-
-3. Click **No** for **Cortana**.
-
-    All Dynamics CRM functionality related to Cortana is turned off in your organization.
diff --git a/windows/configuration/cortana-at-work/cortana-at-work-powerbi.md b/windows/configuration/cortana-at-work/cortana-at-work-powerbi.md
deleted file mode 100644
index daec3595bb..0000000000
--- a/windows/configuration/cortana-at-work/cortana-at-work-powerbi.md
+++ /dev/null
@@ -1,139 +0,0 @@
----
-title: Set up and test Cortana for Power BI in your organization (Windows)
-description: How to integrate Cortana with Power BI to help your employees get answers directly from your key business data.
-ms.prod: windows-client
-author: aczechowski
-ms.localizationpriority: medium
-ms.author: aaroncz
-ms.date: 10/05/2017
-ms.reviewer: 
-manager: dougeby
-ms.technology: itpro-configure
----
-
-# Set up and test Cortana for Power BI in your organization
-
->[!IMPORTANT]
->Cortana for Power BI is deprecated and will not be available in future releases. This topic is provided as a reference for previous versions only.
-
-Integration between Cortana and Power BI shows how Cortana can work with custom business analytics solutions to enable you to get answers directly from your key business data, including introducing new features that let you create custom Cortana “answers” using the full capabilities of Power BI Desktop.
-
->[!Note]
->Cortana for Power BI is currently only available in English. For more info about Cortana and Power BI, see [Use Power BI to create a custom Answer Page for Cortana](https://powerbi.microsoft.com/documentation/powerbi-service-cortana-desktop-entity-cards/).
-
-## Before you begin
-To use this walkthrough, you’ll need:
-
-- **Windows 10 or Windows 11**. You’ll need your PC to be running at least Windows 10, version 1703 or later, or Windows 11.
-
-- **Cortana**. You need to have Cortana turned on and be logged into your account.
-
-- **Power BI account with data**. You can use an existing Power BI account, or else you can get a trial account by signing up at http://powerbi.com. Just make sure that either way, you enter some data that you can use.
-
-- **Azure Active Directory (Azure AD)/Work or School account**. You can use the account that you created for Office 365, or you can create a new one while you’re establishing your Power BI account. If you choose to use Azure AD, you must connect your Azure AD account to your Windows account.
-
-    **To connect your account to Windows**
-    
-    a. Open **Windows Settings**, click **Accounts**, click **Access work or school**, and then in the **Connect to work or school** section, click **Connect**.
-    
-    b. Follow the instructions to add your Azure Active Directory (Azure AD) account to Windows.
-
-## Set up your test environment for Cortana for Power BI
-Before you can start this testing scenario, you must first set up your test environment and data, and then you must turn on and set up Cortana to connect and work with Power BI.
-
-**To set up your test environment with Cortana and Power BI**
-
-1. Go to http://powerbi.com and sign-in with the same O365 credentials you used in the Set up and use Cortana with Office 365 topic.
-
-2. Expand the left rail by clicking the **Show the navigation pane** icon.
-
-    ![Cortana at work, showing the navigation expand icon in Power BI.](../images/cortana-powerbi-expand-nav.png)
-
-3. Click **Get Data** from the left-hand navigation in Power BI.
-
-    ![Cortana at work, showing the Get Data link.](../images/cortana-powerbi-getdata.png)
-
-4. Click **Samples** from the **Content Pack Library** area of the **Get Data** screen.
-
-    ![Cortana at work, showing Samples link](../images/cortana-powerbi-getdata-samples.png)
-
-5. Click **Retail Analysis Sample**, and then click **Connect**.
-
-    ![Cortana at work, showing the Samples link.](../images/cortana-powerbi-retail-analysis-sample.png)
- 
-    The sample data is imported and you’re returned to the **Power BI** screen.
-
-6. Click **Dashboards** from the left pane of the **Power BI** screen, and then click **Retail Analysis Sample**.
-
-    ![Cortana at work, showing a dashboard view of the sample data.](../images/cortana-powerbi-retail-analysis-dashboard.png)    
- 
-7. In the upper right-hand menu, click the **Settings** icon, and then click **Settings**.
-
-    ![Cortana at work, showing where to find the Settings option.](../images/cortana-powerbi-settings.png) 
-
-8. Click the **Datasets** tab, and then pick the **Retail Analysis Sample** dataset from the list.
-
-9. Click **Q&A and Cortana**, check the **Allow Cortana to access this dataset** box, and then click **Apply**.
-
-    ![Cortana at work, showing where to find the dataset options.](../images/cortana-powerbi-retail-analysis-dataset.png)
-
-    >[!NOTE]
-    >It can take up to 30 minutes for a new dataset to appear for Power BI and Cortana. Logging in and out of Windows, or otherwise restarting Cortana, causes the new content to appear immediately.<p>If you enable a dataset for Cortana, and that dataset is part of a content pack you own, you’ll need to re-publish for your colleagues to also use it with Cortana.
-
-## Create a custom Answer Page for Cortana
-You must create special reports, known as _Answer Pages_, to display the most commonly asked answers in Cortana. For example, if you want Cortana to quickly show sales data to your employees, you can create a 2016 sales data Answer Page that shows sales data, with various pivots, in Cortana.
-
-After you’ve finished creating your Answer Page, you can continue to the included testing scenarios.
-
->[!NOTE]
->It can take up to 30 minutes for a custom Answer Page to appear for Power BI and Cortana. Logging in and out of Windows, or otherwise restarting Cortana, causes the new content to appear immediately.
-
-**To create a custom sales data Answer Page for Cortana**
-1. In Power BI, click **My Workspace**, click **Create**, and then click **Report**.
-
-    ![Cortana at work, showing where to create the new report.](../images/cortana-powerbi-create-report.png)
- 
-2. In the **Create Report** screen, click the **Retail Analysis Sample**, and then click **Create**.
-
-    A blank report page appears.
-
-3. In the **Visualizations** pane, click the paint roller icon, expand **Page Size**, and then pick **Cortana** from the **Type** drop-down list.
-
-    ![Cortana at work, showing the Visualizations options.](../images/cortana-powerbi-pagesize.png)
-
-4. In the **Fields** pane, click to expand **Sales**, expand **This year sales**, and then add both **Value** and **Goal**.
-
-    ![Cortana at work, showing the Field options.](../images/cortana-powerbi-field-selection.png)
- 
-    The automatically generated graph is added to your blank report. You have the option to change colors, add borders, add additional visualizations, and modify this page so that it answers the question about sales data as precisely, and in as custom a way, as you want. You just need to make sure that it all stays within the page borders.
-
-5. In the **Visualizations** pane, click the paint roller icon again, expand **Page Information**, type _Sales data 2016_ into the **Name** box, turn on **Q&A**, and then add alternate report names (separated by commas) into the text box.
-
-    The alternate names help Cortana to know what questions to look for and when to show this report. To also improve your results, you should avoid using the names of your report columns.
-
-    ![Cortana at work, showing the page info for your specific report.](../images/cortana-powerbi-report-qna.png)
-    
-6. Click **File**, click **Save as**, and save the report as _Sales data 2016_. 
-
-    Because this is part of the Retail Analysis Sample, it will automatically be included as part of the dataset you included for Cortana. However, you will still need to log in and out of Windows, or otherwise restart Cortana, before the new content appears.
-
-## Test Scenario: Use Cortana to show info from Power BI in your organization
-Now that you’ve set up your device, you can use Cortana to show your info from within Power BI.
-
-**To use Cortana with Power BI**
-1. Click on the **Cortana** icon in the taskbar, and then click in the **Search** bar.
-
-2. Type _This year in sales_.
-
-    Cortana shows you the available results.
-
-    ![Cortana at work, showing the best matches based on the Power BI data.](../images/cortana-powerbi-search.png)
- 	 
-3. In the **Power BI** area, click **This year in sales – in Retail Analysis Sample**.
-
- 	Cortana returns your custom report.
-
-    ![Cortana at work, showing your custom report from Power BI.](../images/cortana-powerbi-myreport.png)
- 	 
->[!NOTE]
->For more info about how to connect your own data, build your own custom Power BI cards and Answer Pages for Cortana, and how to share the cards with everyone in your organization, see [Use Power BI to create a custom Answer Page for Cortana](https://powerbi.microsoft.com/documentation/powerbi-service-cortana-desktop-entity-cards/).
diff --git a/windows/configuration/cortana-at-work/images/cortana-about-me.png b/windows/configuration/cortana-at-work/images/cortana-about-me.png
deleted file mode 100644
index 32c1ccefab..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-about-me.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-add-reminder.png b/windows/configuration/cortana-at-work/images/cortana-add-reminder.png
deleted file mode 100644
index 3f03528e11..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-add-reminder.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-chicago-weather.png b/windows/configuration/cortana-at-work/images/cortana-chicago-weather.png
deleted file mode 100644
index 9273bf201b..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-chicago-weather.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-communication-history-permissions.png b/windows/configuration/cortana-at-work/images/cortana-communication-history-permissions.png
deleted file mode 100644
index db182be13c..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-communication-history-permissions.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-complete-send-email-coworker-mic.png b/windows/configuration/cortana-at-work/images/cortana-complete-send-email-coworker-mic.png
deleted file mode 100644
index 3238c8d31d..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-complete-send-email-coworker-mic.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-connect-crm.png b/windows/configuration/cortana-at-work/images/cortana-connect-crm.png
deleted file mode 100644
index c70c42f75e..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-connect-crm.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-connect-o365.png b/windows/configuration/cortana-at-work/images/cortana-connect-o365.png
deleted file mode 100644
index df1ffa449b..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-connect-o365.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-connect-uber.png b/windows/configuration/cortana-at-work/images/cortana-connect-uber.png
deleted file mode 100644
index 724fecb5b5..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-connect-uber.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-crm-screen.png b/windows/configuration/cortana-at-work/images/cortana-crm-screen.png
deleted file mode 100644
index ded5d80a59..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-crm-screen.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-feedback.png b/windows/configuration/cortana-at-work/images/cortana-feedback.png
deleted file mode 100644
index 6e14018c98..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-feedback.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-final-reminder.png b/windows/configuration/cortana-at-work/images/cortana-final-reminder.png
deleted file mode 100644
index f114e058e5..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-final-reminder.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-meeting-specific-time.png b/windows/configuration/cortana-at-work/images/cortana-meeting-specific-time.png
deleted file mode 100644
index a108355133..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-meeting-specific-time.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-meeting-tomorrow.png b/windows/configuration/cortana-at-work/images/cortana-meeting-tomorrow.png
deleted file mode 100644
index 13273b6600..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-meeting-tomorrow.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-newyork-weather.png b/windows/configuration/cortana-at-work/images/cortana-newyork-weather.png
deleted file mode 100644
index b3879737be..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-newyork-weather.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-o365-screen.png b/windows/configuration/cortana-at-work/images/cortana-o365-screen.png
deleted file mode 100644
index ba06dd6de5..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-o365-screen.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-place-reminder.png b/windows/configuration/cortana-at-work/images/cortana-place-reminder.png
deleted file mode 100644
index 89ccdab3e3..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-place-reminder.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-create-report.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-create-report.png
deleted file mode 100644
index a22789d72a..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-create-report.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-expand-nav.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-expand-nav.png
deleted file mode 100644
index c8b47943f9..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-expand-nav.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-field-selection.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-field-selection.png
deleted file mode 100644
index 8aef58c23a..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-field-selection.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-getdata-samples.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-getdata-samples.png
deleted file mode 100644
index 3bfa4792df..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-getdata-samples.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-getdata.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-getdata.png
deleted file mode 100644
index 55b7b61589..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-getdata.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-myreport.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-myreport.png
deleted file mode 100644
index cc04d9c6f0..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-myreport.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-pagesize.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-pagesize.png
deleted file mode 100644
index fd1c1ef917..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-pagesize.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-report-qna.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-report-qna.png
deleted file mode 100644
index d17949aa8a..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-report-qna.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-retail-analysis-dashboard.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-retail-analysis-dashboard.png
deleted file mode 100644
index 5b94a2e2fc..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-retail-analysis-dashboard.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-retail-analysis-dataset.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-retail-analysis-dataset.png
deleted file mode 100644
index b2ffec3b70..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-retail-analysis-dataset.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-retail-analysis-sample.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-retail-analysis-sample.png
deleted file mode 100644
index e3b61dcaa2..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-retail-analysis-sample.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-search.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-search.png
deleted file mode 100644
index 88a8b40296..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-search.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-powerbi-settings.png b/windows/configuration/cortana-at-work/images/cortana-powerbi-settings.png
deleted file mode 100644
index 0f51229895..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-powerbi-settings.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-redmond-weather.png b/windows/configuration/cortana-at-work/images/cortana-redmond-weather.png
deleted file mode 100644
index 7e8adc1929..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-redmond-weather.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-reminder-edit.png b/windows/configuration/cortana-at-work/images/cortana-reminder-edit.png
deleted file mode 100644
index 79cc280947..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-reminder-edit.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-reminder-list.png b/windows/configuration/cortana-at-work/images/cortana-reminder-list.png
deleted file mode 100644
index 1f57fc0f05..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-reminder-list.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-reminder-mic.png b/windows/configuration/cortana-at-work/images/cortana-reminder-mic.png
deleted file mode 100644
index 46a18e8e0b..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-reminder-mic.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-reminder-pending-mic.png b/windows/configuration/cortana-at-work/images/cortana-reminder-pending-mic.png
deleted file mode 100644
index 159d408e0a..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-reminder-pending-mic.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-reminder-pending.png b/windows/configuration/cortana-at-work/images/cortana-reminder-pending.png
deleted file mode 100644
index a6b64b5621..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-reminder-pending.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-send-email-coworker-mic.png b/windows/configuration/cortana-at-work/images/cortana-send-email-coworker-mic.png
deleted file mode 100644
index 0cfa8fb731..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-send-email-coworker-mic.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-send-email-coworker.png b/windows/configuration/cortana-at-work/images/cortana-send-email-coworker.png
deleted file mode 100644
index 40ce18bdca..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-send-email-coworker.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-suggested-reminder-settings.png b/windows/configuration/cortana-at-work/images/cortana-suggested-reminder-settings.png
deleted file mode 100644
index 176dbff483..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-suggested-reminder-settings.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-suggested-reminder.png b/windows/configuration/cortana-at-work/images/cortana-suggested-reminder.png
deleted file mode 100644
index 4184bd1b6c..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-suggested-reminder.png and /dev/null differ
diff --git a/windows/configuration/cortana-at-work/images/cortana-weather-multipanel.png b/windows/configuration/cortana-at-work/images/cortana-weather-multipanel.png
deleted file mode 100644
index e8db031744..0000000000
Binary files a/windows/configuration/cortana-at-work/images/cortana-weather-multipanel.png and /dev/null differ
diff --git a/windows/configuration/customize-start-menu-layout-windows-11.md b/windows/configuration/customize-start-menu-layout-windows-11.md
index 30b508c5cf..f043da3ecb 100644
--- a/windows/configuration/customize-start-menu-layout-windows-11.md
+++ b/windows/configuration/customize-start-menu-layout-windows-11.md
@@ -1,15 +1,15 @@
 ---
-title: Add or remove pinned apps on the Start menu in Windows 11 | Microsoft Docs
+title: Add or remove pinned apps on the Start menu in Windows 11
 description: Export Start layout to LayoutModification.json with pinned apps, and add or remove pinned apps. Use the JSON text in an MDM policy to deploy a custom Start menu layout to Windows 11 devices.
 manager: aaroncz
+author: lizgt2000
 ms.author: lizlong
 ms.reviewer: ericpapa
 ms.prod: windows-client
-author: lizgt2000
 ms.localizationpriority: medium
 ms.collection: highpri
 ms.technology: itpro-configure
-ms.date: 12/31/2017
+ms.date: 01/10/2023
 ms.topic: article
 ---
 
@@ -31,9 +31,11 @@ This article shows you how to export an existing Start menu layout, and use the
 
 ## Before you begin
 
-- When you customize the Start layout, you overwrite the entire full layout. A partial Start layout isn't available. Users can pin and unpin apps, and uninstall apps from Start. You can't prevent users from changing the layout.
+- When you customize the Start layout, you overwrite the entire full layout. A partial Start layout isn't available. Users can pin and unpin apps, and uninstall apps from Start. When a user signs in or Explorer restarts, Windows reapplies the MDM policy. This action restores the specified layout and doesn't retain any user changes.
 
-- It's recommended to use a Mobile Device Management (MDM) provider. MDM providers help manage your devices, and help manage apps on your devices. You can use Microsoft Intune. Intune is a family of products that include Microsoft Intune, which is a cloud service, and Configuration Manager, which is on-premises.
+  To prevent users from making any changes to the Start menu layout, see the [NoChangeStartMenu](/windows/client-management/mdm/policy-csp-admx-startmenu#admx-startmenu-nochangestartmenu) policy.
+
+- It's recommended to use a mobile device management (MDM) provider. MDM providers help manage your devices, and help manage apps on your devices. You can use Microsoft Intune. Intune is a family of products that include Microsoft Intune, which is a cloud service, and Configuration Manager, which is on-premises.
 
   In this article, we mention these services. If you're not managing your devices using an MDM provider, the following resources may help you get started:
 
diff --git a/windows/configuration/images/ActionCenterXML.jpg b/windows/configuration/images/ActionCenterXML.jpg
deleted file mode 100644
index b9832b2708..0000000000
Binary files a/windows/configuration/images/ActionCenterXML.jpg and /dev/null differ
diff --git a/windows/configuration/images/AppsXML.jpg b/windows/configuration/images/AppsXML.jpg
deleted file mode 100644
index ecc1869bb5..0000000000
Binary files a/windows/configuration/images/AppsXML.jpg and /dev/null differ
diff --git a/windows/configuration/images/AppsXML.png b/windows/configuration/images/AppsXML.png
deleted file mode 100644
index 3981543264..0000000000
Binary files a/windows/configuration/images/AppsXML.png and /dev/null differ
diff --git a/windows/configuration/images/ButtonsXML.jpg b/windows/configuration/images/ButtonsXML.jpg
deleted file mode 100644
index 238eca7e68..0000000000
Binary files a/windows/configuration/images/ButtonsXML.jpg and /dev/null differ
diff --git a/windows/configuration/images/CSPRunnerXML.jpg b/windows/configuration/images/CSPRunnerXML.jpg
deleted file mode 100644
index 071b316a9e..0000000000
Binary files a/windows/configuration/images/CSPRunnerXML.jpg and /dev/null differ
diff --git a/windows/configuration/images/ICDstart-option.PNG b/windows/configuration/images/ICDstart-option.PNG
deleted file mode 100644
index 1ba49bb261..0000000000
Binary files a/windows/configuration/images/ICDstart-option.PNG and /dev/null differ
diff --git a/windows/configuration/images/ISE.PNG b/windows/configuration/images/ISE.PNG
deleted file mode 100644
index edf53101f4..0000000000
Binary files a/windows/configuration/images/ISE.PNG and /dev/null differ
diff --git a/windows/configuration/images/MenuItemsXML.png b/windows/configuration/images/MenuItemsXML.png
deleted file mode 100644
index cc681250bb..0000000000
Binary files a/windows/configuration/images/MenuItemsXML.png and /dev/null differ
diff --git a/windows/configuration/images/PoC-big.png b/windows/configuration/images/PoC-big.png
deleted file mode 100644
index de73506071..0000000000
Binary files a/windows/configuration/images/PoC-big.png and /dev/null differ
diff --git a/windows/configuration/images/PoC.png b/windows/configuration/images/PoC.png
deleted file mode 100644
index 6d7b7eb5af..0000000000
Binary files a/windows/configuration/images/PoC.png and /dev/null differ
diff --git a/windows/configuration/images/SettingsXML.png b/windows/configuration/images/SettingsXML.png
deleted file mode 100644
index 98a324bdea..0000000000
Binary files a/windows/configuration/images/SettingsXML.png and /dev/null differ
diff --git a/windows/configuration/images/Shared_PC_1.jpg b/windows/configuration/images/Shared_PC_1.jpg
deleted file mode 100644
index 7b993b00a8..0000000000
Binary files a/windows/configuration/images/Shared_PC_1.jpg and /dev/null differ
diff --git a/windows/configuration/images/Shared_PC_2.png b/windows/configuration/images/Shared_PC_2.png
deleted file mode 100644
index c9d2362634..0000000000
Binary files a/windows/configuration/images/Shared_PC_2.png and /dev/null differ
diff --git a/windows/configuration/images/Shared_PC_3.png b/windows/configuration/images/Shared_PC_3.png
deleted file mode 100644
index 83b3a66fc8..0000000000
Binary files a/windows/configuration/images/Shared_PC_3.png and /dev/null differ
diff --git a/windows/configuration/images/StartGrid.jpg b/windows/configuration/images/StartGrid.jpg
deleted file mode 100644
index 36136f3201..0000000000
Binary files a/windows/configuration/images/StartGrid.jpg and /dev/null differ
diff --git a/windows/configuration/images/StartGridPinnedApps.jpg b/windows/configuration/images/StartGridPinnedApps.jpg
deleted file mode 100644
index fbade52f53..0000000000
Binary files a/windows/configuration/images/StartGridPinnedApps.jpg and /dev/null differ
diff --git a/windows/configuration/images/TilesXML.png b/windows/configuration/images/TilesXML.png
deleted file mode 100644
index cec52bbbf7..0000000000
Binary files a/windows/configuration/images/TilesXML.png and /dev/null differ
diff --git a/windows/configuration/images/account-management.PNG b/windows/configuration/images/account-management.PNG
deleted file mode 100644
index 34165dfcd6..0000000000
Binary files a/windows/configuration/images/account-management.PNG and /dev/null differ
diff --git a/windows/configuration/images/add-applications.PNG b/windows/configuration/images/add-applications.PNG
deleted file mode 100644
index 2316deb2fd..0000000000
Binary files a/windows/configuration/images/add-applications.PNG and /dev/null differ
diff --git a/windows/configuration/images/add-certificates.PNG b/windows/configuration/images/add-certificates.PNG
deleted file mode 100644
index 24cb605d1c..0000000000
Binary files a/windows/configuration/images/add-certificates.PNG and /dev/null differ
diff --git a/windows/configuration/images/adk-install.png b/windows/configuration/images/adk-install.png
deleted file mode 100644
index c087d3bae5..0000000000
Binary files a/windows/configuration/images/adk-install.png and /dev/null differ
diff --git a/windows/configuration/images/admin-tools-folder.png b/windows/configuration/images/admin-tools-folder.png
deleted file mode 100644
index 4831204f73..0000000000
Binary files a/windows/configuration/images/admin-tools-folder.png and /dev/null differ
diff --git a/windows/configuration/images/admin-tools.png b/windows/configuration/images/admin-tools.png
deleted file mode 100644
index 1470cffdd5..0000000000
Binary files a/windows/configuration/images/admin-tools.png and /dev/null differ
diff --git a/windows/configuration/images/allow-rdp.png b/windows/configuration/images/allow-rdp.png
deleted file mode 100644
index 55c13b53bc..0000000000
Binary files a/windows/configuration/images/allow-rdp.png and /dev/null differ
diff --git a/windows/configuration/images/app-v-in-adk.png b/windows/configuration/images/app-v-in-adk.png
deleted file mode 100644
index a36ef9f00f..0000000000
Binary files a/windows/configuration/images/app-v-in-adk.png and /dev/null differ
diff --git a/windows/configuration/images/apps.png b/windows/configuration/images/apps.png
deleted file mode 100644
index 5cb3b7ec8f..0000000000
Binary files a/windows/configuration/images/apps.png and /dev/null differ
diff --git a/windows/configuration/images/azureadjoined.png b/windows/configuration/images/azureadjoined.png
deleted file mode 100644
index e1babffb8d..0000000000
Binary files a/windows/configuration/images/azureadjoined.png and /dev/null differ
diff --git a/windows/configuration/images/backicon.png b/windows/configuration/images/backicon.png
deleted file mode 100644
index 3007e448b1..0000000000
Binary files a/windows/configuration/images/backicon.png and /dev/null differ
diff --git a/windows/configuration/images/bulk-enroll-mobile-details.PNG b/windows/configuration/images/bulk-enroll-mobile-details.PNG
deleted file mode 100644
index 8329d39cfc..0000000000
Binary files a/windows/configuration/images/bulk-enroll-mobile-details.PNG and /dev/null differ
diff --git a/windows/configuration/images/bulk-enroll-mobile.PNG b/windows/configuration/images/bulk-enroll-mobile.PNG
deleted file mode 100644
index 812b57e8e0..0000000000
Binary files a/windows/configuration/images/bulk-enroll-mobile.PNG and /dev/null differ
diff --git a/windows/configuration/images/check_blu.png b/windows/configuration/images/check_blu.png
deleted file mode 100644
index d5c703760f..0000000000
Binary files a/windows/configuration/images/check_blu.png and /dev/null differ
diff --git a/windows/configuration/images/check_grn.png b/windows/configuration/images/check_grn.png
deleted file mode 100644
index f9f04cd6bd..0000000000
Binary files a/windows/configuration/images/check_grn.png and /dev/null differ
diff --git a/windows/configuration/images/checklistbox.gif b/windows/configuration/images/checklistbox.gif
deleted file mode 100644
index cbcf4a4f11..0000000000
Binary files a/windows/configuration/images/checklistbox.gif and /dev/null differ
diff --git a/windows/configuration/images/checklistdone.png b/windows/configuration/images/checklistdone.png
deleted file mode 100644
index 7e53f74d0e..0000000000
Binary files a/windows/configuration/images/checklistdone.png and /dev/null differ
diff --git a/windows/configuration/images/checkmark.png b/windows/configuration/images/checkmark.png
deleted file mode 100644
index f9f04cd6bd..0000000000
Binary files a/windows/configuration/images/checkmark.png and /dev/null differ
diff --git a/windows/configuration/images/config-policy.png b/windows/configuration/images/config-policy.png
deleted file mode 100644
index b9cba70af6..0000000000
Binary files a/windows/configuration/images/config-policy.png and /dev/null differ
diff --git a/windows/configuration/images/config-source.png b/windows/configuration/images/config-source.png
deleted file mode 100644
index 58938bacf7..0000000000
Binary files a/windows/configuration/images/config-source.png and /dev/null differ
diff --git a/windows/configuration/images/configconflict.png b/windows/configuration/images/configconflict.png
deleted file mode 100644
index 011a2d76e7..0000000000
Binary files a/windows/configuration/images/configconflict.png and /dev/null differ
diff --git a/windows/configuration/images/configmgr-asset.PNG b/windows/configuration/images/configmgr-asset.PNG
deleted file mode 100644
index 4dacaeb565..0000000000
Binary files a/windows/configuration/images/configmgr-asset.PNG and /dev/null differ
diff --git a/windows/configuration/images/configmgr-client.PNG b/windows/configuration/images/configmgr-client.PNG
deleted file mode 100644
index 45e0ad8883..0000000000
Binary files a/windows/configuration/images/configmgr-client.PNG and /dev/null differ
diff --git a/windows/configuration/images/configmgr-collection.PNG b/windows/configuration/images/configmgr-collection.PNG
deleted file mode 100644
index 01a1cca4a8..0000000000
Binary files a/windows/configuration/images/configmgr-collection.PNG and /dev/null differ
diff --git a/windows/configuration/images/configmgr-install-os.PNG b/windows/configuration/images/configmgr-install-os.PNG
deleted file mode 100644
index 53b314b132..0000000000
Binary files a/windows/configuration/images/configmgr-install-os.PNG and /dev/null differ
diff --git a/windows/configuration/images/configmgr-post-refresh.PNG b/windows/configuration/images/configmgr-post-refresh.PNG
deleted file mode 100644
index e116e04312..0000000000
Binary files a/windows/configuration/images/configmgr-post-refresh.PNG and /dev/null differ
diff --git a/windows/configuration/images/configmgr-pxe.PNG b/windows/configuration/images/configmgr-pxe.PNG
deleted file mode 100644
index 39cb22c075..0000000000
Binary files a/windows/configuration/images/configmgr-pxe.PNG and /dev/null differ
diff --git a/windows/configuration/images/configmgr-site.PNG b/windows/configuration/images/configmgr-site.PNG
deleted file mode 100644
index 92319fdbf7..0000000000
Binary files a/windows/configuration/images/configmgr-site.PNG and /dev/null differ
diff --git a/windows/configuration/images/configmgr-software-cntr.PNG b/windows/configuration/images/configmgr-software-cntr.PNG
deleted file mode 100644
index 9c920c6d39..0000000000
Binary files a/windows/configuration/images/configmgr-software-cntr.PNG and /dev/null differ
diff --git a/windows/configuration/images/connect-aad.png b/windows/configuration/images/connect-aad.png
deleted file mode 100644
index 8583866165..0000000000
Binary files a/windows/configuration/images/connect-aad.png and /dev/null differ
diff --git a/windows/configuration/images/convert.png b/windows/configuration/images/convert.png
deleted file mode 100644
index 224e763bc0..0000000000
Binary files a/windows/configuration/images/convert.png and /dev/null differ
diff --git a/windows/configuration/images/copy-to-change.png b/windows/configuration/images/copy-to-change.png
deleted file mode 100644
index 21aa250c0c..0000000000
Binary files a/windows/configuration/images/copy-to-change.png and /dev/null differ
diff --git a/windows/configuration/images/copy-to-path.png b/windows/configuration/images/copy-to-path.png
deleted file mode 100644
index 1ef00fc86b..0000000000
Binary files a/windows/configuration/images/copy-to-path.png and /dev/null differ
diff --git a/windows/configuration/images/copy-to.PNG b/windows/configuration/images/copy-to.PNG
deleted file mode 100644
index dad84cedc8..0000000000
Binary files a/windows/configuration/images/copy-to.PNG and /dev/null differ
diff --git a/windows/configuration/images/cortana-about-me.png b/windows/configuration/images/cortana-about-me.png
deleted file mode 100644
index 32c1ccefab..0000000000
Binary files a/windows/configuration/images/cortana-about-me.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-add-reminder.png b/windows/configuration/images/cortana-add-reminder.png
deleted file mode 100644
index 3f03528e11..0000000000
Binary files a/windows/configuration/images/cortana-add-reminder.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-chicago-weather.png b/windows/configuration/images/cortana-chicago-weather.png
deleted file mode 100644
index 9273bf201b..0000000000
Binary files a/windows/configuration/images/cortana-chicago-weather.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-communication-history-permissions.png b/windows/configuration/images/cortana-communication-history-permissions.png
deleted file mode 100644
index db182be13c..0000000000
Binary files a/windows/configuration/images/cortana-communication-history-permissions.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-complete-send-email-coworker-mic.png b/windows/configuration/images/cortana-complete-send-email-coworker-mic.png
deleted file mode 100644
index 3238c8d31d..0000000000
Binary files a/windows/configuration/images/cortana-complete-send-email-coworker-mic.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-connect-crm.png b/windows/configuration/images/cortana-connect-crm.png
deleted file mode 100644
index c70c42f75e..0000000000
Binary files a/windows/configuration/images/cortana-connect-crm.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-connect-o365.png b/windows/configuration/images/cortana-connect-o365.png
deleted file mode 100644
index df1ffa449b..0000000000
Binary files a/windows/configuration/images/cortana-connect-o365.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-crm-screen.png b/windows/configuration/images/cortana-crm-screen.png
deleted file mode 100644
index ded5d80a59..0000000000
Binary files a/windows/configuration/images/cortana-crm-screen.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-feedback.png b/windows/configuration/images/cortana-feedback.png
deleted file mode 100644
index 6e14018c98..0000000000
Binary files a/windows/configuration/images/cortana-feedback.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-final-reminder.png b/windows/configuration/images/cortana-final-reminder.png
deleted file mode 100644
index f114e058e5..0000000000
Binary files a/windows/configuration/images/cortana-final-reminder.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-meeting-specific-time.png b/windows/configuration/images/cortana-meeting-specific-time.png
deleted file mode 100644
index a108355133..0000000000
Binary files a/windows/configuration/images/cortana-meeting-specific-time.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-meeting-tomorrow.png b/windows/configuration/images/cortana-meeting-tomorrow.png
deleted file mode 100644
index 13273b6600..0000000000
Binary files a/windows/configuration/images/cortana-meeting-tomorrow.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-newyork-weather.png b/windows/configuration/images/cortana-newyork-weather.png
deleted file mode 100644
index b3879737be..0000000000
Binary files a/windows/configuration/images/cortana-newyork-weather.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-o365-screen.png b/windows/configuration/images/cortana-o365-screen.png
deleted file mode 100644
index ba06dd6de5..0000000000
Binary files a/windows/configuration/images/cortana-o365-screen.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-place-reminder.png b/windows/configuration/images/cortana-place-reminder.png
deleted file mode 100644
index 89ccdab3e3..0000000000
Binary files a/windows/configuration/images/cortana-place-reminder.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-create-report.png b/windows/configuration/images/cortana-powerbi-create-report.png
deleted file mode 100644
index a22789d72a..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-create-report.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-expand-nav.png b/windows/configuration/images/cortana-powerbi-expand-nav.png
deleted file mode 100644
index c8b47943f9..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-expand-nav.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-field-selection.png b/windows/configuration/images/cortana-powerbi-field-selection.png
deleted file mode 100644
index 8aef58c23a..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-field-selection.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-getdata-samples.png b/windows/configuration/images/cortana-powerbi-getdata-samples.png
deleted file mode 100644
index 3bfa4792df..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-getdata-samples.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-getdata.png b/windows/configuration/images/cortana-powerbi-getdata.png
deleted file mode 100644
index 55b7b61589..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-getdata.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-myreport.png b/windows/configuration/images/cortana-powerbi-myreport.png
deleted file mode 100644
index cc04d9c6f0..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-myreport.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-pagesize.png b/windows/configuration/images/cortana-powerbi-pagesize.png
deleted file mode 100644
index fd1c1ef917..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-pagesize.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-report-qna.png b/windows/configuration/images/cortana-powerbi-report-qna.png
deleted file mode 100644
index d17949aa8a..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-report-qna.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-retail-analysis-dashboard.png b/windows/configuration/images/cortana-powerbi-retail-analysis-dashboard.png
deleted file mode 100644
index 5b94a2e2fc..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-retail-analysis-dashboard.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-retail-analysis-dataset.png b/windows/configuration/images/cortana-powerbi-retail-analysis-dataset.png
deleted file mode 100644
index b2ffec3b70..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-retail-analysis-dataset.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-retail-analysis-sample.png b/windows/configuration/images/cortana-powerbi-retail-analysis-sample.png
deleted file mode 100644
index e3b61dcaa2..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-retail-analysis-sample.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-search.png b/windows/configuration/images/cortana-powerbi-search.png
deleted file mode 100644
index 88a8b40296..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-search.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-powerbi-settings.png b/windows/configuration/images/cortana-powerbi-settings.png
deleted file mode 100644
index 0f51229895..0000000000
Binary files a/windows/configuration/images/cortana-powerbi-settings.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-redmond-weather.png b/windows/configuration/images/cortana-redmond-weather.png
deleted file mode 100644
index 7e8adc1929..0000000000
Binary files a/windows/configuration/images/cortana-redmond-weather.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-reminder-edit.png b/windows/configuration/images/cortana-reminder-edit.png
deleted file mode 100644
index 79cc280947..0000000000
Binary files a/windows/configuration/images/cortana-reminder-edit.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-reminder-list.png b/windows/configuration/images/cortana-reminder-list.png
deleted file mode 100644
index 1f57fc0f05..0000000000
Binary files a/windows/configuration/images/cortana-reminder-list.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-reminder-mic.png b/windows/configuration/images/cortana-reminder-mic.png
deleted file mode 100644
index 46a18e8e0b..0000000000
Binary files a/windows/configuration/images/cortana-reminder-mic.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-reminder-pending-mic.png b/windows/configuration/images/cortana-reminder-pending-mic.png
deleted file mode 100644
index 159d408e0a..0000000000
Binary files a/windows/configuration/images/cortana-reminder-pending-mic.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-reminder-pending.png b/windows/configuration/images/cortana-reminder-pending.png
deleted file mode 100644
index a6b64b5621..0000000000
Binary files a/windows/configuration/images/cortana-reminder-pending.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-send-email-coworker-mic.png b/windows/configuration/images/cortana-send-email-coworker-mic.png
deleted file mode 100644
index 0cfa8fb731..0000000000
Binary files a/windows/configuration/images/cortana-send-email-coworker-mic.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-send-email-coworker.png b/windows/configuration/images/cortana-send-email-coworker.png
deleted file mode 100644
index 40ce18bdca..0000000000
Binary files a/windows/configuration/images/cortana-send-email-coworker.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-suggested-reminder-settings.png b/windows/configuration/images/cortana-suggested-reminder-settings.png
deleted file mode 100644
index 176dbff483..0000000000
Binary files a/windows/configuration/images/cortana-suggested-reminder-settings.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-suggested-reminder.png b/windows/configuration/images/cortana-suggested-reminder.png
deleted file mode 100644
index 4184bd1b6c..0000000000
Binary files a/windows/configuration/images/cortana-suggested-reminder.png and /dev/null differ
diff --git a/windows/configuration/images/cortana-weather-multipanel.png b/windows/configuration/images/cortana-weather-multipanel.png
deleted file mode 100644
index e8db031744..0000000000
Binary files a/windows/configuration/images/cortana-weather-multipanel.png and /dev/null differ
diff --git a/windows/configuration/images/crossmark.png b/windows/configuration/images/crossmark.png
deleted file mode 100644
index 69432ff71c..0000000000
Binary files a/windows/configuration/images/crossmark.png and /dev/null differ
diff --git a/windows/configuration/images/customize-and-export-start-layout.png b/windows/configuration/images/customize-and-export-start-layout.png
deleted file mode 100644
index 41c81ad4d3..0000000000
Binary files a/windows/configuration/images/customize-and-export-start-layout.png and /dev/null differ
diff --git a/windows/configuration/images/customize-taskbar-windows-11/taskbar-windows-11.png b/windows/configuration/images/customize-taskbar-windows-11/taskbar-windows-11.png
deleted file mode 100644
index 9baebd536f..0000000000
Binary files a/windows/configuration/images/customize-taskbar-windows-11/taskbar-windows-11.png and /dev/null differ
diff --git a/windows/configuration/images/dep-win8-l-usmt-migrationcomparemigstores.gif b/windows/configuration/images/dep-win8-l-usmt-migrationcomparemigstores.gif
deleted file mode 100644
index c23cf5f98c..0000000000
Binary files a/windows/configuration/images/dep-win8-l-usmt-migrationcomparemigstores.gif and /dev/null differ
diff --git a/windows/configuration/images/dep-win8-l-usmt-pcrefresh.jpg b/windows/configuration/images/dep-win8-l-usmt-pcrefresh.jpg
deleted file mode 100644
index 79f874d895..0000000000
Binary files a/windows/configuration/images/dep-win8-l-usmt-pcrefresh.jpg and /dev/null differ
diff --git a/windows/configuration/images/dep-win8-l-usmt-pcreplace.jpg b/windows/configuration/images/dep-win8-l-usmt-pcreplace.jpg
deleted file mode 100644
index 507f783aff..0000000000
Binary files a/windows/configuration/images/dep-win8-l-usmt-pcreplace.jpg and /dev/null differ
diff --git a/windows/configuration/images/dep-win8-l-vamt-findingcomputerdialog.gif b/windows/configuration/images/dep-win8-l-vamt-findingcomputerdialog.gif
deleted file mode 100644
index 3d745d4a77..0000000000
Binary files a/windows/configuration/images/dep-win8-l-vamt-findingcomputerdialog.gif and /dev/null differ
diff --git a/windows/configuration/images/dep-win8-l-vamt-firewallconfigurationformultiplesubnets.gif b/windows/configuration/images/dep-win8-l-vamt-firewallconfigurationformultiplesubnets.gif
deleted file mode 100644
index 21fc338e12..0000000000
Binary files a/windows/configuration/images/dep-win8-l-vamt-firewallconfigurationformultiplesubnets.gif and /dev/null differ
diff --git a/windows/configuration/images/dep-win8-l-vamt-image001-enterprise.jpg b/windows/configuration/images/dep-win8-l-vamt-image001-enterprise.jpg
deleted file mode 100644
index b7a1411562..0000000000
Binary files a/windows/configuration/images/dep-win8-l-vamt-image001-enterprise.jpg and /dev/null differ
diff --git a/windows/configuration/images/dep-win8-l-vamt-makindependentactivationscenario.jpg b/windows/configuration/images/dep-win8-l-vamt-makindependentactivationscenario.jpg
deleted file mode 100644
index 52203b7593..0000000000
Binary files a/windows/configuration/images/dep-win8-l-vamt-makindependentactivationscenario.jpg and /dev/null differ
diff --git a/windows/configuration/images/dep-win8-l-vamt-makproxyactivationscenario.jpg b/windows/configuration/images/dep-win8-l-vamt-makproxyactivationscenario.jpg
deleted file mode 100644
index 3a02a1f17e..0000000000
Binary files a/windows/configuration/images/dep-win8-l-vamt-makproxyactivationscenario.jpg and /dev/null differ
diff --git a/windows/configuration/images/deploy-finish.PNG b/windows/configuration/images/deploy-finish.PNG
deleted file mode 100644
index 4f0d5cb859..0000000000
Binary files a/windows/configuration/images/deploy-finish.PNG and /dev/null differ
diff --git a/windows/configuration/images/deploymentworkflow.png b/windows/configuration/images/deploymentworkflow.png
deleted file mode 100644
index b665a0bfea..0000000000
Binary files a/windows/configuration/images/deploymentworkflow.png and /dev/null differ
diff --git a/windows/configuration/images/developer-setup.PNG b/windows/configuration/images/developer-setup.PNG
deleted file mode 100644
index 8c93d5ed91..0000000000
Binary files a/windows/configuration/images/developer-setup.PNG and /dev/null differ
diff --git a/windows/configuration/images/disk2vhd-convert.PNG b/windows/configuration/images/disk2vhd-convert.PNG
deleted file mode 100644
index f0614a5ab1..0000000000
Binary files a/windows/configuration/images/disk2vhd-convert.PNG and /dev/null differ
diff --git a/windows/configuration/images/disk2vhd-gen2.PNG b/windows/configuration/images/disk2vhd-gen2.PNG
deleted file mode 100644
index 7f8d920f9d..0000000000
Binary files a/windows/configuration/images/disk2vhd-gen2.PNG and /dev/null differ
diff --git a/windows/configuration/images/disk2vhd.PNG b/windows/configuration/images/disk2vhd.PNG
deleted file mode 100644
index 7b9835f5f6..0000000000
Binary files a/windows/configuration/images/disk2vhd.PNG and /dev/null differ
diff --git a/windows/configuration/images/disk2vhd4.PNG b/windows/configuration/images/disk2vhd4.PNG
deleted file mode 100644
index 97f9448441..0000000000
Binary files a/windows/configuration/images/disk2vhd4.PNG and /dev/null differ
diff --git a/windows/configuration/images/doneicon.png b/windows/configuration/images/doneicon.png
deleted file mode 100644
index d80389f35b..0000000000
Binary files a/windows/configuration/images/doneicon.png and /dev/null differ
diff --git a/windows/configuration/images/download_vhd.png b/windows/configuration/images/download_vhd.png
deleted file mode 100644
index 248a512040..0000000000
Binary files a/windows/configuration/images/download_vhd.png and /dev/null differ
diff --git a/windows/configuration/images/e3-activated.png b/windows/configuration/images/e3-activated.png
deleted file mode 100644
index 7cca73443e..0000000000
Binary files a/windows/configuration/images/e3-activated.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-ad-connect.png b/windows/configuration/images/enterprise-e3-ad-connect.png
deleted file mode 100644
index 195058f6f6..0000000000
Binary files a/windows/configuration/images/enterprise-e3-ad-connect.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-choose-how.png b/windows/configuration/images/enterprise-e3-choose-how.png
deleted file mode 100644
index 8e84535bfd..0000000000
Binary files a/windows/configuration/images/enterprise-e3-choose-how.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-connect-to-work-or-school.png b/windows/configuration/images/enterprise-e3-connect-to-work-or-school.png
deleted file mode 100644
index 90e1b1131f..0000000000
Binary files a/windows/configuration/images/enterprise-e3-connect-to-work-or-school.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-lets-get-2.png b/windows/configuration/images/enterprise-e3-lets-get-2.png
deleted file mode 100644
index ef523d4af8..0000000000
Binary files a/windows/configuration/images/enterprise-e3-lets-get-2.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-lets-get.png b/windows/configuration/images/enterprise-e3-lets-get.png
deleted file mode 100644
index 582da1ab2d..0000000000
Binary files a/windows/configuration/images/enterprise-e3-lets-get.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-set-up-work-or-school.png b/windows/configuration/images/enterprise-e3-set-up-work-or-school.png
deleted file mode 100644
index 72844d7622..0000000000
Binary files a/windows/configuration/images/enterprise-e3-set-up-work-or-school.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-sign-in.png b/windows/configuration/images/enterprise-e3-sign-in.png
deleted file mode 100644
index 3029d3ef2b..0000000000
Binary files a/windows/configuration/images/enterprise-e3-sign-in.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-who-owns.png b/windows/configuration/images/enterprise-e3-who-owns.png
deleted file mode 100644
index c3008869d2..0000000000
Binary files a/windows/configuration/images/enterprise-e3-who-owns.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-win-10-activated-enterprise-subscription-active.png b/windows/configuration/images/enterprise-e3-win-10-activated-enterprise-subscription-active.png
deleted file mode 100644
index eb888b23b5..0000000000
Binary files a/windows/configuration/images/enterprise-e3-win-10-activated-enterprise-subscription-active.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-win-10-activated-enterprise-subscription-not-active.png b/windows/configuration/images/enterprise-e3-win-10-activated-enterprise-subscription-not-active.png
deleted file mode 100644
index e4ac7398be..0000000000
Binary files a/windows/configuration/images/enterprise-e3-win-10-activated-enterprise-subscription-not-active.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-win-10-not-activated-enterprise-subscription-active.png b/windows/configuration/images/enterprise-e3-win-10-not-activated-enterprise-subscription-active.png
deleted file mode 100644
index 5fedfe5d06..0000000000
Binary files a/windows/configuration/images/enterprise-e3-win-10-not-activated-enterprise-subscription-active.png and /dev/null differ
diff --git a/windows/configuration/images/enterprise-e3-win-10-not-activated-enterprise-subscription-not-active.png b/windows/configuration/images/enterprise-e3-win-10-not-activated-enterprise-subscription-not-active.png
deleted file mode 100644
index 84e39071db..0000000000
Binary files a/windows/configuration/images/enterprise-e3-win-10-not-activated-enterprise-subscription-not-active.png and /dev/null differ
diff --git a/windows/configuration/images/export-mgt-desktop.png b/windows/configuration/images/export-mgt-desktop.png
deleted file mode 100644
index 13349c3b4e..0000000000
Binary files a/windows/configuration/images/export-mgt-desktop.png and /dev/null differ
diff --git a/windows/configuration/images/export-mgt-mobile.png b/windows/configuration/images/export-mgt-mobile.png
deleted file mode 100644
index 6a74c23e59..0000000000
Binary files a/windows/configuration/images/export-mgt-mobile.png and /dev/null differ
diff --git a/windows/configuration/images/express-settings.png b/windows/configuration/images/express-settings.png
deleted file mode 100644
index 99e9c4825a..0000000000
Binary files a/windows/configuration/images/express-settings.png and /dev/null differ
diff --git a/windows/configuration/images/fig1-deferupgrades.png b/windows/configuration/images/fig1-deferupgrades.png
deleted file mode 100644
index f8c52b943e..0000000000
Binary files a/windows/configuration/images/fig1-deferupgrades.png and /dev/null differ
diff --git a/windows/configuration/images/fig10-contosoinstall.png b/windows/configuration/images/fig10-contosoinstall.png
deleted file mode 100644
index ac4eaf2aa0..0000000000
Binary files a/windows/configuration/images/fig10-contosoinstall.png and /dev/null differ
diff --git a/windows/configuration/images/fig10-unattend.png b/windows/configuration/images/fig10-unattend.png
deleted file mode 100644
index a9d2bc16df..0000000000
Binary files a/windows/configuration/images/fig10-unattend.png and /dev/null differ
diff --git a/windows/configuration/images/fig13-captureimage.png b/windows/configuration/images/fig13-captureimage.png
deleted file mode 100644
index 678a43ca73..0000000000
Binary files a/windows/configuration/images/fig13-captureimage.png and /dev/null differ
diff --git a/windows/configuration/images/fig16-contentstatus.png b/windows/configuration/images/fig16-contentstatus.png
deleted file mode 100644
index 5ea8ba275a..0000000000
Binary files a/windows/configuration/images/fig16-contentstatus.png and /dev/null differ
diff --git a/windows/configuration/images/fig17-win10image.png b/windows/configuration/images/fig17-win10image.png
deleted file mode 100644
index d16eee554d..0000000000
Binary files a/windows/configuration/images/fig17-win10image.png and /dev/null differ
diff --git a/windows/configuration/images/fig18-distwindows.png b/windows/configuration/images/fig18-distwindows.png
deleted file mode 100644
index d8525ddd3e..0000000000
Binary files a/windows/configuration/images/fig18-distwindows.png and /dev/null differ
diff --git a/windows/configuration/images/fig2-deploymenttimeline.png b/windows/configuration/images/fig2-deploymenttimeline.png
deleted file mode 100644
index a8061d2f15..0000000000
Binary files a/windows/configuration/images/fig2-deploymenttimeline.png and /dev/null differ
diff --git a/windows/configuration/images/fig2-gather.png b/windows/configuration/images/fig2-gather.png
deleted file mode 100644
index 01ffca2770..0000000000
Binary files a/windows/configuration/images/fig2-gather.png and /dev/null differ
diff --git a/windows/configuration/images/fig2-importedos.png b/windows/configuration/images/fig2-importedos.png
deleted file mode 100644
index ed72d2ef4d..0000000000
Binary files a/windows/configuration/images/fig2-importedos.png and /dev/null differ
diff --git a/windows/configuration/images/fig2-taskseq.png b/windows/configuration/images/fig2-taskseq.png
deleted file mode 100644
index 1da70bd6e7..0000000000
Binary files a/windows/configuration/images/fig2-taskseq.png and /dev/null differ
diff --git a/windows/configuration/images/fig21-add-drivers.png b/windows/configuration/images/fig21-add-drivers.png
deleted file mode 100644
index f53fe672e2..0000000000
Binary files a/windows/configuration/images/fig21-add-drivers.png and /dev/null differ
diff --git a/windows/configuration/images/fig22-createcategories.png b/windows/configuration/images/fig22-createcategories.png
deleted file mode 100644
index 8912ad974f..0000000000
Binary files a/windows/configuration/images/fig22-createcategories.png and /dev/null differ
diff --git a/windows/configuration/images/fig27-driverpackage.png b/windows/configuration/images/fig27-driverpackage.png
deleted file mode 100644
index c2f66669be..0000000000
Binary files a/windows/configuration/images/fig27-driverpackage.png and /dev/null differ
diff --git a/windows/configuration/images/fig28-addapp.png b/windows/configuration/images/fig28-addapp.png
deleted file mode 100644
index a7ba6b3709..0000000000
Binary files a/windows/configuration/images/fig28-addapp.png and /dev/null differ
diff --git a/windows/configuration/images/fig3-overlaprelease.png b/windows/configuration/images/fig3-overlaprelease.png
deleted file mode 100644
index 58747a35cf..0000000000
Binary files a/windows/configuration/images/fig3-overlaprelease.png and /dev/null differ
diff --git a/windows/configuration/images/fig30-settingspack.png b/windows/configuration/images/fig30-settingspack.png
deleted file mode 100644
index 3479184140..0000000000
Binary files a/windows/configuration/images/fig30-settingspack.png and /dev/null differ
diff --git a/windows/configuration/images/fig32-deploywiz.png b/windows/configuration/images/fig32-deploywiz.png
deleted file mode 100644
index a1387b19d8..0000000000
Binary files a/windows/configuration/images/fig32-deploywiz.png and /dev/null differ
diff --git a/windows/configuration/images/fig4-oob-drivers.png b/windows/configuration/images/fig4-oob-drivers.png
deleted file mode 100644
index b1f6924665..0000000000
Binary files a/windows/configuration/images/fig4-oob-drivers.png and /dev/null differ
diff --git a/windows/configuration/images/fig5-selectprofile.png b/windows/configuration/images/fig5-selectprofile.png
deleted file mode 100644
index 452ab4f581..0000000000
Binary files a/windows/configuration/images/fig5-selectprofile.png and /dev/null differ
diff --git a/windows/configuration/images/fig6-taskseq.png b/windows/configuration/images/fig6-taskseq.png
deleted file mode 100644
index 8696cc04c4..0000000000
Binary files a/windows/configuration/images/fig6-taskseq.png and /dev/null differ
diff --git a/windows/configuration/images/fig8-cust-tasks.png b/windows/configuration/images/fig8-cust-tasks.png
deleted file mode 100644
index 378215ee2b..0000000000
Binary files a/windows/configuration/images/fig8-cust-tasks.png and /dev/null differ
diff --git a/windows/configuration/images/fig8-suspend.png b/windows/configuration/images/fig8-suspend.png
deleted file mode 100644
index 8094f01274..0000000000
Binary files a/windows/configuration/images/fig8-suspend.png and /dev/null differ
diff --git a/windows/configuration/images/fig9-resumetaskseq.png b/windows/configuration/images/fig9-resumetaskseq.png
deleted file mode 100644
index 0a83019f69..0000000000
Binary files a/windows/configuration/images/fig9-resumetaskseq.png and /dev/null differ
diff --git a/windows/configuration/images/figure4-deployment-workbench.png b/windows/configuration/images/figure4-deployment-workbench.png
deleted file mode 100644
index b5d0e7cc32..0000000000
Binary files a/windows/configuration/images/figure4-deployment-workbench.png and /dev/null differ
diff --git a/windows/configuration/images/finish-details-mobile.PNG b/windows/configuration/images/finish-details-mobile.PNG
deleted file mode 100644
index c25a6b4b2f..0000000000
Binary files a/windows/configuration/images/finish-details-mobile.PNG and /dev/null differ
diff --git a/windows/configuration/images/finish-mobile.PNG b/windows/configuration/images/finish-mobile.PNG
deleted file mode 100644
index 336e24289e..0000000000
Binary files a/windows/configuration/images/finish-mobile.PNG and /dev/null differ
diff --git a/windows/configuration/images/finish.PNG b/windows/configuration/images/finish.PNG
deleted file mode 100644
index 7c65da1799..0000000000
Binary files a/windows/configuration/images/finish.PNG and /dev/null differ
diff --git a/windows/configuration/images/five.png b/windows/configuration/images/five.png
deleted file mode 100644
index 961f0e15b7..0000000000
Binary files a/windows/configuration/images/five.png and /dev/null differ
diff --git a/windows/configuration/images/four.png b/windows/configuration/images/four.png
deleted file mode 100644
index 0fef213b37..0000000000
Binary files a/windows/configuration/images/four.png and /dev/null differ
diff --git a/windows/configuration/images/gp-branch.png b/windows/configuration/images/gp-branch.png
deleted file mode 100644
index 997bcc830a..0000000000
Binary files a/windows/configuration/images/gp-branch.png and /dev/null differ
diff --git a/windows/configuration/images/gp-exclude-drivers.png b/windows/configuration/images/gp-exclude-drivers.png
deleted file mode 100644
index 0010749139..0000000000
Binary files a/windows/configuration/images/gp-exclude-drivers.png and /dev/null differ
diff --git a/windows/configuration/images/gp-feature.png b/windows/configuration/images/gp-feature.png
deleted file mode 100644
index b862d545d4..0000000000
Binary files a/windows/configuration/images/gp-feature.png and /dev/null differ
diff --git a/windows/configuration/images/gp-quality.png b/windows/configuration/images/gp-quality.png
deleted file mode 100644
index d7ff30172d..0000000000
Binary files a/windows/configuration/images/gp-quality.png and /dev/null differ
diff --git a/windows/configuration/images/hyper-v-feature.png b/windows/configuration/images/hyper-v-feature.png
deleted file mode 100644
index d7293d808e..0000000000
Binary files a/windows/configuration/images/hyper-v-feature.png and /dev/null differ
diff --git a/windows/configuration/images/icd-adv-shared-pc.PNG b/windows/configuration/images/icd-adv-shared-pc.PNG
deleted file mode 100644
index a8da5fa78a..0000000000
Binary files a/windows/configuration/images/icd-adv-shared-pc.PNG and /dev/null differ
diff --git a/windows/configuration/images/icd-create-options.PNG b/windows/configuration/images/icd-create-options.PNG
deleted file mode 100644
index e61cdd8fc0..0000000000
Binary files a/windows/configuration/images/icd-create-options.PNG and /dev/null differ
diff --git a/windows/configuration/images/icd-install.PNG b/windows/configuration/images/icd-install.PNG
deleted file mode 100644
index a0c80683ff..0000000000
Binary files a/windows/configuration/images/icd-install.PNG and /dev/null differ
diff --git a/windows/configuration/images/icd-school.PNG b/windows/configuration/images/icd-school.PNG
deleted file mode 100644
index e6a944a193..0000000000
Binary files a/windows/configuration/images/icd-school.PNG and /dev/null differ
diff --git a/windows/configuration/images/icd-settings.PNG b/windows/configuration/images/icd-settings.PNG
deleted file mode 100644
index 8d3ebc3ff6..0000000000
Binary files a/windows/configuration/images/icd-settings.PNG and /dev/null differ
diff --git a/windows/configuration/images/icd-simple.PNG b/windows/configuration/images/icd-simple.PNG
deleted file mode 100644
index 7ae8a1728b..0000000000
Binary files a/windows/configuration/images/icd-simple.PNG and /dev/null differ
diff --git a/windows/configuration/images/icdbrowse.png b/windows/configuration/images/icdbrowse.png
deleted file mode 100644
index 53c91074c7..0000000000
Binary files a/windows/configuration/images/icdbrowse.png and /dev/null differ
diff --git a/windows/configuration/images/icons/accessibility.svg b/windows/configuration/images/icons/accessibility.svg
deleted file mode 100644
index 21a6b4f235..0000000000
--- a/windows/configuration/images/icons/accessibility.svg
+++ /dev/null
@@ -1,3 +0,0 @@
-<svg width="18" height="18" viewBox="0 0 18 18" fill="none" xmlns="http://www.w3.org/2000/svg">
-  <path d="M6.75001 3.25C6.75001 2.55964 7.30966 2 8.00001 2C8.69037 2 9.25001 2.55964 9.25001 3.25C9.25001 3.94036 8.69037 4.5 8.00001 4.5C7.30966 4.5 6.75001 3.94036 6.75001 3.25ZM8.00001 1C6.75737 1 5.75001 2.00736 5.75001 3.25C5.75001 3.42769 5.77061 3.60057 5.80955 3.76638L4.1981 3.11531C3.38523 2.78689 2.45661 3.17707 2.12226 3.98751C1.78682 4.8006 2.17658 5.72824 2.9921 6.05773L5 6.86897L5 9.25304L3.18661 12.6635C2.77397 13.4396 3.06858 14.4032 3.84463 14.8158C4.62069 15.2285 5.58431 14.9339 5.99695 14.1578L8.00028 10.3901L10.0037 14.158C10.4163 14.934 11.3799 15.2286 12.156 14.816C12.9321 14.4034 13.2267 13.4397 12.814 12.6637L11 9.252V6.86897L13.0079 6.05773C13.8234 5.72824 14.2132 4.80059 13.8777 3.98751C13.5434 3.17707 12.6148 2.78689 11.8019 3.11531L10.1905 3.76636C10.2294 3.60055 10.25 3.42768 10.25 3.25C10.25 2.00736 9.24265 1 8.00001 1ZM3.04668 4.36889C3.17149 4.06635 3.52005 3.91989 3.82349 4.04249L7.25078 5.42721C7.73138 5.62138 8.2686 5.62138 8.74921 5.42721L12.1765 4.04249C12.4799 3.91989 12.8285 4.06635 12.9533 4.36889C13.077 4.66879 12.9341 5.00902 12.6333 5.13055L10.6254 5.94179C10.2474 6.09449 10 6.46133 10 6.86897V9.252C10 9.41571 10.0402 9.57692 10.1171 9.72147L11.9311 13.1332C12.0844 13.4216 11.9749 13.7797 11.6865 13.9331C11.3981 14.0864 11.04 13.9769 10.8866 13.6885L8.88322 9.92064C8.50711 9.21327 7.49344 9.21326 7.11733 9.92064L5.114 13.6883C4.96065 13.9768 4.60252 14.0863 4.31411 13.9329C4.02569 13.7795 3.9162 13.4214 4.06955 13.133L5.88295 9.72251C5.9598 9.57796 6 9.41675 6 9.25304V6.86897C6 6.46133 5.75256 6.09449 5.3746 5.94179L3.3667 5.13055C3.06591 5.00902 2.92295 4.66879 3.04668 4.36889Z" fill="#0078D4" />
-</svg>
\ No newline at end of file
diff --git a/windows/configuration/images/icons/group-policy.svg b/windows/configuration/images/icons/group-policy.svg
deleted file mode 100644
index ace95add6b..0000000000
--- a/windows/configuration/images/icons/group-policy.svg
+++ /dev/null
@@ -1,3 +0,0 @@
-<svg xmlns="http://www.w3.org/2000/svg" width="18" height="18" viewBox="0 0 2048 2048">
-  <path d="M1792 0q53 0 99 20t82 55 55 81 20 100q0 53-20 99t-55 82-81 55-100 20h-128v1280q0 53-20 99t-55 82-81 55-100 20H256q-53 0-99-20t-82-55-55-81-20-100q0-53 20-99t55-82 81-55 100-20V256q0-53 20-99t55-82 81-55T512 0h1280zM128 1792q0 27 10 50t27 40 41 28 50 10h930q-34-60-34-128t34-128H256q-27 0-50 10t-40 27-28 41-10 50zm1280 128q27 0 50-10t40-27 28-41 10-50V256q0-68 34-128H512q-27 0-50 10t-40 27-28 41-10 50v1280h1024q26 0 45 19t19 45q0 26-19 45t-45 19q-25 0-49 9t-42 28q-18 18-27 42t-10 49q0 27 10 50t27 40 41 28 50 10zm384-1536q27 0 50-10t40-27 28-41 10-50q0-27-10-50t-27-40-41-28-50-10q-27 0-50 10t-40 27-28 41-10 50v128h128zm-1280 0h896v128H512V384zm0 256h256v128H512V640zm0 256h256v128H512V896zm0 256h256v128H512v-128zm640-512q53 0 99 20t82 55 55 81 20 100q0 17-4 33t-4 31v539l-248-124-248 124V960q0-14-4-30t-4-34q0-53 20-99t55-82 81-55 100-20zm0 128q-27 0-50 10t-40 27-28 41-10 50q0 27 10 50t27 40 41 28 50 10q27 0 50-10t40-27 28-41 10-50q0-27-10-50t-27-40-41-28-50-10zm136 549v-204q-30 20-65 29t-71 10q-36 0-71-9t-65-30v204l136-68 136 68z" fill="#0078D4" />
-</svg>
\ No newline at end of file
diff --git a/windows/configuration/images/icons/registry.svg b/windows/configuration/images/icons/registry.svg
deleted file mode 100644
index 06ab4c09d7..0000000000
--- a/windows/configuration/images/icons/registry.svg
+++ /dev/null
@@ -1,22 +0,0 @@
-<svg id="b9b1f1bd-1131-4ac5-b607-ad500ee51398" data-name="fluent_icons" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" width="18" height="18" viewBox="0 0 18 18">
-  <defs>
-    <linearGradient id="b0b22e7a-bfc7-4dec-91e9-5f981ed97407" x1="8.55" y1="0.41" x2="8.48" y2="18.62" gradientUnits="userSpaceOnUse">
-      <stop offset="0" stop-color="#76bc2d" />
-      <stop offset="0.32" stop-color="#73b82c" />
-      <stop offset="0.65" stop-color="#6cab29" />
-      <stop offset="0.99" stop-color="#5e9724" />
-      <stop offset="1" stop-color="#5e9624" />
-    </linearGradient>
-    <linearGradient id="e827adc5-7c19-488a-9b2c-abb70d46ae5e" x1="14.75" y1="5.9" x2="14.75" y2="1.1" gradientTransform="translate(18.1 -11.21) rotate(90)" gradientUnits="userSpaceOnUse">
-      <stop offset="0" stop-color="#0078d4" />
-      <stop offset="0.17" stop-color="#1c84dc" />
-      <stop offset="0.38" stop-color="#3990e4" />
-      <stop offset="0.59" stop-color="#4d99ea" />
-      <stop offset="0.8" stop-color="#5a9eee" />
-      <stop offset="1" stop-color="#5ea0ef" />
-    </linearGradient>
-  </defs>
-  <title>Icon-general-18</title>
-  <path d="M6.27,13.29h4.49v4.49H6.27ZM1,3.43V7.3h4.5V2.81H1.65A.63.63,0,0,0,1,3.43ZM1,17.16a.63.63,0,0,0,.63.62H5.52V13.29H1Zm0-4.62h4.5V8.05H1Zm10.49,5.24h3.87a.62.62,0,0,0,.62-.62V13.29H11.51ZM6.27,12.54h4.49V8.05H6.27Zm5.24-4.49v4.49H16V8.05ZM6.27,7.3h4.49V2.81H6.27Z" fill="url(#b0b22e7a-bfc7-4dec-91e9-5f981ed97407)" />
-  <rect x="12.2" y="1.14" width="4.8" height="4.8" rx="0.25" transform="translate(5.14 15.21) rotate(-64.59)" fill="url(#e827adc5-7c19-488a-9b2c-abb70d46ae5e)" />
-</svg>
\ No newline at end of file
diff --git a/windows/configuration/images/icons/windows-os.svg b/windows/configuration/images/icons/windows-os.svg
deleted file mode 100644
index da64baf975..0000000000
--- a/windows/configuration/images/icons/windows-os.svg
+++ /dev/null
@@ -1,3 +0,0 @@
-<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 2048 2048" width="18" height="18" >
-  <path d="M0 0h961v961H0V0zm1087 0h961v961h-961V0zM0 1087h961v961H0v-961zm1087 0h961v961h-961v-961z" fill="#0078D4" />
-</svg>
\ No newline at end of file
diff --git a/windows/configuration/images/identitychoices.png b/windows/configuration/images/identitychoices.png
deleted file mode 100644
index 9a69c04f20..0000000000
Binary files a/windows/configuration/images/identitychoices.png and /dev/null differ
diff --git a/windows/configuration/images/image.PNG b/windows/configuration/images/image.PNG
deleted file mode 100644
index 0bbadcb68f..0000000000
Binary files a/windows/configuration/images/image.PNG and /dev/null differ
diff --git a/windows/configuration/images/installing-drivers.png b/windows/configuration/images/installing-drivers.png
deleted file mode 100644
index 22d7808fad..0000000000
Binary files a/windows/configuration/images/installing-drivers.png and /dev/null differ
diff --git a/windows/configuration/images/kiosk-intune.PNG b/windows/configuration/images/kiosk-intune.PNG
deleted file mode 100644
index 2cbe25c6a5..0000000000
Binary files a/windows/configuration/images/kiosk-intune.PNG and /dev/null differ
diff --git a/windows/configuration/images/launchicon.png b/windows/configuration/images/launchicon.png
deleted file mode 100644
index d469c68a2c..0000000000
Binary files a/windows/configuration/images/launchicon.png and /dev/null differ
diff --git a/windows/configuration/images/ld-apps.PNG b/windows/configuration/images/ld-apps.PNG
deleted file mode 100644
index ef65ff9a52..0000000000
Binary files a/windows/configuration/images/ld-apps.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-buttons.PNG b/windows/configuration/images/ld-buttons.PNG
deleted file mode 100644
index d89eff3b35..0000000000
Binary files a/windows/configuration/images/ld-buttons.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-connect.PNG b/windows/configuration/images/ld-connect.PNG
deleted file mode 100644
index 15094b0e2b..0000000000
Binary files a/windows/configuration/images/ld-connect.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-csp.PNG b/windows/configuration/images/ld-csp.PNG
deleted file mode 100644
index 6d7caa5163..0000000000
Binary files a/windows/configuration/images/ld-csp.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-export.PNG b/windows/configuration/images/ld-export.PNG
deleted file mode 100644
index 970e5939bc..0000000000
Binary files a/windows/configuration/images/ld-export.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-other.PNG b/windows/configuration/images/ld-other.PNG
deleted file mode 100644
index c8b5f7518a..0000000000
Binary files a/windows/configuration/images/ld-other.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-pair.PNG b/windows/configuration/images/ld-pair.PNG
deleted file mode 100644
index 0859810e73..0000000000
Binary files a/windows/configuration/images/ld-pair.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-quick.PNG b/windows/configuration/images/ld-quick.PNG
deleted file mode 100644
index 63a6173103..0000000000
Binary files a/windows/configuration/images/ld-quick.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-role.PNG b/windows/configuration/images/ld-role.PNG
deleted file mode 100644
index b229af1a17..0000000000
Binary files a/windows/configuration/images/ld-role.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-settings.PNG b/windows/configuration/images/ld-settings.PNG
deleted file mode 100644
index eb6a37d925..0000000000
Binary files a/windows/configuration/images/ld-settings.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-start.PNG b/windows/configuration/images/ld-start.PNG
deleted file mode 100644
index 4081f3e1e2..0000000000
Binary files a/windows/configuration/images/ld-start.PNG and /dev/null differ
diff --git a/windows/configuration/images/ld-sync.PNG b/windows/configuration/images/ld-sync.PNG
deleted file mode 100644
index 3f54d910ac..0000000000
Binary files a/windows/configuration/images/ld-sync.PNG and /dev/null differ
diff --git a/windows/configuration/images/ldstore.PNG b/windows/configuration/images/ldstore.PNG
deleted file mode 100644
index 63f0eedee7..0000000000
Binary files a/windows/configuration/images/ldstore.PNG and /dev/null differ
diff --git a/windows/configuration/images/license-terms.png b/windows/configuration/images/license-terms.png
deleted file mode 100644
index 8dd34b0a18..0000000000
Binary files a/windows/configuration/images/license-terms.png and /dev/null differ
diff --git a/windows/configuration/images/lily.jpg b/windows/configuration/images/lily.jpg
deleted file mode 100644
index eb144d1f2b..0000000000
Binary files a/windows/configuration/images/lily.jpg and /dev/null differ
diff --git a/windows/configuration/images/mdm-diag-report-powershell.PNG b/windows/configuration/images/mdm-diag-report-powershell.PNG
deleted file mode 100644
index 86f5b49211..0000000000
Binary files a/windows/configuration/images/mdm-diag-report-powershell.PNG and /dev/null differ
diff --git a/windows/configuration/images/mdm.png b/windows/configuration/images/mdm.png
deleted file mode 100644
index 8ebcc00526..0000000000
Binary files a/windows/configuration/images/mdm.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-01-fig01.png b/windows/configuration/images/mdt-01-fig01.png
deleted file mode 100644
index d7f8c4e452..0000000000
Binary files a/windows/configuration/images/mdt-01-fig01.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-01-fig02.jpg b/windows/configuration/images/mdt-01-fig02.jpg
deleted file mode 100644
index 1533bdd336..0000000000
Binary files a/windows/configuration/images/mdt-01-fig02.jpg and /dev/null differ
diff --git a/windows/configuration/images/mdt-03-fig01.png b/windows/configuration/images/mdt-03-fig01.png
deleted file mode 100644
index fc68fb0c25..0000000000
Binary files a/windows/configuration/images/mdt-03-fig01.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-03-fig02.png b/windows/configuration/images/mdt-03-fig02.png
deleted file mode 100644
index d0fd979449..0000000000
Binary files a/windows/configuration/images/mdt-03-fig02.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-03-fig03.png b/windows/configuration/images/mdt-03-fig03.png
deleted file mode 100644
index ba1de39aa0..0000000000
Binary files a/windows/configuration/images/mdt-03-fig03.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-03-fig04.png b/windows/configuration/images/mdt-03-fig04.png
deleted file mode 100644
index 26600a2036..0000000000
Binary files a/windows/configuration/images/mdt-03-fig04.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-03-fig05.png b/windows/configuration/images/mdt-03-fig05.png
deleted file mode 100644
index 9c44837022..0000000000
Binary files a/windows/configuration/images/mdt-03-fig05.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-04-fig01.png b/windows/configuration/images/mdt-04-fig01.png
deleted file mode 100644
index 8a90c1a934..0000000000
Binary files a/windows/configuration/images/mdt-04-fig01.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-05-fig01.png b/windows/configuration/images/mdt-05-fig01.png
deleted file mode 100644
index 490f1579d9..0000000000
Binary files a/windows/configuration/images/mdt-05-fig01.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-05-fig02.png b/windows/configuration/images/mdt-05-fig02.png
deleted file mode 100644
index 1223432581..0000000000
Binary files a/windows/configuration/images/mdt-05-fig02.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-05-fig03.png b/windows/configuration/images/mdt-05-fig03.png
deleted file mode 100644
index a0ffbec429..0000000000
Binary files a/windows/configuration/images/mdt-05-fig03.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-05-fig04.png b/windows/configuration/images/mdt-05-fig04.png
deleted file mode 100644
index 778cbae1b7..0000000000
Binary files a/windows/configuration/images/mdt-05-fig04.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-05-fig05.png b/windows/configuration/images/mdt-05-fig05.png
deleted file mode 100644
index e172a29754..0000000000
Binary files a/windows/configuration/images/mdt-05-fig05.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-05-fig07.png b/windows/configuration/images/mdt-05-fig07.png
deleted file mode 100644
index 135a2367c1..0000000000
Binary files a/windows/configuration/images/mdt-05-fig07.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-05-fig08.png b/windows/configuration/images/mdt-05-fig08.png
deleted file mode 100644
index 1f4534e89b..0000000000
Binary files a/windows/configuration/images/mdt-05-fig08.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-05-fig09.png b/windows/configuration/images/mdt-05-fig09.png
deleted file mode 100644
index a3d0155096..0000000000
Binary files a/windows/configuration/images/mdt-05-fig09.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-05-fig10.png b/windows/configuration/images/mdt-05-fig10.png
deleted file mode 100644
index 576da23ea6..0000000000
Binary files a/windows/configuration/images/mdt-05-fig10.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig01.png b/windows/configuration/images/mdt-06-fig01.png
deleted file mode 100644
index 466cfda0f4..0000000000
Binary files a/windows/configuration/images/mdt-06-fig01.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig03.png b/windows/configuration/images/mdt-06-fig03.png
deleted file mode 100644
index 9d2786e46a..0000000000
Binary files a/windows/configuration/images/mdt-06-fig03.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig04.png b/windows/configuration/images/mdt-06-fig04.png
deleted file mode 100644
index 216e1f371b..0000000000
Binary files a/windows/configuration/images/mdt-06-fig04.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig05.png b/windows/configuration/images/mdt-06-fig05.png
deleted file mode 100644
index 3af74bb5ee..0000000000
Binary files a/windows/configuration/images/mdt-06-fig05.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig06.png b/windows/configuration/images/mdt-06-fig06.png
deleted file mode 100644
index 324c8960c1..0000000000
Binary files a/windows/configuration/images/mdt-06-fig06.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig07.png b/windows/configuration/images/mdt-06-fig07.png
deleted file mode 100644
index 399fac75f6..0000000000
Binary files a/windows/configuration/images/mdt-06-fig07.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig08.png b/windows/configuration/images/mdt-06-fig08.png
deleted file mode 100644
index 33cb90327a..0000000000
Binary files a/windows/configuration/images/mdt-06-fig08.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig10.png b/windows/configuration/images/mdt-06-fig10.png
deleted file mode 100644
index 1d92505b96..0000000000
Binary files a/windows/configuration/images/mdt-06-fig10.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig12.png b/windows/configuration/images/mdt-06-fig12.png
deleted file mode 100644
index f33eca6174..0000000000
Binary files a/windows/configuration/images/mdt-06-fig12.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig13.png b/windows/configuration/images/mdt-06-fig13.png
deleted file mode 100644
index ab578f69fe..0000000000
Binary files a/windows/configuration/images/mdt-06-fig13.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig14.png b/windows/configuration/images/mdt-06-fig14.png
deleted file mode 100644
index 13158231fd..0000000000
Binary files a/windows/configuration/images/mdt-06-fig14.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig15.png b/windows/configuration/images/mdt-06-fig15.png
deleted file mode 100644
index 2f1a0eba18..0000000000
Binary files a/windows/configuration/images/mdt-06-fig15.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig16.png b/windows/configuration/images/mdt-06-fig16.png
deleted file mode 100644
index 40cb46adbd..0000000000
Binary files a/windows/configuration/images/mdt-06-fig16.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig20.png b/windows/configuration/images/mdt-06-fig20.png
deleted file mode 100644
index 475fad7597..0000000000
Binary files a/windows/configuration/images/mdt-06-fig20.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig21.png b/windows/configuration/images/mdt-06-fig21.png
deleted file mode 100644
index 7cbd1d20bc..0000000000
Binary files a/windows/configuration/images/mdt-06-fig21.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig26.png b/windows/configuration/images/mdt-06-fig26.png
deleted file mode 100644
index fc56839b14..0000000000
Binary files a/windows/configuration/images/mdt-06-fig26.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig31.png b/windows/configuration/images/mdt-06-fig31.png
deleted file mode 100644
index 5e98d623b1..0000000000
Binary files a/windows/configuration/images/mdt-06-fig31.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig33.png b/windows/configuration/images/mdt-06-fig33.png
deleted file mode 100644
index 18ae4c82dd..0000000000
Binary files a/windows/configuration/images/mdt-06-fig33.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig35.png b/windows/configuration/images/mdt-06-fig35.png
deleted file mode 100644
index a68750925d..0000000000
Binary files a/windows/configuration/images/mdt-06-fig35.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig36.png b/windows/configuration/images/mdt-06-fig36.png
deleted file mode 100644
index a8350244bd..0000000000
Binary files a/windows/configuration/images/mdt-06-fig36.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig37.png b/windows/configuration/images/mdt-06-fig37.png
deleted file mode 100644
index 5a89f2f431..0000000000
Binary files a/windows/configuration/images/mdt-06-fig37.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig39.png b/windows/configuration/images/mdt-06-fig39.png
deleted file mode 100644
index 650aec9a30..0000000000
Binary files a/windows/configuration/images/mdt-06-fig39.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig42.png b/windows/configuration/images/mdt-06-fig42.png
deleted file mode 100644
index 12b0e6817a..0000000000
Binary files a/windows/configuration/images/mdt-06-fig42.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-06-fig43.png b/windows/configuration/images/mdt-06-fig43.png
deleted file mode 100644
index 015edd21e3..0000000000
Binary files a/windows/configuration/images/mdt-06-fig43.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig01.png b/windows/configuration/images/mdt-07-fig01.png
deleted file mode 100644
index b2ccfec334..0000000000
Binary files a/windows/configuration/images/mdt-07-fig01.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig03.png b/windows/configuration/images/mdt-07-fig03.png
deleted file mode 100644
index c178d6a15d..0000000000
Binary files a/windows/configuration/images/mdt-07-fig03.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig08.png b/windows/configuration/images/mdt-07-fig08.png
deleted file mode 100644
index 66e2969916..0000000000
Binary files a/windows/configuration/images/mdt-07-fig08.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig09.png b/windows/configuration/images/mdt-07-fig09.png
deleted file mode 100644
index ce320427ee..0000000000
Binary files a/windows/configuration/images/mdt-07-fig09.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig10.png b/windows/configuration/images/mdt-07-fig10.png
deleted file mode 100644
index 7aff3c2d76..0000000000
Binary files a/windows/configuration/images/mdt-07-fig10.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig11.png b/windows/configuration/images/mdt-07-fig11.png
deleted file mode 100644
index 905f8bd572..0000000000
Binary files a/windows/configuration/images/mdt-07-fig11.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig13.png b/windows/configuration/images/mdt-07-fig13.png
deleted file mode 100644
index 849949a2f2..0000000000
Binary files a/windows/configuration/images/mdt-07-fig13.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig14.png b/windows/configuration/images/mdt-07-fig14.png
deleted file mode 100644
index cfe7843eeb..0000000000
Binary files a/windows/configuration/images/mdt-07-fig14.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig15.png b/windows/configuration/images/mdt-07-fig15.png
deleted file mode 100644
index 5271690c89..0000000000
Binary files a/windows/configuration/images/mdt-07-fig15.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-07-fig16.png b/windows/configuration/images/mdt-07-fig16.png
deleted file mode 100644
index 80e0925a40..0000000000
Binary files a/windows/configuration/images/mdt-07-fig16.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-08-fig01.png b/windows/configuration/images/mdt-08-fig01.png
deleted file mode 100644
index 7f795c42d4..0000000000
Binary files a/windows/configuration/images/mdt-08-fig01.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-08-fig02.png b/windows/configuration/images/mdt-08-fig02.png
deleted file mode 100644
index 50c97d8d0c..0000000000
Binary files a/windows/configuration/images/mdt-08-fig02.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-08-fig03.png b/windows/configuration/images/mdt-08-fig03.png
deleted file mode 100644
index e80b242192..0000000000
Binary files a/windows/configuration/images/mdt-08-fig03.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-08-fig05.png b/windows/configuration/images/mdt-08-fig05.png
deleted file mode 100644
index 62ae133bb8..0000000000
Binary files a/windows/configuration/images/mdt-08-fig05.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-08-fig06.png b/windows/configuration/images/mdt-08-fig06.png
deleted file mode 100644
index 97d83a20fb..0000000000
Binary files a/windows/configuration/images/mdt-08-fig06.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-08-fig14.png b/windows/configuration/images/mdt-08-fig14.png
deleted file mode 100644
index 21b358d1f8..0000000000
Binary files a/windows/configuration/images/mdt-08-fig14.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-08-fig15.png b/windows/configuration/images/mdt-08-fig15.png
deleted file mode 100644
index 2a8bc4252e..0000000000
Binary files a/windows/configuration/images/mdt-08-fig15.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig01.png b/windows/configuration/images/mdt-09-fig01.png
deleted file mode 100644
index 0549174435..0000000000
Binary files a/windows/configuration/images/mdt-09-fig01.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig02.png b/windows/configuration/images/mdt-09-fig02.png
deleted file mode 100644
index dd69922d80..0000000000
Binary files a/windows/configuration/images/mdt-09-fig02.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig03.png b/windows/configuration/images/mdt-09-fig03.png
deleted file mode 100644
index 56102b2031..0000000000
Binary files a/windows/configuration/images/mdt-09-fig03.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig04.png b/windows/configuration/images/mdt-09-fig04.png
deleted file mode 100644
index f123d85af5..0000000000
Binary files a/windows/configuration/images/mdt-09-fig04.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig06.png b/windows/configuration/images/mdt-09-fig06.png
deleted file mode 100644
index 49042d95f3..0000000000
Binary files a/windows/configuration/images/mdt-09-fig06.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig07.png b/windows/configuration/images/mdt-09-fig07.png
deleted file mode 100644
index 431f212f80..0000000000
Binary files a/windows/configuration/images/mdt-09-fig07.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig08.png b/windows/configuration/images/mdt-09-fig08.png
deleted file mode 100644
index c73ef398e4..0000000000
Binary files a/windows/configuration/images/mdt-09-fig08.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig09.png b/windows/configuration/images/mdt-09-fig09.png
deleted file mode 100644
index 14614aaa42..0000000000
Binary files a/windows/configuration/images/mdt-09-fig09.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig10.png b/windows/configuration/images/mdt-09-fig10.png
deleted file mode 100644
index c8dbe11eac..0000000000
Binary files a/windows/configuration/images/mdt-09-fig10.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig11.png b/windows/configuration/images/mdt-09-fig11.png
deleted file mode 100644
index dd38911dfc..0000000000
Binary files a/windows/configuration/images/mdt-09-fig11.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig12.png b/windows/configuration/images/mdt-09-fig12.png
deleted file mode 100644
index ed363ae01a..0000000000
Binary files a/windows/configuration/images/mdt-09-fig12.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig13.png b/windows/configuration/images/mdt-09-fig13.png
deleted file mode 100644
index 5155b0ecf0..0000000000
Binary files a/windows/configuration/images/mdt-09-fig13.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig14.png b/windows/configuration/images/mdt-09-fig14.png
deleted file mode 100644
index f294a8d69f..0000000000
Binary files a/windows/configuration/images/mdt-09-fig14.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig15.png b/windows/configuration/images/mdt-09-fig15.png
deleted file mode 100644
index f8de66afbd..0000000000
Binary files a/windows/configuration/images/mdt-09-fig15.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig16.png b/windows/configuration/images/mdt-09-fig16.png
deleted file mode 100644
index ad04b64077..0000000000
Binary files a/windows/configuration/images/mdt-09-fig16.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig17.png b/windows/configuration/images/mdt-09-fig17.png
deleted file mode 100644
index fe4503b950..0000000000
Binary files a/windows/configuration/images/mdt-09-fig17.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig18.png b/windows/configuration/images/mdt-09-fig18.png
deleted file mode 100644
index 4f087172d9..0000000000
Binary files a/windows/configuration/images/mdt-09-fig18.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig19.png b/windows/configuration/images/mdt-09-fig19.png
deleted file mode 100644
index 917444c811..0000000000
Binary files a/windows/configuration/images/mdt-09-fig19.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig20.png b/windows/configuration/images/mdt-09-fig20.png
deleted file mode 100644
index 6c2d1c4dba..0000000000
Binary files a/windows/configuration/images/mdt-09-fig20.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig21.png b/windows/configuration/images/mdt-09-fig21.png
deleted file mode 100644
index 628ea98ad9..0000000000
Binary files a/windows/configuration/images/mdt-09-fig21.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig22.png b/windows/configuration/images/mdt-09-fig22.png
deleted file mode 100644
index 9d71f62796..0000000000
Binary files a/windows/configuration/images/mdt-09-fig22.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig23.png b/windows/configuration/images/mdt-09-fig23.png
deleted file mode 100644
index 4cd29dc389..0000000000
Binary files a/windows/configuration/images/mdt-09-fig23.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig24.png b/windows/configuration/images/mdt-09-fig24.png
deleted file mode 100644
index 89cb67a048..0000000000
Binary files a/windows/configuration/images/mdt-09-fig24.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig25.png b/windows/configuration/images/mdt-09-fig25.png
deleted file mode 100644
index fb308c0be5..0000000000
Binary files a/windows/configuration/images/mdt-09-fig25.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig26.png b/windows/configuration/images/mdt-09-fig26.png
deleted file mode 100644
index 681c6516cd..0000000000
Binary files a/windows/configuration/images/mdt-09-fig26.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig27.png b/windows/configuration/images/mdt-09-fig27.png
deleted file mode 100644
index 396290346d..0000000000
Binary files a/windows/configuration/images/mdt-09-fig27.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig28.png b/windows/configuration/images/mdt-09-fig28.png
deleted file mode 100644
index d36dda43fa..0000000000
Binary files a/windows/configuration/images/mdt-09-fig28.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig29.png b/windows/configuration/images/mdt-09-fig29.png
deleted file mode 100644
index 404842d49c..0000000000
Binary files a/windows/configuration/images/mdt-09-fig29.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig30.png b/windows/configuration/images/mdt-09-fig30.png
deleted file mode 100644
index be962f40ec..0000000000
Binary files a/windows/configuration/images/mdt-09-fig30.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig31.png b/windows/configuration/images/mdt-09-fig31.png
deleted file mode 100644
index a40aa9d3bb..0000000000
Binary files a/windows/configuration/images/mdt-09-fig31.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-09-fig32.png b/windows/configuration/images/mdt-09-fig32.png
deleted file mode 100644
index 446812a3e8..0000000000
Binary files a/windows/configuration/images/mdt-09-fig32.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-10-fig01.png b/windows/configuration/images/mdt-10-fig01.png
deleted file mode 100644
index 8a3ebd9711..0000000000
Binary files a/windows/configuration/images/mdt-10-fig01.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-10-fig02.png b/windows/configuration/images/mdt-10-fig02.png
deleted file mode 100644
index d9e5930152..0000000000
Binary files a/windows/configuration/images/mdt-10-fig02.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-10-fig03.png b/windows/configuration/images/mdt-10-fig03.png
deleted file mode 100644
index f652db736c..0000000000
Binary files a/windows/configuration/images/mdt-10-fig03.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-10-fig04.png b/windows/configuration/images/mdt-10-fig04.png
deleted file mode 100644
index f98c0501df..0000000000
Binary files a/windows/configuration/images/mdt-10-fig04.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-10-fig05.png b/windows/configuration/images/mdt-10-fig05.png
deleted file mode 100644
index 64c0c4a6ee..0000000000
Binary files a/windows/configuration/images/mdt-10-fig05.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-10-fig06.png b/windows/configuration/images/mdt-10-fig06.png
deleted file mode 100644
index 91dc7c5c33..0000000000
Binary files a/windows/configuration/images/mdt-10-fig06.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-10-fig07.png b/windows/configuration/images/mdt-10-fig07.png
deleted file mode 100644
index 8613d905a4..0000000000
Binary files a/windows/configuration/images/mdt-10-fig07.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-10-fig08.png b/windows/configuration/images/mdt-10-fig08.png
deleted file mode 100644
index ee00637019..0000000000
Binary files a/windows/configuration/images/mdt-10-fig08.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-10-fig09.png b/windows/configuration/images/mdt-10-fig09.png
deleted file mode 100644
index ccdd05f34e..0000000000
Binary files a/windows/configuration/images/mdt-10-fig09.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig05.png b/windows/configuration/images/mdt-11-fig05.png
deleted file mode 100644
index b03c414fb8..0000000000
Binary files a/windows/configuration/images/mdt-11-fig05.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig06.png b/windows/configuration/images/mdt-11-fig06.png
deleted file mode 100644
index b5944d909e..0000000000
Binary files a/windows/configuration/images/mdt-11-fig06.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig07.png b/windows/configuration/images/mdt-11-fig07.png
deleted file mode 100644
index b80f0908ab..0000000000
Binary files a/windows/configuration/images/mdt-11-fig07.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig08.png b/windows/configuration/images/mdt-11-fig08.png
deleted file mode 100644
index 9c258bdd3e..0000000000
Binary files a/windows/configuration/images/mdt-11-fig08.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig09.png b/windows/configuration/images/mdt-11-fig09.png
deleted file mode 100644
index 49b3d0b88f..0000000000
Binary files a/windows/configuration/images/mdt-11-fig09.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig10.png b/windows/configuration/images/mdt-11-fig10.png
deleted file mode 100644
index e5c71225f7..0000000000
Binary files a/windows/configuration/images/mdt-11-fig10.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig11.png b/windows/configuration/images/mdt-11-fig11.png
deleted file mode 100644
index e3e2c70516..0000000000
Binary files a/windows/configuration/images/mdt-11-fig11.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig12.png b/windows/configuration/images/mdt-11-fig12.png
deleted file mode 100644
index 1e1a7888d6..0000000000
Binary files a/windows/configuration/images/mdt-11-fig12.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig13.png b/windows/configuration/images/mdt-11-fig13.png
deleted file mode 100644
index 36554c72a6..0000000000
Binary files a/windows/configuration/images/mdt-11-fig13.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig14.png b/windows/configuration/images/mdt-11-fig14.png
deleted file mode 100644
index 075d331bc1..0000000000
Binary files a/windows/configuration/images/mdt-11-fig14.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig15.png b/windows/configuration/images/mdt-11-fig15.png
deleted file mode 100644
index 302847c2a6..0000000000
Binary files a/windows/configuration/images/mdt-11-fig15.png and /dev/null differ
diff --git a/windows/configuration/images/mdt-11-fig16.png b/windows/configuration/images/mdt-11-fig16.png
deleted file mode 100644
index 608c161797..0000000000
Binary files a/windows/configuration/images/mdt-11-fig16.png and /dev/null differ
diff --git a/windows/configuration/images/mobile-start-layout.png b/windows/configuration/images/mobile-start-layout.png
deleted file mode 100644
index d1055d6c87..0000000000
Binary files a/windows/configuration/images/mobile-start-layout.png and /dev/null differ
diff --git a/windows/configuration/images/nfc.png b/windows/configuration/images/nfc.png
deleted file mode 100644
index bfee563205..0000000000
Binary files a/windows/configuration/images/nfc.png and /dev/null differ
diff --git a/windows/configuration/images/oma-uri-shared-pc.png b/windows/configuration/images/oma-uri-shared-pc.png
deleted file mode 100644
index 68f9fa3b32..0000000000
Binary files a/windows/configuration/images/oma-uri-shared-pc.png and /dev/null differ
diff --git a/windows/configuration/images/one.png b/windows/configuration/images/one.png
deleted file mode 100644
index 7766e7d470..0000000000
Binary files a/windows/configuration/images/one.png and /dev/null differ
diff --git a/windows/configuration/images/package-trust.png b/windows/configuration/images/package-trust.png
deleted file mode 100644
index 4a996f23d5..0000000000
Binary files a/windows/configuration/images/package-trust.png and /dev/null differ
diff --git a/windows/configuration/images/packageaddfileandregistrydata-global.png b/windows/configuration/images/packageaddfileandregistrydata-global.png
deleted file mode 100644
index 775e290a36..0000000000
Binary files a/windows/configuration/images/packageaddfileandregistrydata-global.png and /dev/null differ
diff --git a/windows/configuration/images/packageaddfileandregistrydata-stream.png b/windows/configuration/images/packageaddfileandregistrydata-stream.png
deleted file mode 100644
index 0e1205c62b..0000000000
Binary files a/windows/configuration/images/packageaddfileandregistrydata-stream.png and /dev/null differ
diff --git a/windows/configuration/images/packageaddfileandregistrydata.png b/windows/configuration/images/packageaddfileandregistrydata.png
deleted file mode 100644
index 603420e627..0000000000
Binary files a/windows/configuration/images/packageaddfileandregistrydata.png and /dev/null differ
diff --git a/windows/configuration/images/packages-mobile.png b/windows/configuration/images/packages-mobile.png
deleted file mode 100644
index 4ce63dde78..0000000000
Binary files a/windows/configuration/images/packages-mobile.png and /dev/null differ
diff --git a/windows/configuration/images/phoneprovision.png b/windows/configuration/images/phoneprovision.png
deleted file mode 100644
index 01ada29ac9..0000000000
Binary files a/windows/configuration/images/phoneprovision.png and /dev/null differ
diff --git a/windows/configuration/images/powericon.png b/windows/configuration/images/powericon.png
deleted file mode 100644
index b497ff859d..0000000000
Binary files a/windows/configuration/images/powericon.png and /dev/null differ
diff --git a/windows/configuration/images/rdc.png b/windows/configuration/images/rdc.png
deleted file mode 100644
index e0ea9ef548..0000000000
Binary files a/windows/configuration/images/rdc.png and /dev/null differ
diff --git a/windows/configuration/images/rdp.png b/windows/configuration/images/rdp.png
deleted file mode 100644
index ac088d0b06..0000000000
Binary files a/windows/configuration/images/rdp.png and /dev/null differ
diff --git a/windows/configuration/images/resetdevice.png b/windows/configuration/images/resetdevice.png
deleted file mode 100644
index 4e265c3f8d..0000000000
Binary files a/windows/configuration/images/resetdevice.png and /dev/null differ
diff --git a/windows/configuration/images/scanos.PNG b/windows/configuration/images/scanos.PNG
deleted file mode 100644
index d53a272018..0000000000
Binary files a/windows/configuration/images/scanos.PNG and /dev/null differ
diff --git a/windows/configuration/images/sec-bios.png b/windows/configuration/images/sec-bios.png
deleted file mode 100644
index 4498497d59..0000000000
Binary files a/windows/configuration/images/sec-bios.png and /dev/null differ
diff --git a/windows/configuration/images/set-up-device-details-mobile.PNG b/windows/configuration/images/set-up-device-details-mobile.PNG
deleted file mode 100644
index f41fe99a72..0000000000
Binary files a/windows/configuration/images/set-up-device-details-mobile.PNG and /dev/null differ
diff --git a/windows/configuration/images/set-up-device-mobile.PNG b/windows/configuration/images/set-up-device-mobile.PNG
deleted file mode 100644
index b8173385d4..0000000000
Binary files a/windows/configuration/images/set-up-device-mobile.PNG and /dev/null differ
diff --git a/windows/configuration/images/set-up-device.PNG b/windows/configuration/images/set-up-device.PNG
deleted file mode 100644
index 0c9eb0e3ff..0000000000
Binary files a/windows/configuration/images/set-up-device.PNG and /dev/null differ
diff --git a/windows/configuration/images/set-up-network-details-mobile.PNG b/windows/configuration/images/set-up-network-details-mobile.PNG
deleted file mode 100644
index 8f515ba1f6..0000000000
Binary files a/windows/configuration/images/set-up-network-details-mobile.PNG and /dev/null differ
diff --git a/windows/configuration/images/set-up-network-mobile.PNG b/windows/configuration/images/set-up-network-mobile.PNG
deleted file mode 100644
index 9442b33e90..0000000000
Binary files a/windows/configuration/images/set-up-network-mobile.PNG and /dev/null differ
diff --git a/windows/configuration/images/set-up-network.PNG b/windows/configuration/images/set-up-network.PNG
deleted file mode 100644
index a0e856c103..0000000000
Binary files a/windows/configuration/images/set-up-network.PNG and /dev/null differ
diff --git a/windows/configuration/images/settings-table.png b/windows/configuration/images/settings-table.png
deleted file mode 100644
index ada56513fc..0000000000
Binary files a/windows/configuration/images/settings-table.png and /dev/null differ
diff --git a/windows/configuration/images/settingsicon.png b/windows/configuration/images/settingsicon.png
deleted file mode 100644
index 0ad27fc558..0000000000
Binary files a/windows/configuration/images/settingsicon.png and /dev/null differ
diff --git a/windows/configuration/images/show-more-tiles.png b/windows/configuration/images/show-more-tiles.png
deleted file mode 100644
index 6922edeb4c..0000000000
Binary files a/windows/configuration/images/show-more-tiles.png and /dev/null differ
diff --git a/windows/configuration/images/sign-in-prov.png b/windows/configuration/images/sign-in-prov.png
deleted file mode 100644
index 55c9276203..0000000000
Binary files a/windows/configuration/images/sign-in-prov.png and /dev/null differ
diff --git a/windows/configuration/images/spotlight2.png b/windows/configuration/images/spotlight2.png
deleted file mode 100644
index 27401c1a2b..0000000000
Binary files a/windows/configuration/images/spotlight2.png and /dev/null differ
diff --git a/windows/configuration/images/start-screen-size.png b/windows/configuration/images/start-screen-size.png
deleted file mode 100644
index 6c09d960ef..0000000000
Binary files a/windows/configuration/images/start-screen-size.png and /dev/null differ
diff --git a/windows/configuration/images/start-ts-1.png b/windows/configuration/images/start-ts-1.png
deleted file mode 100644
index ca04fc7f77..0000000000
Binary files a/windows/configuration/images/start-ts-1.png and /dev/null differ
diff --git a/windows/configuration/images/start-ts-2.png b/windows/configuration/images/start-ts-2.png
deleted file mode 100644
index 56e1ff05d1..0000000000
Binary files a/windows/configuration/images/start-ts-2.png and /dev/null differ
diff --git a/windows/configuration/images/start-ts-3.png b/windows/configuration/images/start-ts-3.png
deleted file mode 100644
index e62bb90aa2..0000000000
Binary files a/windows/configuration/images/start-ts-3.png and /dev/null differ
diff --git a/windows/configuration/images/start-ts-4.png b/windows/configuration/images/start-ts-4.png
deleted file mode 100644
index 71316899fd..0000000000
Binary files a/windows/configuration/images/start-ts-4.png and /dev/null differ
diff --git a/windows/configuration/images/start-ts-5.jpg b/windows/configuration/images/start-ts-5.jpg
deleted file mode 100644
index 61292cac4b..0000000000
Binary files a/windows/configuration/images/start-ts-5.jpg and /dev/null differ
diff --git a/windows/configuration/images/start-ts-6.png b/windows/configuration/images/start-ts-6.png
deleted file mode 100644
index d124d38fed..0000000000
Binary files a/windows/configuration/images/start-ts-6.png and /dev/null differ
diff --git a/windows/configuration/images/start-ts-7.png b/windows/configuration/images/start-ts-7.png
deleted file mode 100644
index 0c85959912..0000000000
Binary files a/windows/configuration/images/start-ts-7.png and /dev/null differ
diff --git a/windows/configuration/images/starticon.png b/windows/configuration/images/starticon.png
deleted file mode 100644
index fa8cbdff10..0000000000
Binary files a/windows/configuration/images/starticon.png and /dev/null differ
diff --git a/windows/configuration/images/svr_mgr2.png b/windows/configuration/images/svr_mgr2.png
deleted file mode 100644
index dd2e6737c6..0000000000
Binary files a/windows/configuration/images/svr_mgr2.png and /dev/null differ
diff --git a/windows/configuration/images/sysprep-error.png b/windows/configuration/images/sysprep-error.png
deleted file mode 100644
index aa004efbb6..0000000000
Binary files a/windows/configuration/images/sysprep-error.png and /dev/null differ
diff --git a/windows/configuration/images/taskbar-blank.png b/windows/configuration/images/taskbar-blank.png
deleted file mode 100644
index 185027f2fd..0000000000
Binary files a/windows/configuration/images/taskbar-blank.png and /dev/null differ
diff --git a/windows/configuration/images/taskbarSTARTERBLANK.png b/windows/configuration/images/taskbarSTARTERBLANK.png
deleted file mode 100644
index e206bdc196..0000000000
Binary files a/windows/configuration/images/taskbarSTARTERBLANK.png and /dev/null differ
diff --git a/windows/configuration/images/three.png b/windows/configuration/images/three.png
deleted file mode 100644
index 887fa270d7..0000000000
Binary files a/windows/configuration/images/three.png and /dev/null differ
diff --git a/windows/configuration/images/twain.png b/windows/configuration/images/twain.png
deleted file mode 100644
index 53cd5eadc7..0000000000
Binary files a/windows/configuration/images/twain.png and /dev/null differ
diff --git a/windows/configuration/images/two.png b/windows/configuration/images/two.png
deleted file mode 100644
index b8c2d52eaf..0000000000
Binary files a/windows/configuration/images/two.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-01.png b/windows/configuration/images/ua-cg-01.png
deleted file mode 100644
index 4b41bd67ba..0000000000
Binary files a/windows/configuration/images/ua-cg-01.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-02.png b/windows/configuration/images/ua-cg-02.png
deleted file mode 100644
index 4cbfaf26d8..0000000000
Binary files a/windows/configuration/images/ua-cg-02.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-03.png b/windows/configuration/images/ua-cg-03.png
deleted file mode 100644
index cfad7911bb..0000000000
Binary files a/windows/configuration/images/ua-cg-03.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-04.png b/windows/configuration/images/ua-cg-04.png
deleted file mode 100644
index c818d15d02..0000000000
Binary files a/windows/configuration/images/ua-cg-04.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-05.png b/windows/configuration/images/ua-cg-05.png
deleted file mode 100644
index a8788f0eb9..0000000000
Binary files a/windows/configuration/images/ua-cg-05.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-06.png b/windows/configuration/images/ua-cg-06.png
deleted file mode 100644
index ed983c96c8..0000000000
Binary files a/windows/configuration/images/ua-cg-06.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-07.png b/windows/configuration/images/ua-cg-07.png
deleted file mode 100644
index 2aba43be53..0000000000
Binary files a/windows/configuration/images/ua-cg-07.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-08.png b/windows/configuration/images/ua-cg-08.png
deleted file mode 100644
index 4d7f924d76..0000000000
Binary files a/windows/configuration/images/ua-cg-08.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-09.png b/windows/configuration/images/ua-cg-09.png
deleted file mode 100644
index b9aa1cea41..0000000000
Binary files a/windows/configuration/images/ua-cg-09.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-10.png b/windows/configuration/images/ua-cg-10.png
deleted file mode 100644
index 54e222338d..0000000000
Binary files a/windows/configuration/images/ua-cg-10.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-11.png b/windows/configuration/images/ua-cg-11.png
deleted file mode 100644
index 4e930a5905..0000000000
Binary files a/windows/configuration/images/ua-cg-11.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-12.png b/windows/configuration/images/ua-cg-12.png
deleted file mode 100644
index 2fbe11b814..0000000000
Binary files a/windows/configuration/images/ua-cg-12.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-13.png b/windows/configuration/images/ua-cg-13.png
deleted file mode 100644
index f04252796e..0000000000
Binary files a/windows/configuration/images/ua-cg-13.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-14.png b/windows/configuration/images/ua-cg-14.png
deleted file mode 100644
index 6105fdf4d1..0000000000
Binary files a/windows/configuration/images/ua-cg-14.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-15.png b/windows/configuration/images/ua-cg-15.png
deleted file mode 100644
index 5362db66da..0000000000
Binary files a/windows/configuration/images/ua-cg-15.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-16.png b/windows/configuration/images/ua-cg-16.png
deleted file mode 100644
index 6d5b8a84b6..0000000000
Binary files a/windows/configuration/images/ua-cg-16.png and /dev/null differ
diff --git a/windows/configuration/images/ua-cg-17.png b/windows/configuration/images/ua-cg-17.png
deleted file mode 100644
index d66c41917b..0000000000
Binary files a/windows/configuration/images/ua-cg-17.png and /dev/null differ
diff --git a/windows/configuration/images/uc-01.png b/windows/configuration/images/uc-01.png
deleted file mode 100644
index 7f4df9f6d7..0000000000
Binary files a/windows/configuration/images/uc-01.png and /dev/null differ
diff --git a/windows/configuration/images/uc-02.png b/windows/configuration/images/uc-02.png
deleted file mode 100644
index 8317f051c3..0000000000
Binary files a/windows/configuration/images/uc-02.png and /dev/null differ
diff --git a/windows/configuration/images/uc-02a.png b/windows/configuration/images/uc-02a.png
deleted file mode 100644
index d12544e3a0..0000000000
Binary files a/windows/configuration/images/uc-02a.png and /dev/null differ
diff --git a/windows/configuration/images/uc-03.png b/windows/configuration/images/uc-03.png
deleted file mode 100644
index 58494c4128..0000000000
Binary files a/windows/configuration/images/uc-03.png and /dev/null differ
diff --git a/windows/configuration/images/uc-03a.png b/windows/configuration/images/uc-03a.png
deleted file mode 100644
index 39412fc8f3..0000000000
Binary files a/windows/configuration/images/uc-03a.png and /dev/null differ
diff --git a/windows/configuration/images/uc-04.png b/windows/configuration/images/uc-04.png
deleted file mode 100644
index ef9a37d379..0000000000
Binary files a/windows/configuration/images/uc-04.png and /dev/null differ
diff --git a/windows/configuration/images/uc-04a.png b/windows/configuration/images/uc-04a.png
deleted file mode 100644
index 537d4bbe72..0000000000
Binary files a/windows/configuration/images/uc-04a.png and /dev/null differ
diff --git a/windows/configuration/images/uc-05.png b/windows/configuration/images/uc-05.png
deleted file mode 100644
index 21c8e9f9e0..0000000000
Binary files a/windows/configuration/images/uc-05.png and /dev/null differ
diff --git a/windows/configuration/images/uc-05a.png b/windows/configuration/images/uc-05a.png
deleted file mode 100644
index 2271181622..0000000000
Binary files a/windows/configuration/images/uc-05a.png and /dev/null differ
diff --git a/windows/configuration/images/uc-06.png b/windows/configuration/images/uc-06.png
deleted file mode 100644
index 03a559800b..0000000000
Binary files a/windows/configuration/images/uc-06.png and /dev/null differ
diff --git a/windows/configuration/images/uc-06a.png b/windows/configuration/images/uc-06a.png
deleted file mode 100644
index 15df1cfea0..0000000000
Binary files a/windows/configuration/images/uc-06a.png and /dev/null differ
diff --git a/windows/configuration/images/uc-07.png b/windows/configuration/images/uc-07.png
deleted file mode 100644
index de1ae35e82..0000000000
Binary files a/windows/configuration/images/uc-07.png and /dev/null differ
diff --git a/windows/configuration/images/uc-07a.png b/windows/configuration/images/uc-07a.png
deleted file mode 100644
index c0f2d9fd73..0000000000
Binary files a/windows/configuration/images/uc-07a.png and /dev/null differ
diff --git a/windows/configuration/images/uc-08.png b/windows/configuration/images/uc-08.png
deleted file mode 100644
index 877fcd64c0..0000000000
Binary files a/windows/configuration/images/uc-08.png and /dev/null differ
diff --git a/windows/configuration/images/uc-08a.png b/windows/configuration/images/uc-08a.png
deleted file mode 100644
index 89da287d3d..0000000000
Binary files a/windows/configuration/images/uc-08a.png and /dev/null differ
diff --git a/windows/configuration/images/uc-09.png b/windows/configuration/images/uc-09.png
deleted file mode 100644
index 37d7114f19..0000000000
Binary files a/windows/configuration/images/uc-09.png and /dev/null differ
diff --git a/windows/configuration/images/uc-09a.png b/windows/configuration/images/uc-09a.png
deleted file mode 100644
index f6b6ec5b60..0000000000
Binary files a/windows/configuration/images/uc-09a.png and /dev/null differ
diff --git a/windows/configuration/images/uc-10.png b/windows/configuration/images/uc-10.png
deleted file mode 100644
index 3ab72d10d2..0000000000
Binary files a/windows/configuration/images/uc-10.png and /dev/null differ
diff --git a/windows/configuration/images/uc-10a.png b/windows/configuration/images/uc-10a.png
deleted file mode 100644
index 1c6b8b01dc..0000000000
Binary files a/windows/configuration/images/uc-10a.png and /dev/null differ
diff --git a/windows/configuration/images/uc-11.png b/windows/configuration/images/uc-11.png
deleted file mode 100644
index 8b4fc568ea..0000000000
Binary files a/windows/configuration/images/uc-11.png and /dev/null differ
diff --git a/windows/configuration/images/uc-12.png b/windows/configuration/images/uc-12.png
deleted file mode 100644
index 4198684c99..0000000000
Binary files a/windows/configuration/images/uc-12.png and /dev/null differ
diff --git a/windows/configuration/images/uc-13.png b/windows/configuration/images/uc-13.png
deleted file mode 100644
index 117f9b9fd8..0000000000
Binary files a/windows/configuration/images/uc-13.png and /dev/null differ
diff --git a/windows/configuration/images/uc-14.png b/windows/configuration/images/uc-14.png
deleted file mode 100644
index 66047984e7..0000000000
Binary files a/windows/configuration/images/uc-14.png and /dev/null differ
diff --git a/windows/configuration/images/uc-15.png b/windows/configuration/images/uc-15.png
deleted file mode 100644
index c241cd9117..0000000000
Binary files a/windows/configuration/images/uc-15.png and /dev/null differ
diff --git a/windows/configuration/images/uc-16.png b/windows/configuration/images/uc-16.png
deleted file mode 100644
index e7aff4d4ed..0000000000
Binary files a/windows/configuration/images/uc-16.png and /dev/null differ
diff --git a/windows/configuration/images/uc-17.png b/windows/configuration/images/uc-17.png
deleted file mode 100644
index cb8e42ca5e..0000000000
Binary files a/windows/configuration/images/uc-17.png and /dev/null differ
diff --git a/windows/configuration/images/uc-18.png b/windows/configuration/images/uc-18.png
deleted file mode 100644
index 5eff59adc9..0000000000
Binary files a/windows/configuration/images/uc-18.png and /dev/null differ
diff --git a/windows/configuration/images/uc-19.png b/windows/configuration/images/uc-19.png
deleted file mode 100644
index 791900eafc..0000000000
Binary files a/windows/configuration/images/uc-19.png and /dev/null differ
diff --git a/windows/configuration/images/uc-20.png b/windows/configuration/images/uc-20.png
deleted file mode 100644
index 7dbb027b9f..0000000000
Binary files a/windows/configuration/images/uc-20.png and /dev/null differ
diff --git a/windows/configuration/images/uc-21.png b/windows/configuration/images/uc-21.png
deleted file mode 100644
index 418db41fe4..0000000000
Binary files a/windows/configuration/images/uc-21.png and /dev/null differ
diff --git a/windows/configuration/images/uc-22.png b/windows/configuration/images/uc-22.png
deleted file mode 100644
index 2ca5c47a61..0000000000
Binary files a/windows/configuration/images/uc-22.png and /dev/null differ
diff --git a/windows/configuration/images/uc-23.png b/windows/configuration/images/uc-23.png
deleted file mode 100644
index 58b82db82d..0000000000
Binary files a/windows/configuration/images/uc-23.png and /dev/null differ
diff --git a/windows/configuration/images/uc-24.png b/windows/configuration/images/uc-24.png
deleted file mode 100644
index 00bc61e3e1..0000000000
Binary files a/windows/configuration/images/uc-24.png and /dev/null differ
diff --git a/windows/configuration/images/uc-25.png b/windows/configuration/images/uc-25.png
deleted file mode 100644
index 4e0f0bdb03..0000000000
Binary files a/windows/configuration/images/uc-25.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-apps-known-issues.png b/windows/configuration/images/upgrade-analytics-apps-known-issues.png
deleted file mode 100644
index ec99ac92cf..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-apps-known-issues.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-apps-no-known-issues.png b/windows/configuration/images/upgrade-analytics-apps-no-known-issues.png
deleted file mode 100644
index 9fb09ffd65..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-apps-no-known-issues.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-architecture.png b/windows/configuration/images/upgrade-analytics-architecture.png
deleted file mode 100644
index 93d3acba0b..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-architecture.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-create-iedataoptin.png b/windows/configuration/images/upgrade-analytics-create-iedataoptin.png
deleted file mode 100644
index 60f5ccbc90..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-create-iedataoptin.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-deploy-eligible.png b/windows/configuration/images/upgrade-analytics-deploy-eligible.png
deleted file mode 100644
index 8da91cebc4..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-deploy-eligible.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-drivers-known.png b/windows/configuration/images/upgrade-analytics-drivers-known.png
deleted file mode 100644
index 35d61f87c7..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-drivers-known.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-most-active-sites.png b/windows/configuration/images/upgrade-analytics-most-active-sites.png
deleted file mode 100644
index 180c5ddced..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-most-active-sites.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-namepub-rollup.PNG b/windows/configuration/images/upgrade-analytics-namepub-rollup.PNG
deleted file mode 100644
index 2041f14fd4..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-namepub-rollup.PNG and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-overview.png b/windows/configuration/images/upgrade-analytics-overview.png
deleted file mode 100644
index ba02ee0a8c..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-overview.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-pilot.png b/windows/configuration/images/upgrade-analytics-pilot.png
deleted file mode 100644
index 1c1de328ea..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-pilot.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-prioritize.png b/windows/configuration/images/upgrade-analytics-prioritize.png
deleted file mode 100644
index d6227694c1..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-prioritize.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-query-activex-name.png b/windows/configuration/images/upgrade-analytics-query-activex-name.png
deleted file mode 100644
index 5068e7d20e..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-query-activex-name.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-ready-for-windows-status-guidance-precedence.PNG b/windows/configuration/images/upgrade-analytics-ready-for-windows-status-guidance-precedence.PNG
deleted file mode 100644
index 4d22cc9353..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-ready-for-windows-status-guidance-precedence.PNG and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-ready-for-windows-status.PNG b/windows/configuration/images/upgrade-analytics-ready-for-windows-status.PNG
deleted file mode 100644
index c233db2340..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-ready-for-windows-status.PNG and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-site-activity-by-doc-mode.png b/windows/configuration/images/upgrade-analytics-site-activity-by-doc-mode.png
deleted file mode 100644
index d1a46f1791..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-site-activity-by-doc-mode.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-site-domain-detail.png b/windows/configuration/images/upgrade-analytics-site-domain-detail.png
deleted file mode 100644
index 15a7ee20c4..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-site-domain-detail.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-telemetry.png b/windows/configuration/images/upgrade-analytics-telemetry.png
deleted file mode 100644
index bf60935616..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-telemetry.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-analytics-unsubscribe.png b/windows/configuration/images/upgrade-analytics-unsubscribe.png
deleted file mode 100644
index 402db94d6f..0000000000
Binary files a/windows/configuration/images/upgrade-analytics-unsubscribe.png and /dev/null differ
diff --git a/windows/configuration/images/upgrade-process.png b/windows/configuration/images/upgrade-process.png
deleted file mode 100644
index b2b77708fc..0000000000
Binary files a/windows/configuration/images/upgrade-process.png and /dev/null differ
diff --git a/windows/configuration/images/upgradecfg-fig2-upgrading.png b/windows/configuration/images/upgradecfg-fig2-upgrading.png
deleted file mode 100644
index c53de79c29..0000000000
Binary files a/windows/configuration/images/upgradecfg-fig2-upgrading.png and /dev/null differ
diff --git a/windows/configuration/images/upgradecfg-fig3-upgrade.png b/windows/configuration/images/upgradecfg-fig3-upgrade.png
deleted file mode 100644
index d0c1ceaaf9..0000000000
Binary files a/windows/configuration/images/upgradecfg-fig3-upgrade.png and /dev/null differ
diff --git a/windows/configuration/images/upgrademdt-fig1-machines.png b/windows/configuration/images/upgrademdt-fig1-machines.png
deleted file mode 100644
index 38129332e6..0000000000
Binary files a/windows/configuration/images/upgrademdt-fig1-machines.png and /dev/null differ
diff --git a/windows/configuration/images/upgrademdt-fig2-importedos.png b/windows/configuration/images/upgrademdt-fig2-importedos.png
deleted file mode 100644
index 93b92efd93..0000000000
Binary files a/windows/configuration/images/upgrademdt-fig2-importedos.png and /dev/null differ
diff --git a/windows/configuration/images/upgrademdt-fig3-tasksequence.png b/windows/configuration/images/upgrademdt-fig3-tasksequence.png
deleted file mode 100644
index 1ad66c2098..0000000000
Binary files a/windows/configuration/images/upgrademdt-fig3-tasksequence.png and /dev/null differ
diff --git a/windows/configuration/images/upgrademdt-fig4-selecttask.png b/windows/configuration/images/upgrademdt-fig4-selecttask.png
deleted file mode 100644
index dcbc73871a..0000000000
Binary files a/windows/configuration/images/upgrademdt-fig4-selecttask.png and /dev/null differ
diff --git a/windows/configuration/images/upgrademdt-fig5-winupgrade.png b/windows/configuration/images/upgrademdt-fig5-winupgrade.png
deleted file mode 100644
index f3bc05508a..0000000000
Binary files a/windows/configuration/images/upgrademdt-fig5-winupgrade.png and /dev/null differ
diff --git a/windows/configuration/images/uwp-dependencies.PNG b/windows/configuration/images/uwp-dependencies.PNG
deleted file mode 100644
index 4e2563169f..0000000000
Binary files a/windows/configuration/images/uwp-dependencies.PNG and /dev/null differ
diff --git a/windows/configuration/images/uwp-family.PNG b/windows/configuration/images/uwp-family.PNG
deleted file mode 100644
index bec731eec4..0000000000
Binary files a/windows/configuration/images/uwp-family.PNG and /dev/null differ
diff --git a/windows/configuration/images/uwp-license.PNG b/windows/configuration/images/uwp-license.PNG
deleted file mode 100644
index ccb5cf7cf4..0000000000
Binary files a/windows/configuration/images/uwp-license.PNG and /dev/null differ
diff --git a/windows/configuration/images/vamtuserinterfaceupdated.jpg b/windows/configuration/images/vamtuserinterfaceupdated.jpg
deleted file mode 100644
index 32ce362c60..0000000000
Binary files a/windows/configuration/images/vamtuserinterfaceupdated.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-01.jpg b/windows/configuration/images/volumeactivationforwindows81-01.jpg
deleted file mode 100644
index f6042a82a9..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-01.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-02.jpg b/windows/configuration/images/volumeactivationforwindows81-02.jpg
deleted file mode 100644
index 630d9a03e2..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-02.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-03.jpg b/windows/configuration/images/volumeactivationforwindows81-03.jpg
deleted file mode 100644
index 27962b207c..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-03.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-04.jpg b/windows/configuration/images/volumeactivationforwindows81-04.jpg
deleted file mode 100644
index d5b572f1aa..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-04.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-05.jpg b/windows/configuration/images/volumeactivationforwindows81-05.jpg
deleted file mode 100644
index a4bd9776ac..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-05.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-06.jpg b/windows/configuration/images/volumeactivationforwindows81-06.jpg
deleted file mode 100644
index c29a628b05..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-06.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-07.jpg b/windows/configuration/images/volumeactivationforwindows81-07.jpg
deleted file mode 100644
index 346cbaa5c1..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-07.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-08.jpg b/windows/configuration/images/volumeactivationforwindows81-08.jpg
deleted file mode 100644
index eff421d6bb..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-08.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-09.jpg b/windows/configuration/images/volumeactivationforwindows81-09.jpg
deleted file mode 100644
index 1e3cf9c0d8..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-09.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-10.jpg b/windows/configuration/images/volumeactivationforwindows81-10.jpg
deleted file mode 100644
index d3cd196c34..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-10.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-11.jpg b/windows/configuration/images/volumeactivationforwindows81-11.jpg
deleted file mode 100644
index 72e4b613da..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-11.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-12.jpg b/windows/configuration/images/volumeactivationforwindows81-12.jpg
deleted file mode 100644
index 9e44ec24f0..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-12.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-13.jpg b/windows/configuration/images/volumeactivationforwindows81-13.jpg
deleted file mode 100644
index e599fcd528..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-13.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-14.jpg b/windows/configuration/images/volumeactivationforwindows81-14.jpg
deleted file mode 100644
index 3b3cbc18cb..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-14.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-15.jpg b/windows/configuration/images/volumeactivationforwindows81-15.jpg
deleted file mode 100644
index 792b24b282..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-15.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-16.jpg b/windows/configuration/images/volumeactivationforwindows81-16.jpg
deleted file mode 100644
index facdf1d084..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-16.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-17.jpg b/windows/configuration/images/volumeactivationforwindows81-17.jpg
deleted file mode 100644
index 0f4c683b7e..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-17.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-18.jpg b/windows/configuration/images/volumeactivationforwindows81-18.jpg
deleted file mode 100644
index 8728697ed8..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-18.jpg and /dev/null differ
diff --git a/windows/configuration/images/volumeactivationforwindows81-19.jpg b/windows/configuration/images/volumeactivationforwindows81-19.jpg
deleted file mode 100644
index db97a0ba0e..0000000000
Binary files a/windows/configuration/images/volumeactivationforwindows81-19.jpg and /dev/null differ
diff --git a/windows/configuration/images/w10servicing-f1-branches.png b/windows/configuration/images/w10servicing-f1-branches.png
deleted file mode 100644
index ac4a549aed..0000000000
Binary files a/windows/configuration/images/w10servicing-f1-branches.png and /dev/null differ
diff --git a/windows/configuration/images/waas-active-hours-policy.PNG b/windows/configuration/images/waas-active-hours-policy.PNG
deleted file mode 100644
index af80ef6652..0000000000
Binary files a/windows/configuration/images/waas-active-hours-policy.PNG and /dev/null differ
diff --git a/windows/configuration/images/waas-active-hours.PNG b/windows/configuration/images/waas-active-hours.PNG
deleted file mode 100644
index c262c302ed..0000000000
Binary files a/windows/configuration/images/waas-active-hours.PNG and /dev/null differ
diff --git a/windows/configuration/images/waas-auto-update-policy.PNG b/windows/configuration/images/waas-auto-update-policy.PNG
deleted file mode 100644
index 52a1629cbf..0000000000
Binary files a/windows/configuration/images/waas-auto-update-policy.PNG and /dev/null differ
diff --git a/windows/configuration/images/waas-do-fig1.png b/windows/configuration/images/waas-do-fig1.png
deleted file mode 100644
index 2a2b6872e9..0000000000
Binary files a/windows/configuration/images/waas-do-fig1.png and /dev/null differ
diff --git a/windows/configuration/images/waas-do-fig2.png b/windows/configuration/images/waas-do-fig2.png
deleted file mode 100644
index cc42b328eb..0000000000
Binary files a/windows/configuration/images/waas-do-fig2.png and /dev/null differ
diff --git a/windows/configuration/images/waas-do-fig3.png b/windows/configuration/images/waas-do-fig3.png
deleted file mode 100644
index d9182d3b20..0000000000
Binary files a/windows/configuration/images/waas-do-fig3.png and /dev/null differ
diff --git a/windows/configuration/images/waas-do-fig4.png b/windows/configuration/images/waas-do-fig4.png
deleted file mode 100644
index a66741ed90..0000000000
Binary files a/windows/configuration/images/waas-do-fig4.png and /dev/null differ
diff --git a/windows/configuration/images/waas-overview-patch.png b/windows/configuration/images/waas-overview-patch.png
deleted file mode 100644
index 6ac0a03227..0000000000
Binary files a/windows/configuration/images/waas-overview-patch.png and /dev/null differ
diff --git a/windows/configuration/images/waas-restart-policy.PNG b/windows/configuration/images/waas-restart-policy.PNG
deleted file mode 100644
index 936f9aeb08..0000000000
Binary files a/windows/configuration/images/waas-restart-policy.PNG and /dev/null differ
diff --git a/windows/configuration/images/waas-rings.png b/windows/configuration/images/waas-rings.png
deleted file mode 100644
index 041a59ce87..0000000000
Binary files a/windows/configuration/images/waas-rings.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig1.png b/windows/configuration/images/waas-sccm-fig1.png
deleted file mode 100644
index 6bf2b1c621..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig1.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig10.png b/windows/configuration/images/waas-sccm-fig10.png
deleted file mode 100644
index ad3b5c922f..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig10.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig11.png b/windows/configuration/images/waas-sccm-fig11.png
deleted file mode 100644
index 6c4f905630..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig11.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig12.png b/windows/configuration/images/waas-sccm-fig12.png
deleted file mode 100644
index 87464dd5f1..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig12.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig2.png b/windows/configuration/images/waas-sccm-fig2.png
deleted file mode 100644
index c83e7bc781..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig2.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig3.png b/windows/configuration/images/waas-sccm-fig3.png
deleted file mode 100644
index dcbc83b8ff..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig3.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig4.png b/windows/configuration/images/waas-sccm-fig4.png
deleted file mode 100644
index 782c5ca6ef..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig4.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig5.png b/windows/configuration/images/waas-sccm-fig5.png
deleted file mode 100644
index cb399a6c6f..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig5.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig6.png b/windows/configuration/images/waas-sccm-fig6.png
deleted file mode 100644
index 77dd02d61e..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig6.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig7.png b/windows/configuration/images/waas-sccm-fig7.png
deleted file mode 100644
index a74c7c8133..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig7.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig8.png b/windows/configuration/images/waas-sccm-fig8.png
deleted file mode 100644
index 2dfaf75ddf..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig8.png and /dev/null differ
diff --git a/windows/configuration/images/waas-sccm-fig9.png b/windows/configuration/images/waas-sccm-fig9.png
deleted file mode 100644
index 311d79dc94..0000000000
Binary files a/windows/configuration/images/waas-sccm-fig9.png and /dev/null differ
diff --git a/windows/configuration/images/waas-strategy-fig1a.png b/windows/configuration/images/waas-strategy-fig1a.png
deleted file mode 100644
index 7a924c43bc..0000000000
Binary files a/windows/configuration/images/waas-strategy-fig1a.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig1.png b/windows/configuration/images/waas-wsus-fig1.png
deleted file mode 100644
index 14bf35958a..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig1.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig10.png b/windows/configuration/images/waas-wsus-fig10.png
deleted file mode 100644
index 3efa119693..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig10.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig11.png b/windows/configuration/images/waas-wsus-fig11.png
deleted file mode 100644
index ae6d79221a..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig11.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig12.png b/windows/configuration/images/waas-wsus-fig12.png
deleted file mode 100644
index 47479ea1df..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig12.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig13.png b/windows/configuration/images/waas-wsus-fig13.png
deleted file mode 100644
index f0b1578094..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig13.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig14.png b/windows/configuration/images/waas-wsus-fig14.png
deleted file mode 100644
index b5b930ddad..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig14.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig15.png b/windows/configuration/images/waas-wsus-fig15.png
deleted file mode 100644
index 95e38c039e..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig15.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig16.png b/windows/configuration/images/waas-wsus-fig16.png
deleted file mode 100644
index 3848ac1772..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig16.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig17.png b/windows/configuration/images/waas-wsus-fig17.png
deleted file mode 100644
index 5511da3e5c..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig17.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig18.png b/windows/configuration/images/waas-wsus-fig18.png
deleted file mode 100644
index f9ac774754..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig18.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig19.png b/windows/configuration/images/waas-wsus-fig19.png
deleted file mode 100644
index f69d793afe..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig19.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig2.png b/windows/configuration/images/waas-wsus-fig2.png
deleted file mode 100644
index 167774a6c9..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig2.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig20.png b/windows/configuration/images/waas-wsus-fig20.png
deleted file mode 100644
index ea6bbb350a..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig20.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig3.png b/windows/configuration/images/waas-wsus-fig3.png
deleted file mode 100644
index 272e8c05e9..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig3.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig4.png b/windows/configuration/images/waas-wsus-fig4.png
deleted file mode 100644
index bb5f27e3da..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig4.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig5.png b/windows/configuration/images/waas-wsus-fig5.png
deleted file mode 100644
index 23faf303c6..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig5.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig6.png b/windows/configuration/images/waas-wsus-fig6.png
deleted file mode 100644
index 7857351d19..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig6.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig7.png b/windows/configuration/images/waas-wsus-fig7.png
deleted file mode 100644
index e7f02649d2..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig7.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig8.png b/windows/configuration/images/waas-wsus-fig8.png
deleted file mode 100644
index da5f620425..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig8.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wsus-fig9.png b/windows/configuration/images/waas-wsus-fig9.png
deleted file mode 100644
index f3d5a4eb6a..0000000000
Binary files a/windows/configuration/images/waas-wsus-fig9.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-broad.png b/windows/configuration/images/waas-wufb-gp-broad.png
deleted file mode 100644
index 92b71c8936..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-broad.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-cb2-settings.png b/windows/configuration/images/waas-wufb-gp-cb2-settings.png
deleted file mode 100644
index ae6ed4d856..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-cb2-settings.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-cb2.png b/windows/configuration/images/waas-wufb-gp-cb2.png
deleted file mode 100644
index 006a8c02d3..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-cb2.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-cbb1-settings.png b/windows/configuration/images/waas-wufb-gp-cbb1-settings.png
deleted file mode 100644
index c9e1029b8b..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-cbb1-settings.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-cbb2-settings.png b/windows/configuration/images/waas-wufb-gp-cbb2-settings.png
deleted file mode 100644
index e5aff1cc89..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-cbb2-settings.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-cbb2q-settings.png b/windows/configuration/images/waas-wufb-gp-cbb2q-settings.png
deleted file mode 100644
index 33a02165c6..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-cbb2q-settings.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-create.png b/windows/configuration/images/waas-wufb-gp-create.png
deleted file mode 100644
index d74eec4b2e..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-create.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-edit-defer.png b/windows/configuration/images/waas-wufb-gp-edit-defer.png
deleted file mode 100644
index c697b42ffd..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-edit-defer.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-edit.png b/windows/configuration/images/waas-wufb-gp-edit.png
deleted file mode 100644
index 1b8d21a175..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-edit.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-scope-cb2.png b/windows/configuration/images/waas-wufb-gp-scope-cb2.png
deleted file mode 100644
index fcacdbea57..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-scope-cb2.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-gp-scope.png b/windows/configuration/images/waas-wufb-gp-scope.png
deleted file mode 100644
index a04d8194df..0000000000
Binary files a/windows/configuration/images/waas-wufb-gp-scope.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-intune-cb2a.png b/windows/configuration/images/waas-wufb-intune-cb2a.png
deleted file mode 100644
index 3e8c1ce19e..0000000000
Binary files a/windows/configuration/images/waas-wufb-intune-cb2a.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-intune-cbb1a.png b/windows/configuration/images/waas-wufb-intune-cbb1a.png
deleted file mode 100644
index bc394fe563..0000000000
Binary files a/windows/configuration/images/waas-wufb-intune-cbb1a.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-intune-cbb2a.png b/windows/configuration/images/waas-wufb-intune-cbb2a.png
deleted file mode 100644
index a980e0e43a..0000000000
Binary files a/windows/configuration/images/waas-wufb-intune-cbb2a.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-intune-step11a.png b/windows/configuration/images/waas-wufb-intune-step11a.png
deleted file mode 100644
index 7291484c93..0000000000
Binary files a/windows/configuration/images/waas-wufb-intune-step11a.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-intune-step19a.png b/windows/configuration/images/waas-wufb-intune-step19a.png
deleted file mode 100644
index de132abd28..0000000000
Binary files a/windows/configuration/images/waas-wufb-intune-step19a.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-intune-step2a.png b/windows/configuration/images/waas-wufb-intune-step2a.png
deleted file mode 100644
index 9a719b8fda..0000000000
Binary files a/windows/configuration/images/waas-wufb-intune-step2a.png and /dev/null differ
diff --git a/windows/configuration/images/waas-wufb-intune-step7a.png b/windows/configuration/images/waas-wufb-intune-step7a.png
deleted file mode 100644
index daa96ba18c..0000000000
Binary files a/windows/configuration/images/waas-wufb-intune-step7a.png and /dev/null differ
diff --git a/windows/configuration/images/who-owns-pc.png b/windows/configuration/images/who-owns-pc.png
deleted file mode 100644
index d3ce1def8d..0000000000
Binary files a/windows/configuration/images/who-owns-pc.png and /dev/null differ
diff --git a/windows/configuration/images/wifisense-grouppolicy.png b/windows/configuration/images/wifisense-grouppolicy.png
deleted file mode 100644
index 1142d834bd..0000000000
Binary files a/windows/configuration/images/wifisense-grouppolicy.png and /dev/null differ
diff --git a/windows/configuration/images/wifisense-registry.png b/windows/configuration/images/wifisense-registry.png
deleted file mode 100644
index cbb1fa8347..0000000000
Binary files a/windows/configuration/images/wifisense-registry.png and /dev/null differ
diff --git a/windows/configuration/images/wifisense-settingscreens.png b/windows/configuration/images/wifisense-settingscreens.png
deleted file mode 100644
index cbb6903177..0000000000
Binary files a/windows/configuration/images/wifisense-settingscreens.png and /dev/null differ
diff --git a/windows/configuration/images/win-10-adk-select.png b/windows/configuration/images/win-10-adk-select.png
deleted file mode 100644
index 1dfaa23175..0000000000
Binary files a/windows/configuration/images/win-10-adk-select.png and /dev/null differ
diff --git a/windows/configuration/images/win10-mobile-mdm-fig1.png b/windows/configuration/images/win10-mobile-mdm-fig1.png
deleted file mode 100644
index 6ddac1df99..0000000000
Binary files a/windows/configuration/images/win10-mobile-mdm-fig1.png and /dev/null differ
diff --git a/windows/configuration/images/win10-set-up-work-or-school.png b/windows/configuration/images/win10-set-up-work-or-school.png
deleted file mode 100644
index 0ca83fb0e1..0000000000
Binary files a/windows/configuration/images/win10-set-up-work-or-school.png and /dev/null differ
diff --git a/windows/configuration/images/win10servicing-fig2-featureupgrade.png b/windows/configuration/images/win10servicing-fig2-featureupgrade.png
deleted file mode 100644
index e4dc76b44f..0000000000
Binary files a/windows/configuration/images/win10servicing-fig2-featureupgrade.png and /dev/null differ
diff --git a/windows/configuration/images/win10servicing-fig3.png b/windows/configuration/images/win10servicing-fig3.png
deleted file mode 100644
index 688f92b173..0000000000
Binary files a/windows/configuration/images/win10servicing-fig3.png and /dev/null differ
diff --git a/windows/configuration/images/win10servicing-fig4-upgradereleases.png b/windows/configuration/images/win10servicing-fig4-upgradereleases.png
deleted file mode 100644
index 961c8bebe2..0000000000
Binary files a/windows/configuration/images/win10servicing-fig4-upgradereleases.png and /dev/null differ
diff --git a/windows/configuration/images/win10servicing-fig5.png b/windows/configuration/images/win10servicing-fig5.png
deleted file mode 100644
index dc4b2fc5b2..0000000000
Binary files a/windows/configuration/images/win10servicing-fig5.png and /dev/null differ
diff --git a/windows/configuration/images/win10servicing-fig6.png b/windows/configuration/images/win10servicing-fig6.png
deleted file mode 100644
index 4cdc5f9c6f..0000000000
Binary files a/windows/configuration/images/win10servicing-fig6.png and /dev/null differ
diff --git a/windows/configuration/images/win10servicing-fig7.png b/windows/configuration/images/win10servicing-fig7.png
deleted file mode 100644
index 0a9a851449..0000000000
Binary files a/windows/configuration/images/win10servicing-fig7.png and /dev/null differ
diff --git a/windows/configuration/images/windows-10-management-cyod-byod-flow.png b/windows/configuration/images/windows-10-management-cyod-byod-flow.png
deleted file mode 100644
index 6121e93832..0000000000
Binary files a/windows/configuration/images/windows-10-management-cyod-byod-flow.png and /dev/null differ
diff --git a/windows/configuration/images/windows-10-management-gp-intune-flow.png b/windows/configuration/images/windows-10-management-gp-intune-flow.png
deleted file mode 100644
index c9e3f2ea31..0000000000
Binary files a/windows/configuration/images/windows-10-management-gp-intune-flow.png and /dev/null differ
diff --git a/windows/configuration/images/windows-10-management-range-of-options.png b/windows/configuration/images/windows-10-management-range-of-options.png
deleted file mode 100644
index e4de546709..0000000000
Binary files a/windows/configuration/images/windows-10-management-range-of-options.png and /dev/null differ
diff --git a/windows/configuration/images/windows-icd.png b/windows/configuration/images/windows-icd.png
deleted file mode 100644
index 4bc8a18f4c..0000000000
Binary files a/windows/configuration/images/windows-icd.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-distribute.png b/windows/configuration/images/wsfb-distribute.png
deleted file mode 100644
index d0482f6ebe..0000000000
Binary files a/windows/configuration/images/wsfb-distribute.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-firstrun.png b/windows/configuration/images/wsfb-firstrun.png
deleted file mode 100644
index 2673567a1e..0000000000
Binary files a/windows/configuration/images/wsfb-firstrun.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-inventory-viewlicense.png b/windows/configuration/images/wsfb-inventory-viewlicense.png
deleted file mode 100644
index 9fafad1aff..0000000000
Binary files a/windows/configuration/images/wsfb-inventory-viewlicense.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-inventory.png b/windows/configuration/images/wsfb-inventory.png
deleted file mode 100644
index b060fb30e4..0000000000
Binary files a/windows/configuration/images/wsfb-inventory.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-inventoryaddprivatestore.png b/windows/configuration/images/wsfb-inventoryaddprivatestore.png
deleted file mode 100644
index bb1152e35b..0000000000
Binary files a/windows/configuration/images/wsfb-inventoryaddprivatestore.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-landing.png b/windows/configuration/images/wsfb-landing.png
deleted file mode 100644
index beae0b52af..0000000000
Binary files a/windows/configuration/images/wsfb-landing.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-licenseassign.png b/windows/configuration/images/wsfb-licenseassign.png
deleted file mode 100644
index 5904abb3b9..0000000000
Binary files a/windows/configuration/images/wsfb-licenseassign.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-licensedetails.png b/windows/configuration/images/wsfb-licensedetails.png
deleted file mode 100644
index 53e0f5c935..0000000000
Binary files a/windows/configuration/images/wsfb-licensedetails.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-licensereclaim.png b/windows/configuration/images/wsfb-licensereclaim.png
deleted file mode 100644
index 9f94cd3600..0000000000
Binary files a/windows/configuration/images/wsfb-licensereclaim.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-manageinventory.png b/windows/configuration/images/wsfb-manageinventory.png
deleted file mode 100644
index 9a544ddc21..0000000000
Binary files a/windows/configuration/images/wsfb-manageinventory.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-offline-distribute-mdm.png b/windows/configuration/images/wsfb-offline-distribute-mdm.png
deleted file mode 100644
index ec0e77a9a9..0000000000
Binary files a/windows/configuration/images/wsfb-offline-distribute-mdm.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-onboard-1.png b/windows/configuration/images/wsfb-onboard-1.png
deleted file mode 100644
index 012e91a845..0000000000
Binary files a/windows/configuration/images/wsfb-onboard-1.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-onboard-2.png b/windows/configuration/images/wsfb-onboard-2.png
deleted file mode 100644
index 2ff98fb1f7..0000000000
Binary files a/windows/configuration/images/wsfb-onboard-2.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-onboard-3.png b/windows/configuration/images/wsfb-onboard-3.png
deleted file mode 100644
index ed9a61d353..0000000000
Binary files a/windows/configuration/images/wsfb-onboard-3.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-onboard-4.png b/windows/configuration/images/wsfb-onboard-4.png
deleted file mode 100644
index d99185ddc6..0000000000
Binary files a/windows/configuration/images/wsfb-onboard-4.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-onboard-5.png b/windows/configuration/images/wsfb-onboard-5.png
deleted file mode 100644
index 68049f4425..0000000000
Binary files a/windows/configuration/images/wsfb-onboard-5.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-onboard-7.png b/windows/configuration/images/wsfb-onboard-7.png
deleted file mode 100644
index 38b7348b21..0000000000
Binary files a/windows/configuration/images/wsfb-onboard-7.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-online-distribute-mdm.png b/windows/configuration/images/wsfb-online-distribute-mdm.png
deleted file mode 100644
index 4b0f7cbf3a..0000000000
Binary files a/windows/configuration/images/wsfb-online-distribute-mdm.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-paid-app-temp.png b/windows/configuration/images/wsfb-paid-app-temp.png
deleted file mode 100644
index 89e3857d07..0000000000
Binary files a/windows/configuration/images/wsfb-paid-app-temp.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-permissions-assignrole.png b/windows/configuration/images/wsfb-permissions-assignrole.png
deleted file mode 100644
index de2e1785ba..0000000000
Binary files a/windows/configuration/images/wsfb-permissions-assignrole.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-private-store-gpo.PNG b/windows/configuration/images/wsfb-private-store-gpo.PNG
deleted file mode 100644
index 5e7fe44ec2..0000000000
Binary files a/windows/configuration/images/wsfb-private-store-gpo.PNG and /dev/null differ
diff --git a/windows/configuration/images/wsfb-privatestore.png b/windows/configuration/images/wsfb-privatestore.png
deleted file mode 100644
index 74c9f1690d..0000000000
Binary files a/windows/configuration/images/wsfb-privatestore.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-privatestoreapps.png b/windows/configuration/images/wsfb-privatestoreapps.png
deleted file mode 100644
index 1ddb543796..0000000000
Binary files a/windows/configuration/images/wsfb-privatestoreapps.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-renameprivatestore.png b/windows/configuration/images/wsfb-renameprivatestore.png
deleted file mode 100644
index c6db282581..0000000000
Binary files a/windows/configuration/images/wsfb-renameprivatestore.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-settings-mgmt.png b/windows/configuration/images/wsfb-settings-mgmt.png
deleted file mode 100644
index 2a7b590d19..0000000000
Binary files a/windows/configuration/images/wsfb-settings-mgmt.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-settings-permissions.png b/windows/configuration/images/wsfb-settings-permissions.png
deleted file mode 100644
index 63d04d270b..0000000000
Binary files a/windows/configuration/images/wsfb-settings-permissions.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-wsappaddacct.png b/windows/configuration/images/wsfb-wsappaddacct.png
deleted file mode 100644
index 5c0bd9a4ce..0000000000
Binary files a/windows/configuration/images/wsfb-wsappaddacct.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-wsappprivatestore.png b/windows/configuration/images/wsfb-wsappprivatestore.png
deleted file mode 100644
index 9c29e7604c..0000000000
Binary files a/windows/configuration/images/wsfb-wsappprivatestore.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-wsappsignin.png b/windows/configuration/images/wsfb-wsappsignin.png
deleted file mode 100644
index c2c2631a94..0000000000
Binary files a/windows/configuration/images/wsfb-wsappsignin.png and /dev/null differ
diff --git a/windows/configuration/images/wsfb-wsappworkacct.png b/windows/configuration/images/wsfb-wsappworkacct.png
deleted file mode 100644
index 5eb9035124..0000000000
Binary files a/windows/configuration/images/wsfb-wsappworkacct.png and /dev/null differ
diff --git a/windows/configuration/images/wufb-config1a.png b/windows/configuration/images/wufb-config1a.png
deleted file mode 100644
index 1514b87528..0000000000
Binary files a/windows/configuration/images/wufb-config1a.png and /dev/null differ
diff --git a/windows/configuration/images/wufb-config2.png b/windows/configuration/images/wufb-config2.png
deleted file mode 100644
index f54eef9a50..0000000000
Binary files a/windows/configuration/images/wufb-config2.png and /dev/null differ
diff --git a/windows/configuration/images/wufb-config3a.png b/windows/configuration/images/wufb-config3a.png
deleted file mode 100644
index 538028cfdc..0000000000
Binary files a/windows/configuration/images/wufb-config3a.png and /dev/null differ
diff --git a/windows/configuration/images/wufb-do.png b/windows/configuration/images/wufb-do.png
deleted file mode 100644
index 8d6c9d0b8a..0000000000
Binary files a/windows/configuration/images/wufb-do.png and /dev/null differ
diff --git a/windows/configuration/images/wufb-groups.png b/windows/configuration/images/wufb-groups.png
deleted file mode 100644
index 13cdea04b0..0000000000
Binary files a/windows/configuration/images/wufb-groups.png and /dev/null differ
diff --git a/windows/configuration/images/wufb-pause-feature.png b/windows/configuration/images/wufb-pause-feature.png
deleted file mode 100644
index afeac43e29..0000000000
Binary files a/windows/configuration/images/wufb-pause-feature.png and /dev/null differ
diff --git a/windows/configuration/images/wufb-qual.png b/windows/configuration/images/wufb-qual.png
deleted file mode 100644
index 4a93408522..0000000000
Binary files a/windows/configuration/images/wufb-qual.png and /dev/null differ
diff --git a/windows/configuration/images/wufb-sccm.png b/windows/configuration/images/wufb-sccm.png
deleted file mode 100644
index 1d568c1fe4..0000000000
Binary files a/windows/configuration/images/wufb-sccm.png and /dev/null differ
diff --git a/windows/configuration/images/x_blk.png b/windows/configuration/images/x_blk.png
deleted file mode 100644
index 69432ff71c..0000000000
Binary files a/windows/configuration/images/x_blk.png and /dev/null differ
diff --git a/windows/configuration/kiosk-single-app.md b/windows/configuration/kiosk-single-app.md
index 1fe629ddd5..3724425208 100644
--- a/windows/configuration/kiosk-single-app.md
+++ b/windows/configuration/kiosk-single-app.md
@@ -337,7 +337,7 @@ To exit the assigned access (kiosk) app, press **Ctrl + Alt + Del**, and then si
 
 If you press **Ctrl + Alt + Del** and do not sign in to another account, after a set time, assigned access will resume. The default time is 30 seconds, but you can change that in the following registry key:
 
-`HKEY\_LOCAL\_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI`
+`HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI`
 
 To change the default time for assigned access to resume, add *IdleTimeOut* (DWORD) and enter the value data as milliseconds in hexadecimal.
 
diff --git a/windows/configuration/manage-wifi-sense-in-enterprise.md b/windows/configuration/manage-wifi-sense-in-enterprise.md
deleted file mode 100644
index f5ee82e15a..0000000000
--- a/windows/configuration/manage-wifi-sense-in-enterprise.md
+++ /dev/null
@@ -1,99 +0,0 @@
----
-title: Manage Wi-Fi Sense in your company (Windows 10)
-description: Wi-Fi Sense automatically connects you to Wi-Fi, so you can get online quickly in more places.
-ms.reviewer: 
-manager: aaroncz
-ms.author: lizlong
-ms.prod: windows-client
-author: lizgt2000
-ms.localizationpriority: medium
-ms.topic: article
-ms.technology: itpro-configure
-ms.date: 12/31/2017
----
-
-# Manage Wi-Fi Sense in your company
-
-**Applies to**
-
-- Windows 10 version 1709 and older
-
-> [!IMPORTANT]
-> Beginning with Windows 10, version 1803, Wifi-Sense is no longer available. The following information only applies to Windows 10, version 1709 and prior. Please see [Connecting to open Wi-Fi hotspots in Windows 10](https://privacy.microsoft.com/windows-10-open-wi-fi-hotspots) for more details.
-
-Wi-Fi Sense learns about open Wi-Fi hotspots your Windows device by collecting information about the network, like whether the open Wi-Fi network has a high-quality connection to the Internet. By using that information from your device and from other Wi-Fi Sense customers' devices too, Wi-Fi Sense builds a database of these high-quality networks. When you’re in range of one of these Wi-Fi hotspots, you automatically get connected to it.
-
-The initial settings for Wi-Fi Sense are determined by the options you chose when you first set up your device with Windows 10.
-
-> [!NOTE]
-> >Wi-Fi Sense isn’t available in all countries or regions.
-
-## How does Wi-Fi Sense work?
-Wi-Fi Sense connects your employees to open Wi-Fi networks. Typically, these are the open (no password required) Wi-Fi hotspots you see when you’re out and about.
-
-## How to manage Wi-Fi Sense in your company
-In a company environment, you will most likely deploy Windows 10 to your employees' devices using your preferred deployment method and then manage their settings globally. With that in mind, you have a few options for managing how your employees will use Wi-Fi Sense.
-
-> [!IMPORTANT]
-> Turning off Wi-Fi Sense stops employees from connecting automatically to open hotspots.
-
-### Using Group Policy (available starting with Windows 10, version 1511)
-You can manage your Wi-Fi Sense settings by using Group Policy and your Group Policy editor.
-
-**To set up Wi-Fi Sense using Group Policy**
-
-1.  Open your Group Policy editor and go to the `Computer Configuration\Administrative Templates\Network\WLAN Service\WLAN Settings\Allow Windows to automatically connect to suggested open hotspots, to networks shared by contacts, and to hotspots offering paid services` setting.
-
-    ![Group Policy Editor, showing the Wi-Fi Sense setting.](images/wifisense-grouppolicy.png)
-
-2.  Turn Wi-Fi Sense on (enabled) or off (disabled), based on your company's environment.
-
-### Using the Registry Editor
-You can manage your Wi-Fi Sense settings by using registry keys and the Registry Editor.
-
-**To set up Wi-Fi Sense using the Registry Editor**
-
-1. Open your Registry Editor and go to `HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\WcmSvc\wifinetworkmanager\config\`
-
-2. Create and set a new **DWORD (32-bit) Value** named, **AutoConnectAllowedOEM**, with a **Value data** of **0 (zero)**.
-
-    Setting this value to `0` turns off Wi-Fi Sense and all Wi-Fi sense features. When turned off, the Wi-Fi Sense settings still appear on the **Wi-Fi Settings** screen, but can't be controlled by the employee and all of the Wi-Fi Sense features are turned off. For more info, see [How to configure Wi-Fi Sense on Windows 10 in an enterprise](/troubleshoot/windows-client/networking/configure-wifi-sense-and-paid-wifi-service).
-
-   ![Registry Editor, showing the creation of a new DWORD value.](images/wifisense-registry.png)
-
-### Using the Windows Provisioning settings
-You can manage your Wi-Fi Sense settings by changing the Windows provisioning setting, **WiFISenseAllowed**.
-
-**To set up Wi-Fi Sense using WiFISenseAllowed**
-
-- Change the Windows Provisioning setting, **WiFISenseAllowed**, to **0**.
-
-  Setting this value to `0` turns off Wi-Fi Sense and all Wi-Fi sense features. When turned off, the Wi-Fi Sense settings still appear on the **Wi-Fi Settings** screen, but can't be controlled by the employee and all of the Wi-Fi Sense features are turned off. For more info, see the Windows Provisioning settings reference topic, [WiFiSenseAllowed](./wcd/wcd-connectivityprofiles.md#wifisense).
-
-### Using Unattended Windows Setup settings
-If your company still uses Unattend, you can manage your Wi-Fi Sense settings by changing the Unattended Windows Setup setting, **WiFiSenseAllowed**.
-
-**To set up Wi-Fi Sense using WiFISenseAllowed**
-
-- Change the Unattended Windows Setup setting, **WiFISenseAllowed**, to **0**.
-
-  Setting this value to `0` turns off Wi-Fi Sense and all Wi-Fi sense features. When turned off, the Wi-Fi Sense settings still appear on the **Wi-Fi Settings</strong> screen, but can't be controlled by the employee and all of the Wi-Fi Sense features are turned off. For more info, see the Unattended Windows Setup Reference topic, [WiFiSenseAllowed](/previous-versions//mt186511(v=vs.85)).
-
-### How employees can change their own Wi-Fi Sense settings
-If you don’t turn off the ability for your employees to use Wi-Fi Sense, they can turn it on locally by selecting **Settings > Network & Internet > Wi-Fi > Manage Wi-Fi settings**, and then turning on **Connect to suggested open hotspots**.
-
-![Wi-Fi Sense options shown to employees if it's not turned off.](images/wifisense-settingscreens.png)
-
-> [!IMPORTANT]
-> The service that was used to share networks with Facebook friends, Outlook.com contacts, or Skype contacts is no longer available. This means:
-
-The **Connect to networks shared by my contacts** setting will still appear in **Settings > Network & Internet > Wi-Fi > Manage Wi-Fi settings** on your device. However, this setting will have no effect now. Regardless of what it’s set to, networks won’t be shared with your contacts. Your contacts won’t be connected to networks you’ve shared with them, and you won’t be connected to networks they’ve shared with you.
-
-Even if you selected **Automatically connect to networks shared by your contacts** when you first set up your Windows 10 device, you still won’t be connected to networks your contacts have shared with you.
-
-If you select the **Share network with my contacts** check box the first time you connect to a new network, the network won’t be shared.
-
-## Related topics
-
-- [Wi-Fi Sense and Privacy](https://go.microsoft.com/fwlink/p/?LinkId=620911)
-- [How to configure Wi-Fi Sense on Windows 10 in an enterprise](/troubleshoot/windows-client/networking/configure-wifi-sense-and-paid-wifi-service)
diff --git a/windows/configuration/provisioning-packages/provision-pcs-with-apps-and-certificates.md b/windows/configuration/provisioning-packages/provision-pcs-with-apps-and-certificates.md
deleted file mode 100644
index 073685eb1c..0000000000
--- a/windows/configuration/provisioning-packages/provision-pcs-with-apps-and-certificates.md
+++ /dev/null
@@ -1,185 +0,0 @@
----
-title: Provision PCs with apps and certificates (Windows 10)
-description: Create a provisioning package to apply settings to a PC running Windows 10.
-ms.prod: windows-client
-author: lizgt2000
-ms.author: lizlong
-ms.topic: article
-ms.localizationpriority: medium
-ms.date: 07/27/2017
-ms.reviewer: 
-manager: aaroncz
-ms.technology: itpro-configure
----
-
-# Provision PCs with apps and certificates for initial deployment (advanced provisioning)
-
-
-**Applies to**
-
-- Windows 10
-
-DEPRECATED - See [Provision PCs with apps](provision-pcs-with-apps.md)
-
-This topic explains how to create and apply a provisioning package that contains apps and certificates to a device running all desktop editions of Windows 10 except Windows 10 Home. Provisioning packages can include management instructions and policies, installation of specific apps, customization of network connections and policies, and more.
-
-You can apply a provisioning package on a USB drive to off-the-shelf devices during setup, making it fast and easy to configure new devices. 
-
-## Advantages
--   You can configure new devices without reimaging.
-
--   Works on both mobile and desktop devices.
-
--   No network connectivity required.
-
--   Simple to apply.
-
-[Learn more about the benefits and uses of provisioning packages.](provisioning-packages.md)
-
-## Create the provisioning package
-
-Use the Windows Imaging and Configuration Designer (ICD) tool included in the Windows Assessment and Deployment Kit (ADK) for Windows 10 to create a provisioning package. [Install the ADK and select **Configuration Designer**.](https://developer.microsoft.com/windows/hardware/windows-assessment-deployment-kit)
-
-1. Open Windows ICD (by default, %windir%\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit\Imaging and Configuration Designer\x86\ICD.exe).
-
-2. Click **Advanced provisioning**.
-
-   ![ICD start options.](../images/icdstart-option.png)  
-  
-3. Name your project and click **Next**.
-
-4. Select **All Windows desktop editions**, click **Next**, and then click **Finish**.  
-
-
-### Add a desktop app to your package
-
-1. In the **Available customizations** pane, go to **Runtime settings** > **ProvisioningCommands** > **DeviceContext** > **CommandFiles**. 
-
-2. Add all the files required for the app install, including the data files and the installer.
-
-3. Go to **Runtime settings** > **ProvisioningCommands** > **DeviceContext** > **CommandLine** and specify the command line that needs to be executed to install the app. This is a single command line (such as a script, executable, or msi) that triggers a silent install of your CommandFiles. Note that the install must execute silently (without displaying any UI). For MSI installers use, the `msiexec /quiet` option. 
-
-> [!NOTE]
-> If you are installing more than one app, then use `CommandLine` to invoke the script or batch file that orchestrates installation of the files. For more information, see [Use a script to install a desktop app in provisioning packages](provisioning-script-to-install-app.md). 
-
-
-### Add a universal app to your package
-
-Universal apps that you can distribute in the provisioning package can be line-of-business (LOB) apps developed by your organization, Microsoft Store for Business apps that you acquire with [offline licensing](/microsoft-store/acquire-apps-windows-store-for-business), or third-party apps. This procedure will assume you are distributing apps from the Microsoft Store for Business. For other apps, obtain the necessary information (such as the package family name) from the app developer. 
-
-1. In the **Available customizations** pane, go to **Runtime settings** > **UniversalAppInstall**. 
-
-2. For **DeviceContextApp**, specify the **PackageFamilyName** for the app. In Microsoft Store for Business, the package family name is listed in the **Package details** section of the download page.
-
-3. For **ApplicationFile**, click **Browse** to find and select the target app (either an \*.appx or \*.appxbundle).
-
-4. For **DependencyAppxFiles**, click **Browse** to find and add any dependencies for the app. In Microsoft Store for Business, any dependencies for the app are listed in the **Required frameworks** section of the download page. 
-
-5. For **DeviceContextAppLicense**, enter the **LicenseProductID**. 
-
-    - In Microsoft Store for Business, generate the unencoded license for the app on the app's download page, and change the extension of the license file from **.xml** to **.ms-windows-store-license**.
-        
-    - Open the license file and search for **LicenseID=** to get the GUID, enter the GUID in the **LicenseProductID** field and click **Add**.
-    
-6. In the **Available customizations** pane, click the **LicenseProductId** that you just added. 
-
-7. For **LicenseInstall**, click **Browse**, navigate to the license file that you renamed *\<file name>*.**ms-windows-store-license**, and select the license file.
-
-[Learn more about distributing offline apps from the Microsoft Store for Business.](/microsoft-store/distribute-offline-apps)
-
-> [!NOTE]
-> Removing a provisioning package will not remove any apps installed by device context in that provisioning package.
-
-
-
-### Add a certificate to your package
-
-1. In the **Available customizations** pane, go to **Runtime settings** > **Certificates** > **ClientCertificates**. 
-
-2. Enter a **CertificateName** and then click **Add**. 
-
-2. Enter the **CertificatePassword**. 
-
-3. For **CertificatePath**, browse and select the certificate to be used. 
-
-4. Set **ExportCertificate** to **False**.
-
-5. For **KeyLocation**, select **Software only**. 
-
-
-### Add other settings to your package 
-
-For details about the settings you can customize in provisioning packages, see [Windows Provisioning settings reference]( https://go.microsoft.com/fwlink/p/?LinkId=619012).
-
-### Build your package
-
-1. When you are done configuring the provisioning package, on the **File** menu, click **Save**.
-
-2. Read the warning that project files may contain sensitive information, and click **OK**.
-   > **Important**  When you build a provisioning package, you may include sensitive information in the project files and in the provisioning package (.ppkg) file. Although you have the option to encrypt the .ppkg file, project files are not encrypted. You should store the project files in a secure location and delete the project files when they are no longer needed.
-
-3. On the **Export** menu, click **Provisioning package**.
-
-4. Change **Owner** to **IT Admin**, which will set the precedence of this provisioning package higher than provisioning packages applied to this device from other sources, and then select **Next.**
-
-5. Set a value for **Package Version**.
-
-   > [!TIP]
-   > You can make changes to existing packages and change the version number to update previously applied packages.
-
-6. Optional. In the **Provisioning package security** window, you can choose to encrypt the package and enable package signing.
-
-   -   **Enable package encryption** - If you select this option, an auto-generated password will be shown on the screen.
-
-   -   **Enable package signing** - If you select this option, you must select a valid certificate to use for signing the package. You can specify the certificate by clicking **Select...** and choosing the certificate you want to use to sign the package.
-
-       **Important**  
-       We recommend that you include a trusted provisioning certificate in your provisioning package. When the package is applied to a device, the certificate is added to the system store and any package signed with that certificate thereafter can be applied silently. 
-
-7. Click **Next** to specify the output location where you want the provisioning package to go once it's built. By default, Windows ICD uses the project folder as the output location.<p>
-   Optionally, you can click **Browse** to change the default output location.
-
-8. Click **Next**.
-
-9. Click **Build** to start building the package. The project information is displayed in the build page and the progress bar indicates the build status.<p>
-   If you need to cancel the build, click **Cancel**. This cancels the current build process, closes the wizard, and takes you back to the **Customizations Page**.
-
-10. If your build fails, an error message will show up that includes a link to the project folder. You can scan the logs to determine what caused the error. Once you fix the issue, try building the package again.<p>
-    If your build is successful, the name of the provisioning package, output directory, and project directory will be shown.
-
-    -   If you choose, you can build the provisioning package again and pick a different path for the output package. To do this, click **Back** to change the output package name and path, and then click **Next** to start another build.
-    
-    -   If you are done, click **Finish** to close the wizard and go back to the **Customizations Page**.
-
-11. Select the **output location** link to go to the location of the package. You can provide that .ppkg to others through any of the following methods:
-
-    -   Shared network folder
-
-    -   SharePoint site
-
-    -   Removable media (USB/SD)
-
-    -   Email
-
-    -   USB tether (mobile only)
-
-    -   NFC (mobile only)
-
-
-
-**Next step**: [How to apply a provisioning package](provisioning-apply-package.md)
-
-## Related topics
-
-- [Provisioning packages for Windows 10](provisioning-packages.md)
-- [How provisioning works in Windows 10](provisioning-how-it-works.md)
-- [Install Windows Configuration Designer](provisioning-install-icd.md)
-- [Create a provisioning package](provisioning-create-package.md)
-- [Apply a provisioning package](provisioning-apply-package.md)
-- [Settings changed when you uninstall a provisioning package](provisioning-uninstall-package.md)
-- [Provision PCs with common settings for initial deployment (simple provisioning)](provision-pcs-for-initial-deployment.md)
-- [Use a script to install a desktop app in provisioning packages](provisioning-script-to-install-app.md)
-- [Windows Configuration Designer command-line interface (reference)](provisioning-command-line.md)
-- [Create a provisioning package with multivariant settings](provisioning-multivariant.md)
-
-
diff --git a/windows/configuration/screenshot11.png b/windows/configuration/screenshot11.png
deleted file mode 100644
index 0ce852ebaa..0000000000
Binary files a/windows/configuration/screenshot11.png and /dev/null differ
diff --git a/windows/configuration/screenshot2.png b/windows/configuration/screenshot2.png
deleted file mode 100644
index fb7995600e..0000000000
Binary files a/windows/configuration/screenshot2.png and /dev/null differ
diff --git a/windows/configuration/wcd/wcd.md b/windows/configuration/wcd/wcd.md
index c982e45ca3..1c7d6d423c 100644
--- a/windows/configuration/wcd/wcd.md
+++ b/windows/configuration/wcd/wcd.md
@@ -39,7 +39,7 @@ This section describes the settings that you can configure in [provisioning pack
 | [DeviceUpdateCenter](wcd-deviceupdatecenter.md) | ✔️ |  |  |  |
 | [DMClient](wcd-dmclient.md) | ✔️ | ✔️ |  | ✔️ |
 | [EditionUpgrade](wcd-editionupgrade.md) | ✔️ |  | ✔️ |  |
-| [EmbeddedLockdownProfiles](wcd-embeddedlockdownprofiles.md) |  |  |  |  |
+| [EmbeddedLockdownProfiles](https://support.microsoft.com/windows/windows-10-mobile-end-of-support-faq-8c2dd1cf-a571-00f0-0881-bb83926d05c5) |  |  |  |  |
 | [FirewallConfiguration](wcd-firewallconfiguration.md) |  |  |  | ✔️ |
 | [FirstExperience](wcd-firstexperience.md) |  |  | ✔️ |  |
 | [Folders](wcd-folders.md) |✔️ | ✔️ |  |  |
diff --git a/windows/deployment/do/mcc-isp-faq.yml b/windows/deployment/do/mcc-isp-faq.yml
index 9c4a778d6c..74688ffae3 100644
--- a/windows/deployment/do/mcc-isp-faq.yml
+++ b/windows/deployment/do/mcc-isp-faq.yml
@@ -28,12 +28,18 @@ sections:
       - question: What are the prerequisites and hardware requirements?
         answer: | 
          - Azure subscription  
-         - Hardware to host Microsoft Connected Cache:   
+         - Hardware to host Microsoft Connected Cache
+         - Ubuntu 20.04 LTS on a physical server or VM of your choice. 
+         
+         > [!NOTE]
+         > The Microsoft Connected Cache is deployed and managed using Azure IoT Edge and Ubuntu 20.04 is an [Azure IoT Edge Tier 1 operating system](/azure/iot-edge/support?view=iotedge-2020-11#tier-1). Additionally, the Microsoft Connected Cache module is optimized for Ubuntu 20.04 LTS. 
+         
+         The following are recommended hardware configurations:   
           
           <!--Using include file, mcc-prerequisites.md, for shared content on DO monitoring-->
           [!INCLUDE [Microsoft Connected Cache Prerequisites](includes/mcc-prerequisites.md)]
 
-         We have one customer who is able to achieve 40-Gbps egress rate using the following hardware specification:  
+         We have one customer who is able to achieve mid-30s Gbps egress rate using the following hardware specification:  
           - Dell PowerEdge R330  
           - 2 x Intel(R) Xeon(R) CPU E5-2630 v3 @ 2.40 GHz, total 32 core  
           - 48 GB, Micron Technology 18ASF1G72PDZ-2G1A1, Speed: 2133 MT/s  
diff --git a/windows/deployment/do/waas-delivery-optimization-reference.md b/windows/deployment/do/waas-delivery-optimization-reference.md
index fc359af764..6564dcd26e 100644
--- a/windows/deployment/do/waas-delivery-optimization-reference.md
+++ b/windows/deployment/do/waas-delivery-optimization-reference.md
@@ -64,7 +64,7 @@ In MDM, the same settings are under **.Vendor/MSFT/Policy/Config/DeliveryOptimiz
 | [Delay foreground download cache server fallback (in secs)](#delay-foreground-download-cache-server-fallback-in-secs) | DelayCacheServerFallbackForeground | 1903 |
 | [Delay background download cache server fallback (in secs)](#delay-background-download-cache-server-fallback-in-secs) | DelayCacheServerFallbackBackground | 1903 |
 | [Cache Server Hostname](#cache-server-hostname) | DOCacheHost | 1809  |
-| [Cache Server Hostname Source](#cache-server-hostname-source) | DOCacheHostSource | 1809  |
+| [Cache Server Hostname Source](#cache-server-hostname-source) | DOCacheHostSource | 2004 |
 | [Maximum Foreground Download Bandwidth (in KB/s)](#maximum-background-download-bandwidth-in-kbs)         | DOMaxForegroundDownloadBandwidth | 2004 |
 | [Maximum Background Download Bandwidth (in KB/s)](#maximum-background-download-bandwidth-in-kbs) | DOMaxBackgroundDownloadBandwidth | 2004 |
 
diff --git a/windows/deployment/do/waas-delivery-optimization-setup.md b/windows/deployment/do/waas-delivery-optimization-setup.md
index 3b1b128b64..0df4f87d64 100644
--- a/windows/deployment/do/waas-delivery-optimization-setup.md
+++ b/windows/deployment/do/waas-delivery-optimization-setup.md
@@ -91,8 +91,6 @@ To do this with MDM, go to **./Device/Vendor/MSFT/Policy/Config/DeliveryOptimiza
 
 Many devices now come with large internal drives. You can set Delivery Optimization to take better advantage of this space (especially if you have large numbers of devices) by changing the minimum file size to cache. If you have more than 30 devices in your local network or group, change it from the default 50 MB to 10 MB. If you have more than 100 devices (and are running Windows 10, version 1803 or later), set this value to 1 MB.
 
-[//]: # (default of 50 aimed at consumer)
-
 To do this in Group Policy, go to **Computer Configuration\Administrative Templates\Windows Components\Delivery Optimization** and set **Minimum Peer Caching Content File Size** to 10 (if you have more than 30 devices) or 1 (if you have more than 100 devices).
 
 To do this with MDM, go to **./Device/Vendor/MSFT/Policy/Config/DeliveryOptimization/** and set [DOMinFileSizeToCache](/windows/client-management/mdm/policy-csp-deliveryoptimization#dominfilesizetocache) to 100 (if you have more than 30 devices) or 1 (if you have more than 100 devices).
diff --git a/windows/deployment/update/servicing-stack-updates.md b/windows/deployment/update/servicing-stack-updates.md
index 60f042509b..f7d7f2d1b8 100644
--- a/windows/deployment/update/servicing-stack-updates.md
+++ b/windows/deployment/update/servicing-stack-updates.md
@@ -21,6 +21,7 @@ ms.date: 12/31/2017
 
 -   Windows 10
 -   Windows 11
+-   Windows Server
 
 ## What is a servicing stack update?
 Servicing stack updates provide fixes to the servicing stack, the component that installs Windows updates. Additionally, it contains the "component-based servicing stack" (CBS), which is a key underlying component for several elements of Windows deployment, such as DISM, SFC, changing Windows features or roles, and repairing components. The CBS is a small component that typically does not have updates released every month.
@@ -61,3 +62,5 @@ Typically, the improvements are reliability and performance improvements that do
 ## Simplifying on-premises deployment of servicing stack updates
 
 With the Windows Update experience, servicing stack updates and cumulative updates are deployed together to the device. The update stack automatically orchestrates the installation, so both are applied correctly. Starting in February 2021, the cumulative update will include the latest servicing stack updates, to provide a single cumulative update payload to both Windows Server Update Services (WSUS) and Microsoft Catalog. If you use an endpoint management tool backed by WSUS, such as Configuration Manager, you will only have to select and deploy the monthly cumulative update. The latest servicing stack updates will automatically be applied correctly. Release notes and file information for cumulative updates, including those related to the servicing stack, will be in a single KB article. The combined monthly cumulative update will be available on Windows 10, version 2004 and later starting with the 2021 2C release, KB4601382.
+
+
diff --git a/windows/deployment/update/waas-wu-settings.md b/windows/deployment/update/waas-wu-settings.md
index 5d0a8388a8..6bcdbc9cde 100644
--- a/windows/deployment/update/waas-wu-settings.md
+++ b/windows/deployment/update/waas-wu-settings.md
@@ -10,7 +10,7 @@ ms.topic: article
 ms.collection: highpri
 date: 09/22/2022
 ms.technology: itpro-updates
-ms.date: 12/31/2017
+ms.date: 01/06/2023
 ---
 
 # Manage additional Windows Update settings
@@ -156,7 +156,7 @@ Enables the IT admin to manage automatic update behavior to scan, download, and
 
 #### Configuring Automatic Updates by using Group Policy
 
-Under **Computer Configuration\Administrative Templates\Windows Components\Windows update\Configure Automatic Updates**, you must select one of the four options:
+Under **Computer Configuration\Administrative Templates\Windows Components\Windows update\Configure Automatic Updates**, you must select one of the following options:
 
 **2 - Notify for download and auto install** -  When Windows finds updates that apply to this device, users will be notified that updates are ready to be downloaded. After going to **Settings > Update & security > Windows Update**, users can download and install any available updates.
 
@@ -164,11 +164,13 @@ Under **Computer Configuration\Administrative Templates\Windows Components\Windo
 
 **4 - Auto download and schedule the install** - Specify the schedule using the options in the Group Policy Setting. For more information about this setting, see [Schedule update installation](waas-restart.md#schedule-update-installation).
 
-**5 - Allow local admin to choose setting** - With this option, local administrators will be allowed to use the settings app to select a configuration option of their choice. Local administrators will not be allowed to disable the configuration for Automatic Updates.
+**5 - Allow local admin to choose setting** - With this option, local administrators will be allowed to use the settings app to select a configuration option of their choice. Local administrators will not be allowed to disable the configuration for Automatic Updates. This option is not available in any Windows 10 or later versions. 
 
-If this setting is set to *Disabled*, any updates that are available on Windows Update must be downloaded and installed manually. To do this, users must go to **Settings > Update & security > Windows Update**.
+**7 - Notify for install and notify for restart** (Windows Server 2016 and later only) - With this option, when Windows finds updates that apply to this device, they will be downloaded, then users will be notified that updates are ready to be installed. Once updates are installed, a notification will be displayed to users to restart the device. 
 
-If this setting is set to *Not Configured*, an administrator can still configure Automatic Updates through the settings app, under **Settings > Update & security > Windows Update > Advanced options**.
+If this setting is set to **Disabled**, any updates that are available on Windows Update must be downloaded and installed manually. To do this, users must go to **Settings > Update & security > Windows Update**.
+
+If this setting is set to **Not Configured**, an administrator can still configure Automatic Updates through the settings app, under **Settings > Update & security > Windows Update > Advanced options**.
 
 #### Configuring Automatic Updates by editing the registry
 
@@ -205,6 +207,10 @@ To do this, follow these steps:
 
      * **4**: Automatically download and scheduled installation.
 
+     * **5**: Allow local admin to select the configuration mode. This option is not available for Windows 10 or later versions.
+
+     * **7**:  Notify for install and notify for restart. (Windows Server 2016 and later only)
+
    * ScheduledInstallDay (REG_DWORD):
 
      * **0**: Every day.
diff --git a/windows/deployment/update/wufb-reports-configuration-intune.md b/windows/deployment/update/wufb-reports-configuration-intune.md
index 2d9a417660..5f07d75c3e 100644
--- a/windows/deployment/update/wufb-reports-configuration-intune.md
+++ b/windows/deployment/update/wufb-reports-configuration-intune.md
@@ -8,7 +8,7 @@ author: mestew
 ms.author: mstewart
 ms.localizationpriority: medium
 ms.topic: article
-ms.date: 12/05/2022
+ms.date: 12/22/2022
 ms.technology: itpro-updates
 ---
 
@@ -27,7 +27,7 @@ This article is targeted at configuring devices enrolled to [Microsoft Intune](/
 
 ## Create a configuration profile
 
-Create a configuration profile that will set the required policies for Windows Update for Business reports. There are two profile types that can be used to create a configuration profile for Windows Update for Business reports:
+Create a configuration profile that will set the required policies for Windows Update for Business reports. There are two profile types that can be used to create a configuration profile for Windows Update for Business reports (select one):
 - The [settings catalog](#settings-catalog)
 - [Template](#custom-oma-uri-based-profile) for a custom OMA URI-based profile
 
@@ -45,9 +45,12 @@ Create a configuration profile that will set the required policies for Windows U
         - **Value**: Basic (*Basic is the minimum value, but it can be safely set to a higher value*)
         - **Setting**: Allow Update Compliance Processing
         - **Value**: Enabled
+    1. Recommended settings, but not required:
+        - **Setting**: Configure Telemetry Opt In Settings Ux
+        - **Value**: Disabled (*By turning this setting on you are disabling the ability for a user to potentially override the diagnostic data level of devices such that data won't be available for those devices in Windows Update for Business reports*)
         - **Setting**: Configure Telemetry Opt In Change Notification
-    1. (*Recommended, but not required*) Allow device name to be sent in Windows Diagnostic Data. If this policy is disabled, the device name won't be sent and won't be visible in Windows Update for Business reports:
-        - **Setting**: Allow device name to be sent in Windows diagnostic data
+        - **Value**: Disabled (*By turning this setting on you are disabling notifications of diagnostic data changes*)
+        - **Setting**: Allow device name to be sent in Windows diagnostic data (*If this policy is disabled, the device name won't be sent and won't be visible in Windows Update for Business reports*)
         - **Value**: Allowed
 
 1. Continue through the next set of tabs **Scope tags**, **Assignments**, and **Applicability Rules** to assign the configuration profile to devices you wish to enroll.
diff --git a/windows/deployment/usmt/usmt-scanstate-syntax.md b/windows/deployment/usmt/usmt-scanstate-syntax.md
index e8fd16c69f..14b65a281f 100644
--- a/windows/deployment/usmt/usmt-scanstate-syntax.md
+++ b/windows/deployment/usmt/usmt-scanstate-syntax.md
@@ -203,6 +203,7 @@ The following table indicates which command-line options aren't compatible with
 |**/encrypt**|Required*|X|X||
 |**/keyfile**|N/A||X||
 |**/l**|||||
+|**/listfiles**|||X||
 |**/progress**|||X||
 |**/r**|||X||
 |**/w**|||X||
diff --git a/windows/deployment/windows-10-subscription-activation.md b/windows/deployment/windows-10-subscription-activation.md
index b48ff94e98..c34e8342eb 100644
--- a/windows/deployment/windows-10-subscription-activation.md
+++ b/windows/deployment/windows-10-subscription-activation.md
@@ -40,7 +40,7 @@ This article covers the following information:
 For more information on how to deploy Enterprise licenses, see [Deploy Windows Enterprise licenses](deploy-enterprise-licenses.md).
 
 > [!NOTE]
-> Organizations that use the Subscription Activation feature to enable users to upgrade from one version of Windows to another might want to exclude the Universal Store Service APIs and Web Application, AppID 45a330b1-b1ec-4cc1-9161-9f03992aa49f, from their device compliance policy.
+> Organizations that use the Subscription Activation feature to enable users to upgrade from one version of Windows to another and use Conditional Access policies to control access need to exclude the Universal Store Service APIs and Web Application, AppID 45a330b1-b1ec-4cc1-9161-9f03992aa49f, from their device compliance policy using **Select Excluded Cloud Apps**.
 
 ## Subscription activation for Enterprise
 
diff --git a/windows/deployment/windows-autopatch/TOC.yml b/windows/deployment/windows-autopatch/TOC.yml
index e5dc7cb910..5bc21c33d2 100644
--- a/windows/deployment/windows-autopatch/TOC.yml
+++ b/windows/deployment/windows-autopatch/TOC.yml
@@ -22,6 +22,8 @@
           items:
             - name: Fix issues found by the Readiness assessment tool
               href: prepare/windows-autopatch-fix-issues.md
+            - name: Submit a tenant enrollment support request
+              href: prepare/windows-autopatch-enrollment-support-request.md
     - name: Deploy
       href: 
       items:
@@ -103,5 +105,7 @@
     - name: What's new
       href:
       items: 
+        - name: What's new 2023
+          href: whats-new/windows-autopatch-whats-new-2023.md
         - name: What's new 2022
           href: whats-new/windows-autopatch-whats-new-2022.md
\ No newline at end of file
diff --git a/windows/deployment/windows-autopatch/deploy/windows-autopatch-admin-contacts.md b/windows/deployment/windows-autopatch/deploy/windows-autopatch-admin-contacts.md
index d3cf70f023..b01e97264d 100644
--- a/windows/deployment/windows-autopatch/deploy/windows-autopatch-admin-contacts.md
+++ b/windows/deployment/windows-autopatch/deploy/windows-autopatch-admin-contacts.md
@@ -17,9 +17,9 @@ msreviewer: hathind
 There are several ways that Windows Autopatch service communicates with customers. To streamline communication and ensure we're checking with the right people when you [submit a support request](../operate/windows-autopatch-support-request.md), you must provide a set of admin contacts when you onboard with Windows Autopatch.
 
 > [!IMPORTANT]
-> You might have already added these contacts in the Microsoft Endpoint Manager admin center during the enrollment process. If so, take a moment now to double-check that the contact list is accurate, since the Windows Autopatch Service Engineering Team must be able to reach them if a severe incident occurs.
+> You might have already added these contacts in the Microsoft Endpoint Manager admin center during the [enrollment process](../prepare/windows-autopatch-enroll-tenant.md#step-4-enroll-your-tenant), or if you've [submitted a tenant enrollment support request](../prepare/windows-autopatch-enrollment-support-request.md). However, take a moment to double-check that the contact list is accurate, since the Windows Autopatch Service Engineering Team must be able to reach them if a severe incident occurs.
 
-You must have an admin contact for each specified area of focus. The Windows Autopatch Service Engineering Team will contact these individuals for assistance with troubleshooting your support request. Admin contacts should be the best person or group that can answer questions and make decisions for different [areas of focus](#area-of-focus).
+You must have an admin contact for each specified area of focus. The Windows Autopatch Service Engineering Team will contact these individuals for assistance with your support request. Admin contacts should be the best person or group that can answer questions and make decisions for different [areas of focus](#area-of-focus).
 
 > [!IMPORTANT]
 > Whoever you choose as admin contacts, they must have the knowledge and authority to make decisions for your Windows Autopatch environment. The Windows Autopatch Service Engineering Team will contact these admin contacts for questions involving support requests.
diff --git a/windows/deployment/windows-autopatch/deploy/windows-autopatch-post-reg-readiness-checks.md b/windows/deployment/windows-autopatch/deploy/windows-autopatch-post-reg-readiness-checks.md
index 985c852e6f..340afa6233 100644
--- a/windows/deployment/windows-autopatch/deploy/windows-autopatch-post-reg-readiness-checks.md
+++ b/windows/deployment/windows-autopatch/deploy/windows-autopatch-post-reg-readiness-checks.md
@@ -30,7 +30,7 @@ Device readiness in Windows Autopatch is divided into two different scenarios:
 | Scenario | Description |
 | ----- | ----- |
 | Prerequisite checks | Ensures devices follow software-based requirements before being registered with the service. |
-| Post-device registration readiness checks | Provides continuous monitoring of device health for registered devices.<p>IT admins can easily detect and remediate configuration mismatches in their environments or issues that prevent devices from having one or more software update workloads (Windows quality, feature updates, Microsoft Office, Microsoft Teams, or Microsoft Edge) fully managed by the Windows Autopatch service. Configuration mismatches can leave devices in a vulnerable state, out of compliance and exposed to security threats.</p>|
+| Post-device registration readiness checks | Provides continuous monitoring of device health for registered devices.<br><p>IT admins can easily detect and remediate configuration mismatches in their environments or issues that prevent devices from having one or more software update workloads fully managed by the Windows Autopatch service. Software workloads include:<ul><li>Windows quality updates</li><li>Feature updates</li><li>Microsoft Office</li><li>Microsoft Teams</li><li> Microsoft Edge</li></ul><p>Configuration mismatches can leave devices in a vulnerable state, out of compliance and exposed to security threats.</p></p>|
 
 ### Device readiness checks available for each scenario
 
@@ -42,14 +42,19 @@ The status of each post-device registration readiness check is shown in the Wind
 
 ## About the three tabs in the Devices blade
 
-You deploy software updates to secure your environment, but these deployments only reach healthy and active devices. Unhealthy or not ready devices affect the overall software update compliance. Figuring out device health can be challenging and disruptive to the end user when IT can’t obtain proactive data sent by the device to the service for IT admins to proactively detect, troubleshoot, and fix issues.
+You deploy software updates to secure your environment, but these deployments only reach healthy and active devices. Unhealthy or not ready devices affect the overall software update compliance.
 
-Windows Autopatch has three tabs within its Devices blade. Each tab is designed to provide a different set of device readiness statuses so IT admins know where to go to monitor, and troubleshoot potential device health issues:
+Figuring out device health can be challenging and disruptive to the end user when IT admins can't:
+
+- Obtain proactive data sent by the device to the service, or
+- Proactively detect and remediate issues
+
+Windows Autopatch has three tabs within its Devices blade. Each tab is designed to provide a different set of device readiness statuses so IT admins know where to go to monitor, and remediate potential device health issues:
 
 | Tab | Description |
 | ----- | ----- |
 | Ready | This tab only lists devices with the **Active** status. Devices with the **Active** status successfully:<ul><li>Passed the prerequisite checks.</li><li>Registered with Windows Autopatch.</li></ul>This tab also lists devices that have passed all postdevice registration readiness checks. |
-| Not ready | This tab only lists devices with the **Readiness failed** and **Inactive** status.<ul><li>**Readiness failed status**: Devices that didn’t pass one or more post-device registration readiness checks.</li><li>**Inactive**: Devices that haven’t communicated with the Microsoft Intune service in the last 28 days.</li></ul> |
+| Not ready | This tab only lists devices with the **Readiness failed** and **Inactive** status.<ul><li>**Readiness failed status**: Devices that didn’t pass one or more post-device registration readiness checks.</li><li>**Inactive**: Devices that haven't communicated with the Microsoft Intune service in the last 28 days.</li></ul> |
 | Not registered | Only lists devices with the **Prerequisite failed** status in it. Devices with the **Prerequisite failed** status didn’t pass one or more prerequisite checks during the device registration process. |
 
 ## Details about the post-device registration readiness checks
@@ -60,7 +65,7 @@ A healthy or active device in Windows Autopatch is:
 - Actively sending data
 - Passes all post-device registration readiness checks
 
-The post-device registration readiness checks are powered by the **Microsoft Cloud Managed Desktop Extension**. It's installed right after devices are successfully registered with Windows Autopatch. The **Microsoft Cloud Managed Desktop Extension** has the Device Readiness Check Plugin. The Device Readiness Check Plugin is responsible for performing the readiness checks and reporting the results back to the service. The **Microsoft Cloud Managed Desktop Extension** is a subcomponent of the overall Windows Autopatch service.
+The post-device registration readiness checks are powered by the **Microsoft Cloud Managed Desktop Extension**. It's installed right after devices are successfully registered with Windows Autopatch. The **Microsoft Cloud Managed Desktop Extension** has the Device Readiness Check Plugin. The Device Readiness Check Plugin is responsible for performing the readiness checks and reporting the results back to the service. The **Microsoft Cloud Managed Desktop Extension** is a sub-component of the overall Windows Autopatch service.
 
 The following list of post-device registration readiness checks is performed in Windows Autopatch:
 
diff --git a/windows/deployment/windows-autopatch/deploy/windows-autopatch-register-devices.md b/windows/deployment/windows-autopatch/deploy/windows-autopatch-register-devices.md
index eff03275a8..47e7d10902 100644
--- a/windows/deployment/windows-autopatch/deploy/windows-autopatch-register-devices.md
+++ b/windows/deployment/windows-autopatch/deploy/windows-autopatch-register-devices.md
@@ -86,7 +86,7 @@ For more information, see [Windows Autopatch Prerequisites](../prepare/windows-a
 
 ## About the Ready, Not ready and Not registered tabs
 
-Windows Autopatch has three tabs within its device blade. Each tab is designed to provide a different set of device readiness status so IT admin knows where to go to monitor, and troubleshoot potential device health issues.
+Windows Autopatch has three tabs within its device blade. Each tab is designed to provide a different set of device readiness statuses so IT admin knows where to go to monitor, and fix potential device health issues.
 
 | Device blade tab | Purpose | Expected device readiness status |
 | ----- | ----- | ----- |
diff --git a/windows/deployment/windows-autopatch/media/release-process-timeline.png b/windows/deployment/windows-autopatch/media/release-process-timeline.png
index 9aab1d73cf..693ad5ecf9 100644
Binary files a/windows/deployment/windows-autopatch/media/release-process-timeline.png and b/windows/deployment/windows-autopatch/media/release-process-timeline.png differ
diff --git a/windows/deployment/windows-autopatch/media/update-communications.png b/windows/deployment/windows-autopatch/media/update-communications.png
index e4eceeccd6..82e6b1fe78 100644
Binary files a/windows/deployment/windows-autopatch/media/update-communications.png and b/windows/deployment/windows-autopatch/media/update-communications.png differ
diff --git a/windows/deployment/windows-autopatch/media/windows-feature-force-update.png b/windows/deployment/windows-autopatch/media/windows-feature-force-update.png
index a1752b7996..2f0dd5f089 100644
Binary files a/windows/deployment/windows-autopatch/media/windows-feature-force-update.png and b/windows/deployment/windows-autopatch/media/windows-feature-force-update.png differ
diff --git a/windows/deployment/windows-autopatch/media/windows-feature-release-process-timeline.png b/windows/deployment/windows-autopatch/media/windows-feature-release-process-timeline.png
index 0b926b62f6..17b51a71f8 100644
Binary files a/windows/deployment/windows-autopatch/media/windows-feature-release-process-timeline.png and b/windows/deployment/windows-autopatch/media/windows-feature-release-process-timeline.png differ
diff --git a/windows/deployment/windows-autopatch/media/windows-feature-typical-update-experience.png b/windows/deployment/windows-autopatch/media/windows-feature-typical-update-experience.png
index f05268d372..a49f39ce2c 100644
Binary files a/windows/deployment/windows-autopatch/media/windows-feature-typical-update-experience.png and b/windows/deployment/windows-autopatch/media/windows-feature-typical-update-experience.png differ
diff --git a/windows/deployment/windows-autopatch/media/windows-feature-update-grace-period.png b/windows/deployment/windows-autopatch/media/windows-feature-update-grace-period.png
index a0899ccf6c..d0829576f6 100644
Binary files a/windows/deployment/windows-autopatch/media/windows-feature-update-grace-period.png and b/windows/deployment/windows-autopatch/media/windows-feature-update-grace-period.png differ
diff --git a/windows/deployment/windows-autopatch/media/windows-quality-force-update.png b/windows/deployment/windows-autopatch/media/windows-quality-force-update.png
index 147d61e752..70089da16b 100644
Binary files a/windows/deployment/windows-autopatch/media/windows-quality-force-update.png and b/windows/deployment/windows-autopatch/media/windows-quality-force-update.png differ
diff --git a/windows/deployment/windows-autopatch/media/windows-quality-typical-update-experience.png b/windows/deployment/windows-autopatch/media/windows-quality-typical-update-experience.png
index 830f9f1428..f79a27747a 100644
Binary files a/windows/deployment/windows-autopatch/media/windows-quality-typical-update-experience.png and b/windows/deployment/windows-autopatch/media/windows-quality-typical-update-experience.png differ
diff --git a/windows/deployment/windows-autopatch/media/windows-quality-update-grace-period.png b/windows/deployment/windows-autopatch/media/windows-quality-update-grace-period.png
index 4e347dc3cf..c6ab672cf7 100644
Binary files a/windows/deployment/windows-autopatch/media/windows-quality-update-grace-period.png and b/windows/deployment/windows-autopatch/media/windows-quality-update-grace-period.png differ
diff --git a/windows/deployment/windows-autopatch/operate/windows-autopatch-fu-overview.md b/windows/deployment/windows-autopatch/operate/windows-autopatch-fu-overview.md
index 6f8dfbcded..020359528b 100644
--- a/windows/deployment/windows-autopatch/operate/windows-autopatch-fu-overview.md
+++ b/windows/deployment/windows-autopatch/operate/windows-autopatch-fu-overview.md
@@ -31,7 +31,7 @@ For a device to be eligible for Windows feature updates as a part of Windows Aut
 | Internet connectivity | Devices must have a steady internet connection, and access to Windows [update endpoints](../prepare/windows-autopatch-configure-network.md). |
 | Windows edition | Devices must be on a Windows edition supported by Windows Autopatch. For more information, see [Prerequisites](../prepare/windows-autopatch-prerequisites.md). |
 | Mobile device management (MDM) policy conflict | Devices must not have deployed any policies that would prevent device management. For more information, see [Conflicting and unsupported policies](../operate/windows-autopatch-wqu-unsupported-policies.md). |
-| Group policy conflict | Devices must not have group policies deployed which would prevent device management. For more information, see [Group policy](windows-autopatch-wqu-unsupported-policies.md#group-policy-and-other-policy-managers) |
+| Group policy conflict | Devices must not have group policies deployed which would prevent device management. For more information, see [Group policy](windows-autopatch-wqu-unsupported-policies.md#group-policy-and-other-policy-managers). |
 
 ## Windows feature update releases
 
@@ -101,6 +101,6 @@ Windows Autopatch doesn't support the rollback of feature updates.
 
 ## Incidents and outages
 
-If devices in your tenant aren't meeting the [service level objective](#service-level-objective) for Windows feature updates, Autopatch will raise an incident will be raised. The Windows Autopatch Service Engineering Team will work to bring those devices onto the latest version of Windows.
+If devices in your tenant don't meet the [service level objective](#service-level-objective) for Windows feature updates, Autopatch will raise an incident will be raised. The Windows Autopatch Service Engineering Team will work to bring those devices onto the latest version of Windows.
 
 If you're experiencing other issues related to Windows feature updates, [submit a support request](../operate/windows-autopatch-support-request.md).
diff --git a/windows/deployment/windows-autopatch/operate/windows-autopatch-support-request.md b/windows/deployment/windows-autopatch/operate/windows-autopatch-support-request.md
index ab63a52ddf..800f387276 100644
--- a/windows/deployment/windows-autopatch/operate/windows-autopatch-support-request.md
+++ b/windows/deployment/windows-autopatch/operate/windows-autopatch-support-request.md
@@ -1,7 +1,7 @@
 ---
 title: Submit a support request
 description: Details how to contact the Windows Autopatch Service Engineering Team and submit support requests
-ms.date: 05/30/2022
+ms.date: 01/06/2023
 ms.prod: windows-client
 ms.technology: itpro-updates
 ms.topic: how-to
@@ -15,11 +15,11 @@ msreviewer: hathind
 # Submit a support request
 
 > [!IMPORTANT]
-> Make sure you've [added and verified your admin contacts](../deploy/windows-autopatch-admin-contacts.md). The Windows Autopatch Service Engineering Team will contact these individuals for assistance with troubleshooting issues.
+> Make sure you've [added and verified your admin contacts](../deploy/windows-autopatch-admin-contacts.md). The Windows Autopatch Service Engineering Team will contact these individuals for assistance with remediating issues.
 
 You can submit support tickets to Microsoft using the Windows Autopatch admin center. Email is the recommended approach to interact with the Windows Autopatch Service Engineering Team.
 
-## Submit a new support request  
+## Submit a new support request
 
 Support requests are triaged and responded to as they're received.
 
@@ -32,6 +32,23 @@ Support requests are triaged and responded to as they're received.
 1. Review all the information you provided for accuracy.
 1. When you're ready, select **Create**.
 
+### Premier and Unified support options
+
+If you have a **Premier** or **Unified** support contract, when you submit a new request, or edit an active support request, you can:
+
+- Specify the severity of your issue
+- Schedule a support callback for a specific day and time
+
+Depending on your support contract, the following severity options are available:
+
+> [!NOTE]
+> Selecting either severity **A** or **Critical** issue limits you to a phone support case. This is the fastest support option.
+
+| Support contract | Severity options |
+| ----- | ----- |
+| Premier | Severity A, B or C |
+| Unified | Critical or non-critical |
+
 ## Manage an active support request
 
 The primary contact for the support request will receive email notifications when a case is created, assigned to a service engineer to investigate, and mitigated. If, at any point, you have a question about the case, the best way to get in touch is to reply directly to one of those emails. If we have questions about your request or need more details, we'll email the primary contact listed on the support requests.
diff --git a/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-communications.md b/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-communications.md
index ffb70992db..e0b5a5f133 100644
--- a/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-communications.md
+++ b/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-communications.md
@@ -12,7 +12,7 @@ manager: dougeby
 msreviewer: hathind
 ---
 
-# Windows quality update communications
+# Windows quality and feature update communications
 
 There are three categories of communication that are sent out during a Windows quality and feature update:
 
@@ -29,8 +29,8 @@ Communications are posted to Message center, Service health dashboard, and the W
 | Communication | Location | Timing | Description |
 | ----- | ----- |  ----- | ----- |
 | Release schedule | <ul><li>Message center</li><li>Messages blade</li><li>Email sent to your specified [admin contacts](../deploy/windows-autopatch-admin-contacts.md)</li><ul> | At least seven days prior to the second Tuesday of the month| Notification of the planned release window for each ring. |
-| Release start | Same as release schedule | The second Tuesday of every month | Notification that the update is now being released into your environment. |
-| Release summary | Same as release schedule | The fourth Tuesday of every month | Informs you of the percentage of eligible devices that were patched during the release. |
+| Release start | Same as release schedule | The second Tuesday of every month. | Notification that the update is now being released into your environment. |
+| Release summary | Same as release schedule | The fourth Tuesday of every month. | Informs you of the percentage of eligible devices that were patched during the release. |
 
 ## Communications during release
 
diff --git a/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-overview.md b/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-overview.md
index 2ef4799a5e..2dbf3db0a5 100644
--- a/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-overview.md
+++ b/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-overview.md
@@ -73,7 +73,7 @@ For each [deployment ring](windows-autopatch-update-management.md#windows-autopa
 
 Threat and vulnerability information about a new revision of Windows becomes available on the second Tuesday of each month. Windows Autopatch assesses that information shortly afterwards. If the service determines that it's critical to security, it may be expedited. The quality update is also evaluated on an ongoing basis throughout the release and Windows Autopatch may choose to expedite at any time during the release.
 
-When running an expedited release, the regular goal of 95% of devices in 21 days no longer applies. Instead, Windows Autopatch greatly accelerates the release schedule of the release to update the environment more quickly. This approach requires an updated schedule for all devices outside of the Test ring since those devices are already getting the update as quickly.
+When running an expedited release, the regular goal of 95% of devices in 21 days no longer applies. Instead, Windows Autopatch greatly accelerates the release schedule of the release to update the environment more quickly. This approach requires an updated schedule for all devices outside of the Test ring since those devices are already getting the update quickly.
 
 | Release type | Group | Deferral | Deadline | Grace period |
 | ----- | ----- | ----- | ----- | ----- |
@@ -84,7 +84,7 @@ When running an expedited release, the regular goal of 95% of devices in 21 days
 
 Windows Autopatch provides the option to turn off of service-driven expedited quality updates.
 
-By default, the service expedites quality updates as needed. For those organizations seeking greater control, you can disable expedited quality updates for Microsoft Managed Desktop-enrolled devices using Microsoft Intune.
+By default, the service expedites quality updates as needed. For those organizations seeking greater control, you can disable expedited quality updates for Windows Autopatch-enrolled devices using Microsoft Intune.
 
 **To turn off service-driven expedited quality updates:**
 
@@ -116,8 +116,8 @@ There are two statuses associated with paused quality updates, **Service Paused*
 
 | Status | Description |
 | ----- | ------ |
-| Service Paused | If the Microsoft Managed Desktop service has paused an update, the release will have the **Service Paused** status. You must [submit a support request](windows-autopatch-support-request.md) to resume the update. |
-| Customer Paused | If you've paused an update, the release will have the **Customer Paused** status. The Microsoft Managed Desktop service can't overwrite a customer-initiated pause. You must select **Resume** to resume the update. |
+| Service Paused | If the Windows Autopatch service has paused an update, the release will have the **Service Paused** status. You must [submit a support request](windows-autopatch-support-request.md) to resume the update. |
+| Customer Paused | If you've paused an update, the release will have the **Customer Paused** status. The Windows Autopatch service can't overwrite a customer-initiated pause. You must select **Resume** to resume the update. |
 
 ## Incidents and outages
 
diff --git a/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-signals.md b/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-signals.md
index be5becc700..2a4c33b67a 100644
--- a/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-signals.md
+++ b/windows/deployment/windows-autopatch/operate/windows-autopatch-wqu-signals.md
@@ -22,7 +22,7 @@ If there's a scenario that is critical to your business, which isn't monitored b
 
 Before being released to the Test ring, Windows Autopatch reviews several data sources to determine if we need to send any customer advisories or need to pause the update. Situations where Windows Autopatch doesn't release an update to the Test ring are seldom occurrences.
 
-| Text | Text |
+| Pre-release signal | Description |
 | ----- | ----- |
 | Windows Payload Review | The contents of the B release are reviewed to help focus your update testing on areas that have changed. If any relevant changes are detected, a [customer advisory](../operate/windows-autopatch-wqu-communications.md#communications-during-release) will be sent out. |
 | C-Release Review - Internal Signals | Windows Autopatch reviews active incidents associated with the previous C release to understand potential risks in the B release. |
@@ -50,12 +50,12 @@ Autopatch monitors the following reliability signals:
 
 | Device reliability signal | Description |
 | ----- | ----- |
-| Blue screens | These events are highly disruptive to end users so are closely watched. |
+| Blue screens | These events are highly disruptive to end users. These events are closely monitored. |
 | Overall app reliability | Tracks the total number of app crashes and freezes on a device. A known limitation with this measure is that if one app becomes 10% more reliable and another becomes 10% less reliable then it shows up as a flat line in the measure. |
 | Microsoft Office reliability | Tracks the number of Office crashes and freezes per application per device. |
 | Microsoft Edge reliability | Tracks the number of Microsoft Edge crashes and freezes per device. |
 | Microsoft Teams reliability | Tracks the number of Microsoft Teams crashes and freezes per device. |
 
-When the update is released to the First ring, the service crosses the 500 device threshold. Therefore, Autopatch is able to detect regressions, which are common to all customers. At this point in the release, we'll decide if we need to change the release schedule or pause for all customers.
+When the update is released to the First ring, the service crosses the 500 device threshold. Therefore, Autopatch can to detect regressions, which are common to all customers. At this point in the release, we'll decide if we need to change the release schedule or pause for all customers.
 
 Once your tenant reaches 500 devices, Windows Autopatch starts generating recommendations specific to your devices. Based on this information, the service starts developing insights specific to your tenant allowing a customized response to what's happening in your environment.
diff --git a/windows/deployment/windows-autopatch/overview/windows-autopatch-faq.yml b/windows/deployment/windows-autopatch/overview/windows-autopatch-faq.yml
index da940b07a4..fdb9b1f891 100644
--- a/windows/deployment/windows-autopatch/overview/windows-autopatch-faq.yml
+++ b/windows/deployment/windows-autopatch/overview/windows-autopatch-faq.yml
@@ -88,7 +88,7 @@ sections:
           - Microsoft Teams: Windows Autopatch allows eligible devices to benefit from the standard automatic update channels and will provide support for issues with Teams updates.
       - question: What does Windows Autopatch do to ensure updates are done successfully?
         answer: |
-          For Windows quality updates, updates are applied to devices in the Test ring first. The devices are evaluated, and then rolled out to the First, Fast then Broad rings. There's an evaluation period at each progression. This process is dependent on customer testing and verification of all updates during these rollout stages. The outcome is to ensure that registered devices are always up to date and disruption to business operations is minimized to free up your IT department from that ongoing task.
+          For Windows quality and feature updates, updates are applied to devices in the Test ring first. The devices are evaluated, and then rolled out to the First, Fast then Broad rings. There's an evaluation period at each progression. This process is dependent on customer testing and verification of all updates during these rollout stages. The outcome is to ensure that registered devices are always up to date and disruption to business operations is minimized to free up your IT department from that ongoing task.
       - question: What happens if there's an issue with an update?
         answer: |
           Autopatch relies on the following capabilities to help resolve update issues:
diff --git a/windows/deployment/windows-autopatch/prepare/windows-autopatch-enrollment-support-request.md b/windows/deployment/windows-autopatch/prepare/windows-autopatch-enrollment-support-request.md
new file mode 100644
index 0000000000..c36be7a98b
--- /dev/null
+++ b/windows/deployment/windows-autopatch/prepare/windows-autopatch-enrollment-support-request.md
@@ -0,0 +1,40 @@
+---
+title: Submit a tenant enrollment support request
+description: This article details how to submit a tenant enrollment support request
+ms.date: 01/13/2023
+ms.prod: windows-client
+ms.technology: itpro-updates
+ms.topic: how-to
+ms.localizationpriority: medium
+author: tiaraquan
+ms.author: tiaraquan
+manager: dougeby
+msreviewer: hathind
+---
+
+# Submit a tenant enrollment support request
+
+If you need more assistance with tenant enrollment, you can submit support requests to the Windows Autopatch Service Engineering Team in the Windows Autopatch enrollment tool. Email is the recommended approach to interact with the Windows Autopatch Service Engineering Team.
+
+> [!NOTE]
+> After you've successfully enrolled your tenant, this feature will no longer be accessible. You must [submit a support request through the Tenant administration menu](../operate/windows-autopatch-support-request.md).
+
+**To submit a new tenant enrollment support request:**
+
+1. Go to Management settings > View details > select a **readiness check result**. The **Contact Support** button will be available below remediation instructions in the fly-in-pane.
+2. Enter your question(s) and/or a description of the issue.
+3. Enter your primary contact information. Windows Autopatch will work directly with the contact listed to resolve the support request.
+4. Review all the information for accuracy.
+5. Select **Create**.
+
+## Manage an active tenant enrollment support request
+
+The primary contact for the support request will receive email notifications when a case is created, assigned to a service engineer to investigate, and mitigated.
+
+If you have a question about the case, the best way to get in touch is to reply directly to one of the emails. If we have questions about your request or need more details, we'll email the primary contact listed in the support request.
+
+**To view all your active tenant enrollment support requests:**
+
+1. Sign into the [Endpoint Manager admin center](https://go.microsoft.com/fwlink/?linkid=2109431) and navigate to the **Tenant Administration** menu.
+1. In the **Windows Autopatch** section, select **Tenant Enrollment**.
+1. Select the **Support history** tab. You can view the list of all support cases, or select an individual case to view the details.
diff --git a/windows/deployment/windows-autopatch/prepare/windows-autopatch-fix-issues.md b/windows/deployment/windows-autopatch/prepare/windows-autopatch-fix-issues.md
index 854b107c86..891576dd03 100644
--- a/windows/deployment/windows-autopatch/prepare/windows-autopatch-fix-issues.md
+++ b/windows/deployment/windows-autopatch/prepare/windows-autopatch-fix-issues.md
@@ -1,7 +1,7 @@
 ---
 title: Fix issues found by the Readiness assessment tool
-description: This article details how to fix issues found by the Readiness assessment tool
-ms.date: 11/17/2022
+description: This article details how to fix issues found by the Readiness assessment tool.
+ms.date: 01/12/2023
 ms.prod: windows-client
 ms.technology: itpro-updates
 ms.topic: how-to
@@ -16,6 +16,9 @@ msreviewer: hathind
 
 Seeing issues with your tenant? This article details how to remediate issues found with your tenant.
 
+> [!NOTE]
+> If you need more assistance with tenant enrollment, you can [submit a tenant enrollment support request](../prepare/windows-autopatch-enrollment-support-request.md).
+
 ## Check results
 
 For each check, the tool will report one of four possible results:
diff --git a/windows/deployment/windows-autopatch/references/windows-autopatch-privacy.md b/windows/deployment/windows-autopatch/references/windows-autopatch-privacy.md
index 2b8f0abea0..60f5f47988 100644
--- a/windows/deployment/windows-autopatch/references/windows-autopatch-privacy.md
+++ b/windows/deployment/windows-autopatch/references/windows-autopatch-privacy.md
@@ -51,7 +51,7 @@ Windows Autopatch Service Engineering Team is in the United States, India and Ro
 
 ## Microsoft Windows 10/11 diagnostic data
 
-Windows Autopatch uses [Windows 10/11 Enhanced diagnostic data](/windows/privacy/windows-diagnostic-data) to keep Windows secure, up to date, troubleshoot problems, and make product improvements.
+Windows Autopatch uses [Windows 10/11 Enhanced diagnostic data](/windows/privacy/windows-diagnostic-data) to keep Windows secure, up to date, fix problems, and make product improvements.
 
 The enhanced diagnostic data setting includes more detailed information about the devices enrolled in Windows Autopatch and their settings, capabilities, and device health. When enhanced diagnostic data is selected, data, including required diagnostic data, are collected. For more information, see [Changes to Windows diagnostic data collection](/windows/privacy/changes-to-windows-diagnostic-data-collection) about the Windows 10 diagnostic data setting and data collection.
 
@@ -79,7 +79,7 @@ Windows Autopatch creates and uses guest accounts using just-in-time access func
 | Account name | Usage | Mitigating controls |
 | ----- | ----- | -----|
 | MsAdmin@tenantDomain.onmicrosoft.com | <ul><li>This account is a limited-service account with administrator privileges. This account is used as an Intune and User administrator to define and configure the tenant for Windows Autopatch devices.</li><li>This account doesn't have interactive sign-in permissions. The account performs operations only through the service.</li></ul> | Audited sign-ins |
-| MsAdminInt@tenantDomain.onmicrosoft.com |<ul><li>This account is an Intune and User administrator account used to define and configure the tenant for Windows Autopatch devices.</li><li>This account is used for interactive login to the customer’s tenant.</li><li>The use of this account is limited as most operations are exclusively through MsAdmin (non-interactive) account.</li></ul> | <ul><li>Restricted to be accessed only from defined secure access workstations (SAWs) through a conditional access policy</li><li>Audited sign-ins</li</ul> |
+| MsAdminInt@tenantDomain.onmicrosoft.com |<ul><li>This account is an Intune and User administrator account used to define and configure the tenant for Windows Autopatch devices.</li><li>This account is used for interactive login to the customer’s tenant.</li><li>The use of this account is limited as most operations are exclusively through MsAdmin (non-interactive) account.</li></ul> | <ul><li>Restricted to be accessed only from defined secure access workstations (SAWs) through a conditional access policy</li><li>Audited sign-ins</li></ul> |
 | MsTest@tenantDomain.onmicrosoft.com | This account is a standard account used as a validation account for initial configuration and roll out of policy, application, and device compliance settings. | Audited sign-ins |
 
 ## Microsoft Windows Update for Business
diff --git a/windows/deployment/windows-autopatch/whats-new/windows-autopatch-whats-new-2022.md b/windows/deployment/windows-autopatch/whats-new/windows-autopatch-whats-new-2022.md
index 469396130d..5e36572e92 100644
--- a/windows/deployment/windows-autopatch/whats-new/windows-autopatch-whats-new-2022.md
+++ b/windows/deployment/windows-autopatch/whats-new/windows-autopatch-whats-new-2022.md
@@ -1,10 +1,10 @@
 ---
-title: What's new
-description: This article lists the new feature releases and any corresponding Message center post numbers.
+title: What's new 2022
+description: This article lists the 2022 feature releases and any corresponding Message center post numbers.
 ms.date: 12/09/2022
 ms.prod: windows-client
 ms.technology: itpro-updates
-ms.topic: how-to
+ms.topic: whats-new
 ms.localizationpriority: medium
 author: tiaraquan
 ms.author: tiaraquan
diff --git a/windows/deployment/windows-autopatch/whats-new/windows-autopatch-whats-new-2023.md b/windows/deployment/windows-autopatch/whats-new/windows-autopatch-whats-new-2023.md
new file mode 100644
index 0000000000..bb56fa10e7
--- /dev/null
+++ b/windows/deployment/windows-autopatch/whats-new/windows-autopatch-whats-new-2023.md
@@ -0,0 +1,34 @@
+---
+title: What's new 2023
+description: This article lists the 2023 feature releases and any corresponding Message center post numbers.
+ms.date: 01/09/2023
+ms.prod: windows-client
+ms.technology: itpro-updates
+ms.topic: whats-new
+ms.localizationpriority: medium
+author: tiaraquan
+ms.author: tiaraquan
+manager: dougeby
+msreviewer: hathind
+---
+
+# What's new 2023
+
+This article lists new and updated feature releases, and service releases, with their corresponding Message center post numbers (if applicable).
+
+Minor corrections such as typos, style, or formatting issues aren't listed.
+
+## January 2023
+
+### January feature releases or updates
+
+| Article | Description |
+| ----- | ----- |
+| [Submit a tenant enrollment support request](../prepare/windows-autopatch-enrollment-support-request.md) | Added the Submit a tenant enrollment support request section. You can submit a tenant enrollment support request through the Tenant enrollment tool if you're running into issues with enrollment. |
+| [Submit a support request](../operate/windows-autopatch-support-request.md) | Added Premier and Unified support options section |
+
+### January service release
+
+| Message center post number | Description |
+| ----- | ----- |
+| [MC494386](https://admin.microsoft.com/adminportal/home#/MessageCenter) | January 2023 (2023.01 B) Windows quality update deployment |
diff --git a/windows/media/phase-diagrams/deployment-phases.png b/windows/media/phase-diagrams/deployment-phases.png
deleted file mode 100644
index 4d2a4fa946..0000000000
Binary files a/windows/media/phase-diagrams/deployment-phases.png and /dev/null differ
diff --git a/windows/media/phase-diagrams/migration-phases.png b/windows/media/phase-diagrams/migration-phases.png
deleted file mode 100644
index d502450fba..0000000000
Binary files a/windows/media/phase-diagrams/migration-phases.png and /dev/null differ
diff --git a/windows/media/phase-diagrams/onboard.png b/windows/media/phase-diagrams/onboard.png
deleted file mode 100644
index b6a29de3bf..0000000000
Binary files a/windows/media/phase-diagrams/onboard.png and /dev/null differ
diff --git a/windows/media/phase-diagrams/prepare.png b/windows/media/phase-diagrams/prepare.png
deleted file mode 100644
index 1001e41e0d..0000000000
Binary files a/windows/media/phase-diagrams/prepare.png and /dev/null differ
diff --git a/windows/media/phase-diagrams/setup.png b/windows/media/phase-diagrams/setup.png
deleted file mode 100644
index 1635785046..0000000000
Binary files a/windows/media/phase-diagrams/setup.png and /dev/null differ
diff --git a/windows/security/identity-protection/credential-guard/credential-guard-considerations.md b/windows/security/identity-protection/credential-guard/credential-guard-considerations.md
index 236d6dd432..5714236fec 100644
--- a/windows/security/identity-protection/credential-guard/credential-guard-considerations.md
+++ b/windows/security/identity-protection/credential-guard/credential-guard-considerations.md
@@ -1,5 +1,5 @@
 ---
-title: Advice while using Windows Defender Credential Guard (Windows)
+title: Considerations when using Windows Defender Credential Guard
 description: Considerations and recommendations for certain scenarios when using Windows Defender Credential Guard in Windows.
 ms.date: 08/31/2017
 ms.topic: article
@@ -15,6 +15,7 @@ Passwords are still weak. We recommend that in addition to deploying Windows Def
 Windows Defender Credential Guard uses hardware security, so some features such as Windows To Go, aren't supported.
 
 ## Wi-fi and VPN Considerations
+
 When you enable Windows Defender Credential Guard, you can no longer use NTLM classic authentication for Single Sign-On. You'll be forced to enter your credentials to use these protocols and can't save the credentials for future use. If you're using WiFi and VPN endpoints that are based on MS-CHAPv2, they're subject to similar attacks as for NTLMv1. For WiFi and VPN connections, Microsoft recommends that organizations move from MSCHAPv2-based connections such as PEAP-MSCHAPv2 and EAP-MSCHAPv2, to certificate-based authentication such as PEAP-TLS or EAP-TLS.
 
 ## Kerberos Considerations
@@ -22,19 +23,25 @@ When you enable Windows Defender Credential Guard, you can no longer use NTLM cl
 When you enable Windows Defender Credential Guard, you can no longer use Kerberos unconstrained delegation or DES encryption. Unconstrained delegation could allow attackers to extract Kerberos keys from the isolated LSA process. Use constrained or resource-based Kerberos delegation instead.
 
 ## 3rd Party Security Support Providers Considerations
+
 Some 3rd party Security Support Providers (SSPs and APs) might not be compatible with Windows Defender Credential Guard because it doesn't allow third-party SSPs to ask for password hashes from LSA. However, SSPs and APs still get notified of the password when a user logs on and/or changes their password. Any use of undocumented APIs within custom SSPs and APs aren't supported. We recommend that custom implementations of SSPs/APs are tested with Windows Defender Credential Guard. SSPs and APs that depend on any undocumented or unsupported behaviors fail. For example, using the KerbQuerySupplementalCredentialsMessage API isn't supported. Replacing the NTLM or Kerberos SSPs with custom SSPs and APs. For more info, see [Restrictions around Registering and Installing a Security Package](/windows/win32/secauthn/restrictions-around-registering-and-installing-a-security-package) on MSDN.
 
 ## Upgrade Considerations
+
 As the depth and breadth of protections provided by Windows Defender Credential Guard are increased, subsequent releases of Windows 10 with Windows Defender Credential Guard running may impact scenarios that were working in the past. For example, Windows Defender Credential Guard may block the use of a particular type of credential or a particular component to prevent malware from taking advantage of vulnerabilities. Test scenarios required for operations in an organization before upgrading a device using Windows Defender Credential Guard.
 
 ### Saved Windows Credentials Protected
 
-Starting with Windows 10, version 1511, domain credentials that are stored with Credential Manager are protected with Windows Defender Credential Guard. Credential Manager allows you to store three types of credentials: Windows credentials, certificate-based credentials, and generic credentials. Generic credentials such as user names and passwords that you use to log on to websites aren't protected since the applications require your cleartext password. If the application doesn't need a copy of the password, they can save domain credentials as Windows credentials that are protected. Windows credentials are used to connect to other computers on a network. The following considerations apply to the Windows Defender Credential Guard protections for Credential Manager:
+Starting with Windows 10, version 1511, domain credentials that are stored with Credential Manager are protected with Windows Defender Credential Guard. Credential Manager allows you to store three types of credentials: Windows credentials, certificate-based credentials, and generic credentials. Generic credentials such as user names and passwords that you use to log on to websites aren't protected since the applications require your cleartext password. If the application doesn't need a copy of the password, they can save domain credentials as Windows credentials that are protected. Windows credentials are used to connect to other computers on a network. 
+
+The following considerations apply to the Windows Defender Credential Guard protections for Credential Manager:
+
 * Windows credentials saved by Remote Desktop Client can't be sent to a remote host. Attempts to use saved Windows credentials fail, displaying the error message "Logon attempt failed."
 * Applications that extract Windows credentials fail.
 * When credentials are backed up from a PC that has Windows Defender Credential Guard enabled, the Windows credentials can't be restored. If you need to back up your credentials, you must do this before you enable Windows Defender Credential Guard. Otherwise, you can't restore those credentials.
 
 ## Clearing TPM Considerations
+
 Virtualization-based Security (VBS) uses the TPM to protect its key. So when the TPM is cleared then the TPM protected key used to encrypt VBS secrets is lost.
 
 >[!WARNING]
@@ -47,9 +54,11 @@ As a result Credential Guard can no longer decrypt protected data. VBS creates a
 > Credential Guard obtains the key during initialization. So the data loss will only impact persistent data and occur after the next system startup.
 
 ### Windows credentials saved to Credential Manager
+
 Since Credential Manager can't decrypt saved Windows Credentials, they're deleted. Applications should prompt for credentials that were previously saved. If saved again, then Windows credentials are protected Credential Guard.
 
 ### Domain-joined device’s automatically provisioned public key
+
 Beginning with Windows 10 and Windows Server 2016, domain-devices automatically provision a bound public key, for more information about automatic public key provisioning, see [Domain-joined Device Public Key Authentication](/windows-server/security/kerberos/domain-joined-device-public-key-authentication).
 
 Since Credential Guard can't decrypt the protected private key, Windows uses the domain-joined computer's password for authentication to the domain. Unless additional policies are deployed, there should not be a loss of functionality. If a device is configured to only use public key, then it can't authenticate with password until that policy is disabled. For more information on Configuring devices to only use public key, see [Domain-joined Device Public Key Authentication](/windows-server/security/kerberos/domain-joined-device-public-key-authentication).
@@ -57,6 +66,7 @@ Since Credential Guard can't decrypt the protected private key, Windows uses the
 Also if any access control checks including authentication policies require devices to have either the KEY TRUST IDENTITY (S-1-18-4) or FRESH PUBLIC KEY IDENTITY (S-1-18-3) well-known SIDs, then those access checks fail. For more information about authentication policies, see [Authentication Policies and Authentication Policy Silos](/windows-server/security/credentials-protection-and-management/authentication-policies-and-authentication-policy-silos). For more information about well-known SIDs, see [[MS-DTYP] Section 2.4.2.4 Well-known SID Structures](/openspecs/windows_protocols/ms-dtyp/81d92bba-d22b-4a8c-908a-554ab29148ab).
 
 ### Breaking DPAPI on domain-joined devices
+
 On domain-joined devices, DPAPI can recover user keys using a domain controller from the user's domain. If a domain-joined device has no connectivity to a domain controller, then recovery isn't possible.
 
 >[!IMPORTANT]
@@ -77,6 +87,7 @@ Domain user sign-in on a domain-joined device after clearing a TPM for as long a
 Once the device has connectivity to the domain controllers, DPAPI recovers the user's key and data protected prior to clearing the TPM can be decrypted.
 
 #### Impact of DPAPI failures on Windows Information Protection
+
 When data protected with user DPAPI is unusable, then the user loses access to all work data protected by Windows Information Protection.  The impact includes: Outlook 2016 is unable to start and work protected documents can't be opened.  If DPAPI is working, then newly created work data is protected and can be accessed.
 
 **Workaround:** Users can resolve the problem by connecting their device to the domain and rebooting or using their Encrypting File System Data Recovery Agent certificate. For more information about Encrypting File System Data Recovery Agent certificate, see [Create and verify an Encrypting File System (EFS) Data Recovery Agent (DRA) certificate](/windows/threat-protection/windows-information-protection/create-and-verify-an-efs-dra-certificate).
@@ -84,6 +95,4 @@ When data protected with user DPAPI is unusable, then the user loses access to a
 
 ## See also
 
-**Related videos**
-
-[What is virtualization-based security?](https://www.linkedin.com/learning/microsoft-cybersecurity-stack-advanced-identity-and-endpoint-protection/what-is-virtualization-based-security)
+- [What is virtualization-based security?](https://www.linkedin.com/learning/microsoft-cybersecurity-stack-advanced-identity-and-endpoint-protection/what-is-virtualization-based-security)
diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.yml b/windows/security/identity-protection/hello-for-business/hello-faq.yml
index 97b2ab5354..7d673787ba 100644
--- a/windows/security/identity-protection/hello-for-business/hello-faq.yml
+++ b/windows/security/identity-protection/hello-for-business/hello-faq.yml
@@ -1,7 +1,7 @@
 ### YamlMime:FAQ
 metadata:
   title: Windows Hello for Business Frequently Asked Questions (FAQ)
-  description: Use these frequently asked questions (FAQ) to learn important details about Windows Hello for Business.   
+  description: Use these frequently asked questions (FAQ) to learn important details about Windows Hello for Business.  
   keywords: identity, PIN, biometric, Hello, passport
   ms.prod: windows-client
   ms.technology: itpro-security
@@ -29,16 +29,16 @@ sections:
     
       - question: What is Windows Hello for Business cloud Kerberos trust?
         answer: |
-          Windows Hello for Business cloud Kerberos trust is a new trust model that is currently in preview. This trust model will enable Windows Hello for Business deployment using the infrastructure introduced for supporting [security key sign-in on Hybrid Azure AD-joined devices and on-premises resource access on Azure AD Joined devices](/azure/active-directory/authentication/howto-authentication-passwordless-security-key-on-premises). cloud Kerberos trust is the preferred deployment model if you do not need to support certificate authentication scenarios. For more information, see [Hybrid cloud Kerberos trust Deployment (Preview)](/windows/security/identity-protection/hello-for-business/hello-hybrid-cloud-kerberos-trust).
+          Windows Hello for Business *cloud Kerberos trust* is a **trust model** that enables Windows Hello for Business deployment using the infrastructure introduced for supporting [security key sign-in on Hybrid Azure AD-joined devices and on-premises resource access on Azure AD Joined devices](/azure/active-directory/authentication/howto-authentication-passwordless-security-key-on-premises). Cloud Kerberos trust is the preferred deployment model if you do not need to support certificate authentication scenarios. For more information, see [cloud Kerberos trust deployment](/windows/security/identity-protection/hello-for-business/hello-hybrid-cloud-kerberos-trust).
 
 
       - question: What about virtual smart cards?
         answer: |
-          Windows Hello for Business is the modern, two-factor credential for Windows 10. Microsoft will be deprecating virtual smart cards in the future, but no date is set at this time. Customers using Windows 10 and virtual smart cards should move to Windows Hello for Business.  Microsoft will publish the date early to ensure customers have adequate lead time to move to Windows Hello for Business. Microsoft recommends that new Windows 10 deployments use Windows Hello for Business. Virtual smart cards remain supported for Windows 7 and Windows 8.
+          Windows Hello for Business is the modern, two-factor credential for Windows. Microsoft will be deprecating virtual smart cards in the future, but no date is set at this time. Customers using virtual smart cards should move to Windows Hello for Business. Microsoft will publish the date early to ensure customers have adequate lead time to move to Windows Hello for Business. Microsoft recommends that new Windows deployments use Windows Hello for Business.
 
       - question: What about convenience PIN?
         answer: |
-          Microsoft is committed to its vision of a <u>world without passwords.</u> We recognize the *convenience* provided by convenience PIN, but it stills uses a password for authentication. Microsoft recommends that customers using Windows 10 and convenience PINs should move to Windows Hello for Business. New Windows 10 deployments should deploy Windows Hello for Business and not convenience PINs. Microsoft will be deprecating convenience PINs in the future and will publish the date early to ensure customers have adequate lead time to deploy Windows Hello for Business. 
+          While *convenience PIN* provides a convenient way to sign in to Windows, it stills uses a password for authentication. Customers using *convenience PINs* should move to **Windows Hello for Business**. New Windows deployments should deploy Windows Hello for Business and not convenience PINs. Microsoft will be deprecating convenience PINs in the future and will publish the date early to ensure customers have adequate lead time to deploy Windows Hello for Business.
 
       - question: Can I use Windows Hello for Business key trust and RDP?
         answer: |
@@ -63,7 +63,7 @@ sections:
 
       - question: How can a PIN be more secure than a password?
         answer: |
-          When using Windows Hello for Business, the PIN isn't a symmetric key, whereas the password is a symmetric key.  With passwords, there's a server that has some representation of the password. With Windows Hello for Business, the PIN is user-provided entropy used to load the private key in the Trusted Platform Module (TPM). The server doesn't have a copy of the PIN. For that matter, the Windows client doesn't have a copy of the current PIN either. The user must provide the entropy, the TPM-protected key, and the TPM that generated that key in order to successfully access the private key.
+          When using Windows Hello for Business, the PIN isn't a symmetric key, whereas the password is a symmetric key. With passwords, there's a server that has some representation of the password. With Windows Hello for Business, the PIN is user-provided entropy used to load the private key in the Trusted Platform Module (TPM). The server doesn't have a copy of the PIN. For that matter, the Windows client doesn't have a copy of the current PIN either. The user must provide the entropy, the TPM-protected key, and the TPM that generated that key in order to successfully access the private key.
           The statement "PIN is stronger than Password" is not directed at the strength of the entropy used by the PIN. It's about the difference between providing entropy versus continuing the use of a symmetric key (the password). The TPM has anti-hammering features that thwart brute-force PIN attacks (an attacker's continuous attempt to try all combination of PINs). Some organizations may worry about shoulder surfing. For those organizations, rather than increase the complexity of the PIN, implement the [Multifactor Unlock](feature-multifactor-unlock.md) feature.
 
       - question: What's a container?
@@ -80,7 +80,7 @@ sections:
 
       - question: How does Windows Hello for Business work with Azure AD registered devices?
         answer: |
-          A user will be prompted to set up a Windows Hello for Business key on an Azure AD registered devices  if the feature is enabled by policy. If the user has an existing Windows Hello container, the Windows Hello for Business key will be enrolled in that container and will be protected using their exiting gestures.
+          A user will be prompted to set up a Windows Hello for Business key on an Azure AD registered devices  if the feature is enabled by policy. If the user has an existing Windows Hello container, the Windows Hello for Business key will be enrolled in that container and will be protected using their existing gestures.
 
           If a user has signed into their Azure AD registered device with Windows Hello, their Windows Hello for Business key will be used to authenticate the user's work identity when they try to use Azure AD resources. The Windows Hello for Business key meets Azure AD multi-factor authentication (MFA) requirements and reduces the number of MFA prompts users will see when accessing resources. 
 
@@ -94,7 +94,7 @@ sections:
 
       - question: Can I use a convenience PIN with Azure Active Directory?
         answer: |
-          It's currently possible to set a convenience PIN on Azure Active Directory Joined or Hybrid Active Directory Joined devices. Convenience PIN isn't supported for Azure Active Directory user accounts (synchronized identities included). It's only supported for on-premises Domain Joined users and local account users.
+          It's currently possible to set a convenience PIN on Azure Active Directory Joined or Hybrid Active Directory Joined devices. However, convenience PIN isn't supported for Azure Active Directory user accounts (synchronized identities included). It's only supported for on-premises Domain Joined users and local account users.
 
       - question: Can I use an external Windows Hello compatible camera when my computer has a built-in Windows Hello compatible camera?
         answer: |
@@ -169,7 +169,7 @@ sections:
 
       - question: Where is Windows Hello biometrics data stored?
         answer: |
-            When you enroll in Windows Hello, a representation of your face called an enrollment profile is created more information can be found on [Windows Hello face authentication](/windows-hardware/design/device-experiences/windows-hello-face-authentication). This enrollment profile biometrics data is device specific, is stored locally on the device, and does not leave the device or roam with the user. Some external fingerprint sensors store biometric data on the fingerprint module itself rather than on Windows device. Even in this case, the biometrics data is stored locally on those modules, is device specific, doesn't roam, never leaves the module, and is never sent to Microsoft cloud or external server.  For more details, see [Windows Hello biometrics in the enterprise](/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise#where-is-windows-hello-data-stored).
+            When you enroll in Windows Hello, a representation of your face called an enrollment profile is created more information can be found on [Windows Hello face authentication](/windows-hardware/design/device-experiences/windows-hello-face-authentication). This enrollment profile biometrics data is device specific, is stored locally on the device, and does not leave the device or roam with the user. Some external fingerprint sensors store biometric data on the fingerprint module itself rather than on Windows device. Even in this case, the biometrics data is stored locally on those modules, is device specific, doesn't roam, never leaves the module, and is never sent to Microsoft cloud or external server. For more details, see [Windows Hello biometrics in the enterprise](/windows/security/identity-protection/hello-for-business/hello-biometrics-in-enterprise#where-is-windows-hello-data-stored).
       
       - question: What is the format used to store Windows Hello biometrics data on the device?
         answer: |
@@ -233,9 +233,9 @@ sections:
           
       - question: How does PIN caching work with Windows Hello for Business?
         answer: |
-          Windows Hello for Business provides a PIN caching user experience by using a ticketing system. Rather than caching a PIN, processes cache a ticket they can use to request private key operations. Azure AD and Active Directory sign-in keys are cached under lock. This means the keys remain available for use without prompting, as long as the user is interactively signed-in. Microsoft Account sign-in keys are transactional keys, which means the user is always prompted when accessing the key.  
+          Windows Hello for Business provides a PIN caching user experience by using a ticketing system. Rather than caching a PIN, processes cache a ticket they can use to request private key operations. Azure AD and Active Directory sign-in keys are cached under lock. This means the keys remain available for use without prompting, as long as the user is interactively signed-in. Microsoft Account sign-in keys are transactional keys, which means the user is always prompted when accessing the key. 
           
-          Beginning with Windows 10, version 1709, Windows Hello for Business used as a smart card (smart card emulation that is enabled by default) provides the same user experience of default smart card PIN caching. Each process requesting a private key operation will prompt the user for the PIN on first use. Subsequent private key operations won't prompt the user for the PIN.  
+          Beginning with Windows 10, version 1709, Windows Hello for Business used as a smart card (smart card emulation that is enabled by default) provides the same user experience of default smart card PIN caching. Each process requesting a private key operation will prompt the user for the PIN on first use. Subsequent private key operations won't prompt the user for the PIN. 
           
           The smart card emulation feature of Windows Hello for Business verifies the PIN and then discards the PIN in exchange for a ticket. The process doesn't receive the PIN, but rather the ticket that grants them private key operations. Windows 10 doesn't provide any Group Policy settings to adjust this caching.
           
diff --git a/windows/security/identity-protection/hello-for-business/hello-overview.md b/windows/security/identity-protection/hello-for-business/hello-overview.md
index 50d6d7f166..48c16385f3 100644
--- a/windows/security/identity-protection/hello-for-business/hello-overview.md
+++ b/windows/security/identity-protection/hello-for-business/hello-overview.md
@@ -45,9 +45,9 @@ Windows stores biometric data that is used to implement Windows Hello securely o
 
 ## The difference between Windows Hello and Windows Hello for Business
 
-- Individuals can create a PIN or biometric gesture on their personal devices for convenient sign-in. This use of Windows Hello is unique to the device on which it's set up, but can use a password hash depending on an individual's account type. This configuration is referred to as Windows Hello convenience PIN and it's not backed by asymmetric (public/private key) or certificate-based authentication.
+- Individuals can create a PIN or biometric gesture on their personal devices for convenient sign-in. This use of Windows Hello is unique to the device on which it's set up, but can use a password hash depending on an individual's account type. This configuration is referred to as *Windows Hello convenience PIN* and it's not backed by asymmetric (public/private key) or certificate-based authentication.
 
-- **Windows Hello for Business**, which is configured by group policy or mobile device management (MDM) policy, always uses key-based or certificate-based authentication. This behavior makes it more secure than **Windows Hello convenience PIN**.
+- *Windows Hello for Business*, which is configured by group policy or mobile device management (MDM) policy, always uses key-based or certificate-based authentication. This behavior makes it more secure than *Windows Hello convenience PIN*.
 
 ## Benefits of Windows Hello
 
diff --git a/windows/security/identity-protection/vpn/how-to-use-single-sign-on-sso-over-vpn-and-wi-fi-connections.md b/windows/security/identity-protection/vpn/how-to-use-single-sign-on-sso-over-vpn-and-wi-fi-connections.md
index 371193641b..e44a13a1a8 100644
--- a/windows/security/identity-protection/vpn/how-to-use-single-sign-on-sso-over-vpn-and-wi-fi-connections.md
+++ b/windows/security/identity-protection/vpn/how-to-use-single-sign-on-sso-over-vpn-and-wi-fi-connections.md
@@ -1,9 +1,9 @@
 ---
-title: How to use Single Sign-On (SSO) over VPN and Wi-Fi connections (Windows 10 and Windows 11)
+title: How to use Single Sign-On (SSO) over VPN and Wi-Fi connections
 description: Explains requirements to enable Single Sign-On (SSO) to on-premises domain resources over WiFi or VPN connections.
 ms.prod: windows-client
 author: paolomatarazzo
-ms.date: 03/22/2022
+ms.date: 12/28/2022
 manager: aaroncz
 ms.author: paoloma
 ms.reviewer: pesmith
@@ -18,47 +18,49 @@ ms.topic: how-to
 
 This article explains requirements to enable Single Sign-On (SSO) to on-premises domain resources over WiFi or VPN connections. The following scenarios are typically used:
 
-- Connecting to a network using Wi-Fi or VPN.
-- Use credentials for WiFi or VPN authentication to also authenticate requests to access a domain resource without being prompted for your domain credentials.
+- Connecting to a network using Wi-Fi or VPN
+- Use credentials for Wi-Fi or VPN authentication to also authenticate requests to access domain resources, without being prompted for domain credentials
 
 For example, you want to connect to a corporate network and access an internal website that requires Windows integrated authentication.
 
-The credentials that are used for the connection authentication are placed in Credential Manager as the default credentials for the logon session. Credential Manager stores credentials that can be used for specific domain resources. These are based on the target name of the resource:
-- For VPN, the VPN stack saves its credential as the session default.
-- For WiFi, Extensible Authentication Protocol (EAP) provides support.
+The credentials that are used for the connection authentication are placed in *Credential Manager* as the default credentials for the **logon session**. Credential Manager stores credentials that can be used for specific domain resources. These are based on the target name of the resource:
 
-The credentials are placed in Credential Manager as a "\*Session" credential.
-A "\*Session" credential implies that it is valid for the current user session.
-The credentials are also cleaned up when the WiFi or VPN connection is disconnected.
+- For VPN, the VPN stack saves its credential as the **session default**
+- For WiFi, Extensible Authentication Protocol (EAP) provides support
+
+The credentials are placed in Credential Manager as a *session credential*:
+
+- A *session credential* implies that it is valid for the current user session
+- The credentials are cleaned up when the WiFi or VPN connection is disconnected
 
 > [!NOTE]
-> In Windows 10, version 21h2 and later, the "\*Session" credential is not visible in Credential Manager.
+> In Windows 10, version 21H2 and later, the *session credential* is not visible in Credential Manager.
 
-For example, if someone using Microsoft Edge tries to access a domain resource, Microsoft Edge has the right Enterprise Authentication capability. This allows [WinInet](/windows/win32/wininet/wininet-reference) to release the credentials that it gets from the Credential Manager to the SSP that is requesting it.
+For example, if someone using Microsoft Edge tries to access a domain resource, Microsoft Edge has the right Enterprise Authentication capability. This allows [WinInet](/windows/win32/wininet/wininet-reference) to release the credentials that it gets from Credential Manager to the SSP that is requesting it.
 For more information about the Enterprise Authentication capability, see [App capability declarations](/windows/uwp/packaging/app-capability-declarations).
 
 The local security authority will look at the device application to determine if it has the right capability. This includes items such as a Universal Windows Platform (UWP) application.
 If the app isn't a UWP, it doesn't matter.
-But if the application is a UWP app, it will evaluate at the device capability for Enterprise Authentication.
+But, if the application is a UWP app, it will evaluate at the device capability for Enterprise Authentication.
 If it does have that capability and if the resource that you're trying to access is in the Intranet zone in the Internet Options (ZoneMap), then the credential will be released.
 This behavior helps prevent credentials from being misused by untrusted third parties.
 
 ## Intranet zone
 
-For the Intranet zone, by default it only allows single-label names, such as Http://finance.
+For the Intranet zone, by default it only allows single-label names, such as *http://finance*.
 If the resource that needs to be accessed has multiple domain labels, then the workaround is to use the [Registry CSP](/windows/client-management/mdm/registry-csp).
 
 ### Setting the ZoneMap
 
 The ZoneMap is controlled using a registry that can be set through MDM.
-By default, single-label names such as http://finance are already in the intranet zone.
-For multi-label names, such as http://finance.net, the ZoneMap needs to be updated.
+By default, single-label names such as *http://finance* are already in the intranet zone.
+For multi-label names, such as *http://finance.net*, the ZoneMap needs to be updated.
 
 ## MDM Policy
 
 OMA URI example:
 
-./Vendor/MSFT/Registry/HKU/S-1-5-21-2702878673-795188819-444038987-2781/Software/Microsoft/Windows/CurrentVersion/Internet%20Settings/ZoneMap/Domains/`<domain name>`/* as an Integer Value of 1 for each of the domains that you want to SSO into from your device. This adds the specified domains to the Intranet Zone of the Microsoft Edge browser.
+`./Vendor/MSFT/Registry/HKU/S-1-5-21-2702878673-795188819-444038987-2781/Software/Microsoft/Windows/CurrentVersion/Internet%20Settings/ZoneMap/Domains/<domain name>` as an `Integer` value of `1` for each of the domains that you want to SSO into from your device. This adds the specified domains to the Intranet Zone of the Microsoft Edge browser.
 
 ## Credential requirements
 
@@ -66,10 +68,10 @@ For VPN, the following types of credentials will be added to credential manager
 
 - Username and password
 - Certificate-based authentication:
-    - TPM Key Storage Provider (KSP) Certificate
-    - Software Key Storage Provider (KSP) Certificates
-    - Smart Card Certificate
-    - Windows Hello for Business Certificate
+  - TPM Key Storage Provider (KSP) Certificate
+  - Software Key Storage Provider (KSP) Certificates
+  - Smart Card Certificate
+  - Windows Hello for Business Certificate
 
 The username should also include a domain that can be reached over the connection (VPN or WiFi).
 
@@ -79,10 +81,10 @@ If the credentials are certificate-based, then the elements in the following tab
 
 | Template element | Configuration |
 |------------------|---------------|
-| SubjectName | The user’s distinguished name (DN) where the domain components of the distinguished name reflect the internal DNS namespace when the SubjectAlternativeName does not have the fully qualified UPN required to find the domain controller. </br>This requirement is relevant in multi-forest environments as it ensures a domain controller can be located. |
-| SubjectAlternativeName | The user’s fully qualified UPN where a domain name component of the user’s UPN matches the organizations internal domain’s DNS namespace. </br>This requirement is relevant in multi-forest environments as it ensures a domain controller can be located when the SubjectName does not have the DN required to find the domain controller. |
+| SubjectName | The user's distinguished name (DN) where the domain components of the distinguished name reflect the internal DNS namespace when the SubjectAlternativeName does not have the fully qualified UPN required to find the domain controller. </br>This requirement is relevant in multi-forest environments as it ensures a domain controller can be located. |
+| SubjectAlternativeName | The user's fully qualified UPN where a domain name component of the user's UPN matches the organizations internal domain's DNS namespace. </br>This requirement is relevant in multi-forest environments as it ensures a domain controller can be located when the SubjectName does not have the DN required to find the domain controller. |
 | Key Storage Provider (KSP) | If the device is joined to Azure AD, a discrete SSO certificate is used. |
-| EnhancedKeyUsage | One or more of the following EKUs is required: </br>- Client Authentication (for the VPN) </br>- EAP Filtering OID (for Windows Hello for Business)</br>- SmartCardLogon (for Azure AD-joined devices) </br>If the domain controllers require smart card EKU either:</br>- SmartCardLogon</br>- id-pkinit-KPClientAuth (1.3.6.1.5.2.3.4) <br>Otherwise:</br>- TLS/SSL Client Authentication (1.3.6.1.5.5.7.3.2) |
+| EnhancedKeyUsage | One or more of the following EKUs is required: </br><ul><li>Client Authentication (for the VPN)</li><li>EAP Filtering OID (for Windows Hello for Business)</li><li>SmartCardLogon (for Azure AD-joined devices)</li></ul>If the domain controllers require smart card EKU either:<ul><li>SmartCardLogon</li><li>id-pkinit-KPClientAuth (1.3.6.1.5.2.3.4) </li></ul>Otherwise:</br><ul><li>TLS/SSL Client Authentication (1.3.6.1.5.5.7.3.2)</li></ul> |
 
 ## NDES server configuration
 
diff --git a/windows/security/information-protection/bitlocker/bitlocker-management-for-enterprises.md b/windows/security/information-protection/bitlocker/bitlocker-management-for-enterprises.md
index c167390523..b86eb930d8 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-management-for-enterprises.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-management-for-enterprises.md
@@ -35,6 +35,11 @@ Starting with Windows 10 version 1703, the enablement of BitLocker can be trigge
 
 For hardware that is compliant with Modern Standby and HSTI, when using either of these features, [BitLocker Device Encryption](bitlocker-device-encryption-overview-windows-10.md#bitlocker-device-encryption) is automatically turned on whenever the user joins a device to Azure AD. Azure AD provides a portal where recovery keys are also backed up, so users can retrieve their own recovery key for self-service, if necessary. For older devices that aren't yet encrypted, beginning with Windows 10 version 1703, admins can use the [BitLocker CSP](/windows/client-management/mdm/bitlocker-csp/) to trigger encryption and store the recovery key in Azure AD. This process and feature is applicable to Azure Hybrid AD as well.
 
+> [!NOTE]
+> To manage Bitlocker, except to enable and disable it, one of the following licenses must be assigned to your users:
+> - Windows 10/11 Enterprise E3 or E5 (included in Microsoft 365 F3, E3, and E5).
+> - Windows 10/11 Education A3 or A5 (included in Microsoft 365 A3 and A5).
+
 ## Managing workplace-joined PCs and phones
 
 For Windows PCs and Windows Phones that are enrolled using **Connect to work or school account**, BitLocker Device Encryption is managed over MDM, the same as devices joined to Azure AD.
diff --git a/windows/security/information-protection/encrypted-hard-drive.md b/windows/security/information-protection/encrypted-hard-drive.md
index 82af1b7c01..4523cd4552 100644
--- a/windows/security/information-protection/encrypted-hard-drive.md
+++ b/windows/security/information-protection/encrypted-hard-drive.md
@@ -99,7 +99,7 @@ The AK is the key used to unlock data on the drive. A hash of the key is stored
 
 When a computer with an encrypted hard drive is in a powered-off state, the drive locks automatically. As a computer powers on, the device remains in a locked state and is only unlocked after the AK decrypts the DEK. Once the AK decrypts the DEK, read-write operations can take place on the device.
 
-When writing data to the drive, it passes through an encryption engine before the write operation completes. Likewise, reading data from the drive requires the encryption engine to decrypt the data before passing that data back to the user. If the DEK needs to be changed or erased, the data on the drive doesn't need to be re-encrypted. A new Authentication Key needs to be created and it will re-encrypt the DEK. Once completed, the DEK can now be unlocked using the new AK, and read-writes to the volume can continue.
+When writing data to the drive, it passes through an encryption engine before the write operation completes. Likewise, reading data from the drive requires the encryption engine to decrypt the data before passing that data back to the user. If the AK needs to be changed or erased, the data on the drive doesn't need to be re-encrypted. A new Authentication Key needs to be created and it will re-encrypt the DEK. Once completed, the DEK can now be unlocked using the new AK, and read-writes to the volume can continue.
 
 ## Reconfiguring encrypted hard drives
 
diff --git a/windows/security/information-protection/kernel-dma-protection-for-thunderbolt.md b/windows/security/information-protection/kernel-dma-protection-for-thunderbolt.md
index bd501ceb09..234c8a6eba 100644
--- a/windows/security/information-protection/kernel-dma-protection-for-thunderbolt.md
+++ b/windows/security/information-protection/kernel-dma-protection-for-thunderbolt.md
@@ -2,13 +2,13 @@
 title: Kernel DMA Protection (Windows)
 description: Kernel DMA Protection protects PCs against drive-by Direct Memory Access (DMA) attacks using PCI hot plug devices connected to Thunderbolt™ 3 ports.
 ms.prod: windows-client
-author: dansimp
-ms.author: dansimp
+author: vinaypamnani-msft
+ms.author: vinpa
 manager: aaroncz
 ms.collection: 
   - highpri
 ms.topic: conceptual
-ms.date: 03/26/2019
+ms.date: 01/05/2023
 ms.technology: itpro-security
 ---
 
@@ -66,6 +66,9 @@ Systems released prior to Windows 10 version 1803 do not support Kernel DMA Prot
 >[!NOTE]
 >Kernel DMA Protection is not compatible with other BitLocker DMA attacks countermeasures. It is recommended to disable the BitLocker DMA attacks countermeasures if the system supports Kernel DMA Protection. Kernel DMA Protection provides higher security bar for the system over the BitLocker DMA attack countermeasures, while maintaining usability of external peripherals.
 
+>[!NOTE]
+>DMA remapping support for graphics devices was added in Windows 11 with the WDDM 3.0 driver model; Windows 10 does not support this feature.
+
 ## How to check if Kernel DMA Protection is enabled
 
 Systems running Windows 10 version 1803 that do support Kernel DMA Protection do have this security feature enabled automatically by the OS with no user or IT admin configuration required.
diff --git a/windows/security/information-protection/personal-data-encryption/overview-pde.md b/windows/security/information-protection/personal-data-encryption/overview-pde.md
index c5b9e5773f..12709e8d35 100644
--- a/windows/security/information-protection/personal-data-encryption/overview-pde.md
+++ b/windows/security/information-protection/personal-data-encryption/overview-pde.md
@@ -48,11 +48,11 @@ ms.date: 12/13/2022
 
 - [Windows Error Reporting (WER) disabled/User-mode crash dumps disabled](/windows/client-management/mdm/policy-csp-errorreporting#errorreporting-disablewindowserrorreporting)
 
-   Disabling Windows Error Reporting prevents user-mode crash dumps. User-mode crash dumps can potentially cause the keys used by PDE to protect content to be exposed. For greatest security, disable user-mode crash dumps. For information on disabling crash dumbs via Intune, see [Disable Windows Error Reporting (WER)/Disable user-mode crash dumps](configure-pde-in-intune.md#disable-windows-error-reporting-werdisable-user-mode-crash-dumps).
+   Disabling Windows Error Reporting prevents user-mode crash dumps. User-mode crash dumps can potentially cause the keys used by PDE to protect content to be exposed. For greatest security, disable user-mode crash dumps. For more information on disabling crash dumps via Intune, see [Disable Windows Error Reporting (WER)/Disable user-mode crash dumps](configure-pde-in-intune.md#disable-windows-error-reporting-werdisable-user-mode-crash-dumps).
 
 - [Hibernation disabled](/windows/client-management/mdm/policy-csp-power#power-allowhibernate)
 
-   Hibernation files can potentially cause the keys used by PDE to protect content to be exposed. For greatest security, disable hibernation. For information on disabling crash dumbs via Intune, see [Disable hibernation](configure-pde-in-intune.md#disable-hibernation).
+   Hibernation files can potentially cause the keys used by PDE to protect content to be exposed. For greatest security, disable hibernation. For more information on disabling crash dumps via Intune, see [Disable hibernation](configure-pde-in-intune.md#disable-hibernation).
 
 - [Allowing users to select when a password is required when resuming from connected standby disabled](/windows/client-management/mdm/policy-csp-admx-credentialproviders#admx-credentialproviders-allowdomaindelaylock)
 
diff --git a/windows/security/information-protection/tpm/trusted-platform-module-overview.md b/windows/security/information-protection/tpm/trusted-platform-module-overview.md
index 82f8d5e2f2..f768669a7c 100644
--- a/windows/security/information-protection/tpm/trusted-platform-module-overview.md
+++ b/windows/security/information-protection/tpm/trusted-platform-module-overview.md
@@ -20,8 +20,9 @@ ms.date: 12/31/2017
 **Applies to**
 - Windows 11
 - Windows 10
-- Windows Server 2016
+- Windows Server 2022
 - Windows Server 2019
+- Windows Server 2016
 
 This topic for the IT professional describes the Trusted Platform Module (TPM) and how Windows uses it for access control and authentication.
 
@@ -74,15 +75,14 @@ Some things that you can check on the device are:
 -   Is SecureBoot supported and enabled?
 
 > [!NOTE]
->  Windows 11, Windows 10, Windows Server 2016, and Windows Server 2019 support Device Health Attestation with TPM 2.0. Support for TPM 1.2 was added beginning with Windows version 1607 (RS1). TPM 2.0 requires UEFI firmware. A computer with legacy BIOS and TPM 2.0 won't work as expected.
+>  Windows 11, Windows 10, Windows Server 2016, and Windows Server 2019 support Device Health Attestation with TPM 2.0. Support for TPM 1.2 was added beginning with Windows 10, version 1607. TPM 2.0 requires UEFI firmware. A computer with legacy BIOS and TPM 2.0 won't work as expected.
 
 ## Supported versions for device health attestation
 
-| TPM version | Windows 11  | Windows 10  | Windows Server 2016 | Windows Server 2019 |
-|-------------|-------------|-------------|---------------------|---------------------|
-| TPM 1.2     |             | >= ver 1607 |    >= ver 1607      |       Yes           |
-| TPM 2.0     |    Yes      |     Yes     |       Yes           |       Yes           |
-
+| TPM version | Windows 11  | Windows 10  | Windows Server 2022 | Windows Server 2019 | Windows Server 2016 |
+|-------------|-------------|-------------|---------------------|---------------------|---------------------|
+| TPM 1.2     |             | >= ver 1607 |                     |      Yes            |    >= ver 1607      |
+| TPM 2.0     |   **Yes**   |  **Yes**    |    **Yes**          |    **Yes**          |    **Yes**          |
 
 ## Related topics
 
diff --git a/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md b/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md
index 7493899dfe..b4b43624b2 100644
--- a/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md
+++ b/windows/security/threat-protection/auditing/advanced-security-audit-policy-settings.md
@@ -171,4 +171,8 @@ Resource SACLs are also useful for diagnostic scenarios. For example, administra
  
 This category includes the following subcategories:
 -   [File System (Global Object Access Auditing)](file-system-global-object-access-auditing.md)
--   [Registry (Global Object Access Auditing)](registry-global-object-access-auditing.md)
\ No newline at end of file
+-   [Registry (Global Object Access Auditing)](registry-global-object-access-auditing.md)
+
+## Related topics
+
+-   [Basic security audit policy settings](basic-security-audit-policy-settings.md)
diff --git a/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md b/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md
index fedd8a7726..aa0e4c7ea2 100644
--- a/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md
+++ b/windows/security/threat-protection/auditing/basic-security-audit-policy-settings.md
@@ -38,6 +38,6 @@ Basic security audit policy settings are found under Computer Configuration\\Win
  
 ## Related topics
 
-- [Basic security audit policy settings](basic-security-audit-policy-settings.md)
+- [Advanced security audit policy settings](advanced-security-audit-policy-settings.md)
  
  
diff --git a/windows/security/threat-protection/auditing/event-4661.md b/windows/security/threat-protection/auditing/event-4661.md
index 383989f443..6cc68892c8 100644
--- a/windows/security/threat-protection/auditing/event-4661.md
+++ b/windows/security/threat-protection/auditing/event-4661.md
@@ -158,15 +158,15 @@ This event generates only if Success auditing is enabled for the [Audit Handle M
 
 **Access Request Information:**
 
--   **Transaction ID** \[Type = GUID\]: unique GUID of the transaction. This field can help you correlate this event with other events that might contain the same the **Transaction ID**, such as “[4660](event-4660.md)(S): An object was deleted.”
+-   **Transaction ID** \[Type = GUID\]: unique GUID of the transaction. This field can help you correlate this event with other events that might contain the same **Transaction ID**, such as “[4660](event-4660.md)(S): An object was deleted.”
 
     This parameter might not be captured in the event, and in that case appears as “{00000000-0000-0000-0000-000000000000}”.
 
 > **Note**&nbsp;&nbsp;**GUID** is an acronym for 'Globally Unique Identifier'. It is a 128-bit integer number used to identify resources, activities or instances.
 
--   **Accesses** \[Type = UnicodeString\]: the list of access rights which were requested by **Subject\\Security ID**. These access rights depend on **Object Type**. See “Table 13. File access codes.” for more information about file access rights. For information about SAM object access right use <https://technet.microsoft.com/> or other informational resources.
+-   **Accesses** \[Type = UnicodeString\]: the list of access rights which were requested by **Subject\\Security ID**. These access rights depend on **Object Type**. For more information about file access rights, see [Table of file access codes](/windows/security/threat-protection/auditing/event-5145#table-of-file-access-codes). For information about SAM object access right use <https://technet.microsoft.com/> or other informational resources.
 
--   **Access Mask** \[Type = HexInt32\]: hexadecimal mask for the operation that was requested or performed. See “Table 13. File access codes.” for more information about file access rights. For information about SAM object access right use <https://technet.microsoft.com/> or other informational resources.
+-   **Access Mask** \[Type = HexInt32\]: hexadecimal mask for the operation that was requested or performed. For more information about file access rights, see [Table of file access codes](/windows/security/threat-protection/auditing/event-5145#table-of-file-access-codes). For information about SAM object access right use <https://technet.microsoft.com/> or other informational resources.
 
 -   **Privileges Used for Access Check** \[Type = UnicodeString\]: the list of user privileges which were used during the operation, for example, SeBackupPrivilege. This parameter might not be captured in the event, and in that case appears as “-”. See full list of user privileges in the table below:
 
@@ -218,4 +218,4 @@ For 4661(S, F): A handle to an object was requested.
 
 > **Important**&nbsp;&nbsp;For this event, also see [Appendix A: Security monitoring recommendations for many audit events](appendix-a-security-monitoring-recommendations-for-many-audit-events.md).
 
--   You can get almost the same information from “[4662](event-4662.md): An operation was performed on an object.” There are no additional recommendations for this event in this document.
\ No newline at end of file
+-   You can get almost the same information from “[4662](event-4662.md): An operation was performed on an object.” There are no additional recommendations for this event in this document.
diff --git a/windows/security/threat-protection/auditing/event-4691.md b/windows/security/threat-protection/auditing/event-4691.md
index 62f92ce75d..9f88bf0d9b 100644
--- a/windows/security/threat-protection/auditing/event-4691.md
+++ b/windows/security/threat-protection/auditing/event-4691.md
@@ -126,12 +126,12 @@ These events are generated for [ALPC Ports](/windows/win32/etw/alpc) access requ
 
 **Access Request Information:**
 
--   **Accesses** \[Type = UnicodeString\]: the list of access rights which were requested by **Subject\\Security ID**. These access rights depend on **Object Type**. “Table 13. File access codes.” contains information about the most common access rights for file system objects. For information about ALPC ports access rights, use <https://technet.microsoft.com/> or other informational resources.
+-   **Accesses** \[Type = UnicodeString\]: the list of access rights which were requested by **Subject\\Security ID**. These access rights depend on **Object Type**. [Table of file access codes](/windows/security/threat-protection/auditing/event-5145#table-of-file-access-codes) contains information about the most common access rights for file system objects. For information about ALPC ports access rights, use <https://technet.microsoft.com/> or other informational resources.
 
--   **Access Mask** \[Type = HexInt32\]: hexadecimal mask for the operation that was requested or performed. See “Table 13. File access codes.” for more information about file access rights. For information about ALPC ports access rights, use <https://technet.microsoft.com/> or other informational resources.
+-   **Access Mask** \[Type = HexInt32\]: hexadecimal mask for the operation that was requested or performed. For more information about file access rights, see [Table of file access codes](/windows/security/threat-protection/auditing/event-5145#table-of-file-access-codes). For information about ALPC ports access rights, use <https://technet.microsoft.com/> or other informational resources.
 
 ## Security Monitoring Recommendations
 
 For 4691(S): Indirect access to an object was requested.
 
--   Typically this event has little to no security relevance and is hard to parse or analyze. There is no recommendation for this event, unless you know exactly what you need to monitor with ALPC Ports.
\ No newline at end of file
+-   Typically this event has little to no security relevance and is hard to parse or analyze. There is no recommendation for this event, unless you know exactly what you need to monitor with ALPC Ports.
diff --git a/windows/security/threat-protection/auditing/event-4768.md b/windows/security/threat-protection/auditing/event-4768.md
index 936074fc72..825ba47534 100644
--- a/windows/security/threat-protection/auditing/event-4768.md
+++ b/windows/security/threat-protection/auditing/event-4768.md
@@ -220,7 +220,7 @@ The most common values:
 | 0x14                                                       | KDC\_ERR\_TGT\_REVOKED                 | TGT has been revoked                                                        | Since the remote KDC may change its PKCROSS key while there are PKCROSS tickets still active, it SHOULD cache the old PKCROSS keys until the last issued PKCROSS ticket expires. Otherwise, the remote KDC will respond to a client with a KRB-ERROR message of type KDC\_ERR\_TGT\_REVOKED. See [RFC1510](https://www.ietf.org/proceedings/49/I-D/draft-ietf-cat-kerberos-pk-cross-07.txt) for more details.                                                                                                                                                                                                                |
 | 0x15                                                       | KDC\_ERR\_CLIENT\_NOTYET               | Client not yet valid—try again later                                        | No information.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              |
 | 0x16                                                       | KDC\_ERR\_SERVICE\_NOTYET              | Server not yet valid—try again later                                        | No information.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              |
-| 0x17                                                       | KDC\_ERR\_KEY\_EXPIRED                 | Password has expired—change password to reset                               | The user’s password has expired.<br>This error code cannot occur in event “[4768](event-4768.md). A Kerberos authentication ticket (TGT) was requested”. It occurs in “[4771](event-4771.md). Kerberos pre-authentication failed” event.                                                                                                                                                                                                                                                                                                                                                     |
+| 0x17                                                       | KDC\_ERR\_KEY\_EXPIRED                 | Password has expired—change password to reset                               | The user’s password has expired.                                                                                                                                                                                                                                                                                                                                                     |
 | 0x18                                                       | KDC\_ERR\_PREAUTH\_FAILED              | Pre-authentication information was invalid                                  | The wrong password was provided.<br>This error code cannot occur in event “[4768](event-4768.md). A Kerberos authentication ticket (TGT) was requested”. It occurs in “[4771](event-4771.md). Kerberos pre-authentication failed” event.                                                                                                                                                                                                                                                                                                                                                     |
 | 0x19                                                       | KDC\_ERR\_PREAUTH\_REQUIRED            | Additional pre-authentication required                                      | This error often occurs in UNIX interoperability scenarios. MIT-Kerberos clients do not request pre-authentication when they send a KRB\_AS\_REQ message. If pre-authentication is required (the default), Windows systems will send this error. Most MIT-Kerberos clients will respond to this error by giving the pre-authentication, in which case the error can be ignored, but some clients might not respond in this way.                                                                                                                                                                                              |
 | 0x1A                                                       | KDC\_ERR\_SERVER\_NOMATCH              | KDC does not know about the requested server                                | No information.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              |
diff --git a/windows/security/threat-protection/auditing/event-5140.md b/windows/security/threat-protection/auditing/event-5140.md
index 522cf1b652..602e1d4024 100644
--- a/windows/security/threat-protection/auditing/event-5140.md
+++ b/windows/security/threat-protection/auditing/event-5140.md
@@ -133,7 +133,7 @@ This event generates once per session, when first access attempt was made.
 
 **Access Request Information:**
 
--   **Access Mask** \[Type = HexInt32\]: the sum of hexadecimal values of requested access rights. See “Table 13. File access codes.” for different hexadecimal values for access rights. Has always “**0x1**” value for this event.
+-   **Access Mask** \[Type = HexInt32\]: the sum of hexadecimal values of requested access rights. See [Table of file access codes](/windows/security/threat-protection/auditing/event-5145#table-of-file-access-codes) for different hexadecimal values for access rights. It always has “**0x1**” value for this event.
 
 -   **Accesses** \[Type = UnicodeString\]: the list of access rights that were requested by **Subject\\Security ID**. These access rights depend on **Object Type**. Has always “**ReadData (or ListDirectory)**” value for this event.
 
diff --git a/windows/security/threat-protection/auditing/event-5145.md b/windows/security/threat-protection/auditing/event-5145.md
index 02c531c5fd..7b34010d4c 100644
--- a/windows/security/threat-protection/auditing/event-5145.md
+++ b/windows/security/threat-protection/auditing/event-5145.md
@@ -135,7 +135,7 @@ This event generates every time network share object (file or folder) was access
 
 **Access Request Information:**
 
--   **Access Mask** \[Type = HexInt32\]: the sum of hexadecimal values of requested access rights. See “Table 13. File access codes.” for different hexadecimal values for access rights.
+-   **Access Mask** \[Type = HexInt32\]: the sum of hexadecimal values of requested access rights. See [Table of file access codes](/windows/security/threat-protection/auditing/event-5145#table-of-file-access-codes) for different hexadecimal values for access rights.
 
 -   **Accesses** \[Type = UnicodeString\]: the list of access rights that were requested by **Subject\\Security ID**. These access rights depend on **Object Type**.
 
@@ -319,4 +319,4 @@ For 5145(S, F): A network share object was checked to see whether client can be
 
     -   WRITE\_DAC
 
-    -   WRITE\_OWNER
\ No newline at end of file
+    -   WRITE\_OWNER
diff --git a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
index bf8fa457c5..003104ce73 100644
--- a/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
+++ b/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity.md
@@ -285,9 +285,9 @@ Value  | Description
 
 This field lists the computer name. All valid values for computer name.
 
-Another method to determine the available and enabled Windows Defender Device Guard features is to run msinfo32.exe from an elevated PowerShell session. When you run this program, the Windows Defender Device Guard properties are displayed at the bottom of the **System Summary** section.
+Another method to determine the available and enabled virtualization-based security features is to run msinfo32.exe from an elevated PowerShell session. When you run this program, the virtualization-based security features are displayed at the bottom of the **System Summary** section.
 
-:::image type="content" alt-text="Windows Defender Device Guard properties in the System Summary." source="../images/dg-fig11-dgproperties.png" lightbox="../images/dg-fig11-dgproperties.png":::
+:::image type="content" alt-text="Virtualization-based security features in the System Summary of System Information." source="images/system-information-virtualization-based-security.png" lightbox="images/system-information-virtualization-based-security.png":::
 
 ## Troubleshooting
 
diff --git a/windows/security/threat-protection/device-guard/images/dg-fig11-dgproperties.png b/windows/security/threat-protection/device-guard/images/dg-fig11-dgproperties.png
deleted file mode 100644
index 3c93b2b948..0000000000
Binary files a/windows/security/threat-protection/device-guard/images/dg-fig11-dgproperties.png and /dev/null differ
diff --git a/windows/security/threat-protection/device-guard/images/system-information-virtualization-based-security.png b/windows/security/threat-protection/device-guard/images/system-information-virtualization-based-security.png
new file mode 100644
index 0000000000..d865fc1715
Binary files /dev/null and b/windows/security/threat-protection/device-guard/images/system-information-virtualization-based-security.png differ
diff --git a/windows/security/threat-protection/images/dg-fig11-dgproperties.png b/windows/security/threat-protection/images/dg-fig11-dgproperties.png
deleted file mode 100644
index 3c93b2b948..0000000000
Binary files a/windows/security/threat-protection/images/dg-fig11-dgproperties.png and /dev/null differ
diff --git a/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md b/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md
index 765a61fcb9..ad5d373c27 100644
--- a/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md
+++ b/windows/security/threat-protection/microsoft-defender-application-guard/install-md-app-guard.md
@@ -8,7 +8,7 @@ ms.pagetype: security
 ms.localizationpriority: medium
 author: vinaypamnani-msft
 ms.author: vinpa
-ms.date: 09/09/2021
+ms.date: 11/30/2022
 ms.reviewer: 
 manager: aaroncz
 ms.custom: asr
@@ -28,10 +28,12 @@ ms.topic: how-to
 ## Review system requirements
  
 See [System requirements for Microsoft Defender Application Guard](./reqs-md-app-guard.md) to review the hardware and software installation requirements for Microsoft Defender Application Guard.
->[!NOTE]
->Microsoft Defender Application Guard is not supported on VMs and VDI environment. For testing and automation on non-production machines, you may enable WDAG on a VM by enabling Hyper-V nested virtualization on the host.
+
+> [!NOTE]
+> Microsoft Defender Application Guard is not supported on VMs and VDI environment. For testing and automation on non-production machines, you may enable WDAG on a VM by enabling Hyper-V nested virtualization on the host.
 
 ## Prepare for Microsoft Defender Application Guard 
+
 Before you can install and use Microsoft Defender Application Guard, you must determine which way you intend to use it in your enterprise. You can use Application Guard in either **Standalone** or **Enterprise-managed** mode.
 
 ### Standalone mode
@@ -52,6 +54,7 @@ Applies to:
 You and your security department can define your corporate boundaries by explicitly adding trusted domains and by customizing the Application Guard experience to meet and enforce your needs on employee devices. Enterprise-managed mode also automatically redirects any browser requests to add non-enterprise domain(s) in the container.
 
 The following diagram shows the flow between the host PC and the isolated container.
+
 ![Flowchart for movement between Microsoft Edge and Application Guard.](images/application-guard-container-v-host.png)
 
 ## Install Application Guard
@@ -60,29 +63,29 @@ Application Guard functionality is turned off by default. However, you can quick
 
 ### To install by using the Control Panel
 
-1. Open the **Control Panel**, click **Programs,** and then click **Turn Windows features on or off**.
+1. Open the **Control Panel**, click **Programs,** and then select **Turn Windows features on or off**.
 
     ![Windows Features, turning on Microsoft Defender Application Guard.](images/turn-windows-features-on-off.png)
 
-2. Select the check box next to **Microsoft Defender Application Guard** and then click **OK**.
+2. Select the check box next to **Microsoft Defender Application Guard** and then select **OK**.
 
    Application Guard and its underlying dependencies are all installed.
 
 ### To install by using PowerShell
 
->[!NOTE]
->Ensure your devices have met all system requirements prior to this step. PowerShell will install the feature without checking system requirements. If your devices don't meet the system requirements, Application Guard may not work. This step is recommended for enterprise managed scenarios only.
+> [!NOTE]
+> Ensure your devices have met all system requirements prior to this step. PowerShell will install the feature without checking system requirements. If your devices don't meet the system requirements, Application Guard may not work. This step is recommended for enterprise managed scenarios only.
 
-1. Click the **Search** or **Cortana** icon in the Windows 10 or Windows 11 taskbar and type **PowerShell**.
+1. Select the **Search** or **Cortana** icon in the Windows 10 or Windows 11 taskbar and type **PowerShell**.
    
-2. Right-click **Windows PowerShell**, and then click **Run as administrator**.
+2. Right-click **Windows PowerShell**, and then select **Run as administrator**.
 
    Windows PowerShell opens with administrator credentials.
 
 3. Type the following command:
 
     ```
-    Enable-WindowsOptionalFeature -online -FeatureName Windows-Defender-ApplicationGuard
+    Enable-WindowsOptionalFeature -Online -FeatureName Windows-Defender-ApplicationGuard
     ```
 4. Restart the device.
 
@@ -95,17 +98,15 @@ Application Guard functionality is turned off by default. However, you can quick
 
 :::image type="content" source="images/MDAG-EndpointMgr-newprofile.jpg" alt-text="Enroll devices in Intune.":::
 
-1. Sign in to the [Microsoft Endpoint Manager admin center](https://go.microsoft.com/fwlink/?linkid=2109431).
-
-1. Choose **Devices** > **Configuration profiles** > **+ Create profile**, and do the following: <br/>
+1. In the [Microsoft Endpoint Manager admin center](https://go.microsoft.com/fwlink/?linkid=2109431), choose **Devices** > **Configuration profiles** > **+ Create profile**, and do the following: <br/>
 
    1. In the **Platform** list, select **Windows 10 and later**. 
    
-   1. In the **Profile** list, select **Endpoint protection**. 
+   2. In the **Profile** type, choose **Templates** and select **Endpoint protection**. 
    
-   1. Choose **Create**.
+   3. Choose **Create**.
 
-1. Specify the following settings for the profile:
+2. Specify the following settings for the profile:
 
    - **Name** and **Description**
 
@@ -115,16 +116,16 @@ Application Guard functionality is turned off by default. However, you can quick
 
    - Choose your preferences for **Clipboard behavior**, **External content**, and the remaining settings.
 
-1. Choose **OK**, and then choose **OK** again.
+3. Choose **OK**, and then choose **OK** again.
 
-1. Review your settings, and then choose **Create**.
+4. Review your settings, and then choose **Create**.
 
-1. Choose **Assignments**, and then do the following:
+5. Choose **Assignments**, and then do the following:
 
    1. On the **Include** tab, in the **Assign to** list, choose an option.
 
-   1. If you have any devices or users you want to exclude from this endpoint protection profile, specify those on the **Exclude** tab.
+   2. If you have any devices or users you want to exclude from this endpoint protection profile, specify those on the **Exclude** tab.
 
-   1. Click **Save**.
+   3. Select **Save**.
 
 After the profile is created, any devices to which the policy should apply will have Microsoft Defender Application Guard enabled. Users might have to restart their devices in order for protection to be in place.
diff --git a/windows/security/threat-protection/security-policy-settings/account-lockout-duration.md b/windows/security/threat-protection/security-policy-settings/account-lockout-duration.md
index 1b179ea1d2..e6f9bec119 100644
--- a/windows/security/threat-protection/security-policy-settings/account-lockout-duration.md
+++ b/windows/security/threat-protection/security-policy-settings/account-lockout-duration.md
@@ -22,6 +22,7 @@ ms.technology: itpro-security
 # Account lockout duration
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Account lockout duration** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/account-lockout-policy.md b/windows/security/threat-protection/security-policy-settings/account-lockout-policy.md
index b94691d8ce..03d4f6bba0 100644
--- a/windows/security/threat-protection/security-policy-settings/account-lockout-policy.md
+++ b/windows/security/threat-protection/security-policy-settings/account-lockout-policy.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Account Lockout Policy
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the Account Lockout Policy settings and links to information about each policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/account-lockout-threshold.md b/windows/security/threat-protection/security-policy-settings/account-lockout-threshold.md
index d3ee1d4c05..7436c55ccd 100644
--- a/windows/security/threat-protection/security-policy-settings/account-lockout-threshold.md
+++ b/windows/security/threat-protection/security-policy-settings/account-lockout-threshold.md
@@ -22,6 +22,7 @@ ms.technology: itpro-security
 # Account lockout threshold
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Account lockout threshold** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/account-policies.md b/windows/security/threat-protection/security-policy-settings/account-policies.md
index 6202590a94..b3031beef7 100644
--- a/windows/security/threat-protection/security-policy-settings/account-policies.md
+++ b/windows/security/threat-protection/security-policy-settings/account-policies.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Account Policies
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 An overview of account policies in Windows and provides links to policy descriptions.
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-administrator-account-status.md b/windows/security/threat-protection/security-policy-settings/accounts-administrator-account-status.md
index 03e09cb0e4..e247a80951 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-administrator-account-status.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-administrator-account-status.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Accounts: Administrator account status
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Accounts: Administrator account status** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-block-microsoft-accounts.md b/windows/security/threat-protection/security-policy-settings/accounts-block-microsoft-accounts.md
index 31ea250022..bd80ebe594 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-block-microsoft-accounts.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-block-microsoft-accounts.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Accounts: Block Microsoft accounts
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, management, and security considerations for the **Accounts: Block Microsoft accounts** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-guest-account-status.md b/windows/security/threat-protection/security-policy-settings/accounts-guest-account-status.md
index e8296570ec..f23fc8dd7e 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-guest-account-status.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-guest-account-status.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Accounts: Guest account status - security policy setting
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Accounts: Guest account status** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-limit-local-account-use-of-blank-passwords-to-console-logon-only.md b/windows/security/threat-protection/security-policy-settings/accounts-limit-local-account-use-of-blank-passwords-to-console-logon-only.md
index 632ece9ddd..6b3f24d9e6 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-limit-local-account-use-of-blank-passwords-to-console-logon-only.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-limit-local-account-use-of-blank-passwords-to-console-logon-only.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Accounts: Limit local account use of blank passwords to console logon only
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Accounts: Limit local account use of blank passwords to console logon only** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-rename-administrator-account.md b/windows/security/threat-protection/security-policy-settings/accounts-rename-administrator-account.md
index dedf4c2e88..bd8090dfe7 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-rename-administrator-account.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-rename-administrator-account.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Accounts: Rename administrator account
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 This security policy reference topic for the IT professional describes the best practices, location, values, and security considerations for this policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/accounts-rename-guest-account.md b/windows/security/threat-protection/security-policy-settings/accounts-rename-guest-account.md
index 53052044e5..6bfcf412ae 100644
--- a/windows/security/threat-protection/security-policy-settings/accounts-rename-guest-account.md
+++ b/windows/security/threat-protection/security-policy-settings/accounts-rename-guest-account.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Accounts: Rename guest account - security policy setting
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Accounts: Rename guest account** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/administer-security-policy-settings.md b/windows/security/threat-protection/security-policy-settings/administer-security-policy-settings.md
index a0ceb52c49..9994324c08 100644
--- a/windows/security/threat-protection/security-policy-settings/administer-security-policy-settings.md
+++ b/windows/security/threat-protection/security-policy-settings/administer-security-policy-settings.md
@@ -94,7 +94,7 @@ The Security Compliance Manager is a downloadable tool that helps you plan, depl
 
 **To administer security policies by using the Security Compliance Manager**
 
-1. Download the most recent version. You can find out more info on the [Microsoft Security Guidance](/archive/blogs/secguide/) blog.
+1. Download the most recent version. You can find more info on the [Microsoft Security Baselines](https://techcommunity.microsoft.com/t5/microsoft-security-baselines/bg-p/Microsoft-Security-Baselines) blog.
 1. Read the relevant security baseline documentation that is included in this tool.
 1. Download and import the relevant security baselines. The installation process steps you through baseline selection.
 1. Open the Help and follow instructions how to customize, compare, or merge your security baselines before deploying those baselines.
diff --git a/windows/security/threat-protection/security-policy-settings/audit-audit-the-use-of-backup-and-restore-privilege.md b/windows/security/threat-protection/security-policy-settings/audit-audit-the-use-of-backup-and-restore-privilege.md
index 25d16578cf..7d38765755 100644
--- a/windows/security/threat-protection/security-policy-settings/audit-audit-the-use-of-backup-and-restore-privilege.md
+++ b/windows/security/threat-protection/security-policy-settings/audit-audit-the-use-of-backup-and-restore-privilege.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Audit: Audit the use of Backup and Restore privilege
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Audit: Audit the use of Backup and Restore privilege** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/audit-force-audit-policy-subcategory-settings-to-override.md b/windows/security/threat-protection/security-policy-settings/audit-force-audit-policy-subcategory-settings-to-override.md
index 17ed033d50..42e645eb95 100644
--- a/windows/security/threat-protection/security-policy-settings/audit-force-audit-policy-subcategory-settings-to-override.md
+++ b/windows/security/threat-protection/security-policy-settings/audit-force-audit-policy-subcategory-settings-to-override.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/audit-policy.md b/windows/security/threat-protection/security-policy-settings/audit-policy.md
index 2535eda161..5130a2112d 100644
--- a/windows/security/threat-protection/security-policy-settings/audit-policy.md
+++ b/windows/security/threat-protection/security-policy-settings/audit-policy.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Audit Policy
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Provides information about basic audit policies that are available in Windows and links to information about each setting.
diff --git a/windows/security/threat-protection/security-policy-settings/audit-shut-down-system-immediately-if-unable-to-log-security-audits.md b/windows/security/threat-protection/security-policy-settings/audit-shut-down-system-immediately-if-unable-to-log-security-audits.md
index a470ec0246..614fbe0d12 100644
--- a/windows/security/threat-protection/security-policy-settings/audit-shut-down-system-immediately-if-unable-to-log-security-audits.md
+++ b/windows/security/threat-protection/security-policy-settings/audit-shut-down-system-immediately-if-unable-to-log-security-audits.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Audit: Shut down system immediately if unable to log security audits
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, management practices, and security considerations for the **Audit: Shut down system immediately if unable to log security audits** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/dcom-machine-launch-restrictions-in-security-descriptor-definition-language-sddl-syntax.md b/windows/security/threat-protection/security-policy-settings/dcom-machine-launch-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
index e9ee7fcc6c..e549425217 100644
--- a/windows/security/threat-protection/security-policy-settings/dcom-machine-launch-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
+++ b/windows/security/threat-protection/security-policy-settings/dcom-machine-launch-restrictions-in-security-descriptor-definition-language-sddl-syntax.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **DCOM: Machine Launch Restrictions in Security Descriptor Definition Language (SDDL) syntax** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/devices-allow-undock-without-having-to-log-on.md b/windows/security/threat-protection/security-policy-settings/devices-allow-undock-without-having-to-log-on.md
index 1b00fd452b..42bcd1198e 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-allow-undock-without-having-to-log-on.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-allow-undock-without-having-to-log-on.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Devices: Allow undock without having to log on
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Devices: Allow undock without having to log on** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/devices-allowed-to-format-and-eject-removable-media.md b/windows/security/threat-protection/security-policy-settings/devices-allowed-to-format-and-eject-removable-media.md
index 1a2d4569b1..f27b736149 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-allowed-to-format-and-eject-removable-media.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-allowed-to-format-and-eject-removable-media.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Devices: Allowed to format and eject removable media
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Devices: Allowed to format and eject removable media** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/devices-prevent-users-from-installing-printer-drivers.md b/windows/security/threat-protection/security-policy-settings/devices-prevent-users-from-installing-printer-drivers.md
index c23872dd05..48ec7ee37d 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-prevent-users-from-installing-printer-drivers.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-prevent-users-from-installing-printer-drivers.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Devices: Prevent users from installing printer drivers
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Devices: Prevent users from installing printer drivers** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/devices-restrict-cd-rom-access-to-locally-logged-on-user-only.md b/windows/security/threat-protection/security-policy-settings/devices-restrict-cd-rom-access-to-locally-logged-on-user-only.md
index b7bf3097f3..606f90388d 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-restrict-cd-rom-access-to-locally-logged-on-user-only.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-restrict-cd-rom-access-to-locally-logged-on-user-only.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Devices: Restrict CD-ROM access to locally logged-on user only
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Devices: Restrict CD-ROM access to locally logged-on user only** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/devices-restrict-floppy-access-to-locally-logged-on-user-only.md b/windows/security/threat-protection/security-policy-settings/devices-restrict-floppy-access-to-locally-logged-on-user-only.md
index 57eec3a58a..f678d28b4a 100644
--- a/windows/security/threat-protection/security-policy-settings/devices-restrict-floppy-access-to-locally-logged-on-user-only.md
+++ b/windows/security/threat-protection/security-policy-settings/devices-restrict-floppy-access-to-locally-logged-on-user-only.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Devices: Restrict floppy access to locally logged-on user only
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Devices: Restrict floppy access to locally logged-on user only** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-or-sign-secure-channel-data-always.md b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-or-sign-secure-channel-data-always.md
index e309c8a13a..497ae0dcf3 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-or-sign-secure-channel-data-always.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-or-sign-secure-channel-data-always.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Domain member: Digitally encrypt or sign secure channel data (always)
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Domain member: Digitally encrypt or sign secure channel data (always)** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-secure-channel-data-when-possible.md b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-secure-channel-data-when-possible.md
index 6d6a68a20f..ee6200237d 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-secure-channel-data-when-possible.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-encrypt-secure-channel-data-when-possible.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Domain member: Digitally encrypt secure channel data (when possible)
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Domain member: Digitally encrypt secure channel data (when possible)** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-sign-secure-channel-data-when-possible.md b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-sign-secure-channel-data-when-possible.md
index 6002876bb1..fa4519f654 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-digitally-sign-secure-channel-data-when-possible.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-digitally-sign-secure-channel-data-when-possible.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Domain member: Digitally sign secure channel data (when possible)
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Domain member: Digitally sign secure channel data (when possible)** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-disable-machine-account-password-changes.md b/windows/security/threat-protection/security-policy-settings/domain-member-disable-machine-account-password-changes.md
index 0ab20034bc..29cc577b0b 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-disable-machine-account-password-changes.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-disable-machine-account-password-changes.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Domain member: Disable machine account password changes
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Domain member: Disable machine account password changes** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-maximum-machine-account-password-age.md b/windows/security/threat-protection/security-policy-settings/domain-member-maximum-machine-account-password-age.md
index b92ad06096..ac46532629 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-maximum-machine-account-password-age.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-maximum-machine-account-password-age.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Domain member: Maximum machine account password age
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Domain member: Maximum machine account password age** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/domain-member-require-strong-windows-2000-or-later-session-key.md b/windows/security/threat-protection/security-policy-settings/domain-member-require-strong-windows-2000-or-later-session-key.md
index af1e680041..ba84a03cc1 100644
--- a/windows/security/threat-protection/security-policy-settings/domain-member-require-strong-windows-2000-or-later-session-key.md
+++ b/windows/security/threat-protection/security-policy-settings/domain-member-require-strong-windows-2000-or-later-session-key.md
@@ -20,7 +20,8 @@ ms.technology: itpro-security
 # Domain member: Require strong (Windows 2000 or later) session key
 
 **Applies to**
--   Windows 10
+-   Windows 11
+-   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Domain member: Require strong (Windows 2000 or later) session key** security policy setting.
 
diff --git a/windows/security/threat-protection/security-policy-settings/enforce-password-history.md b/windows/security/threat-protection/security-policy-settings/enforce-password-history.md
index f24a419c2e..5c1bb1ef3b 100644
--- a/windows/security/threat-protection/security-policy-settings/enforce-password-history.md
+++ b/windows/security/threat-protection/security-policy-settings/enforce-password-history.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Enforce password history
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, policy management, and security considerations for the **Enforce password history** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-display-user-information-when-the-session-is-locked.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-display-user-information-when-the-session-is-locked.md
index 5dcbffb511..d76c4110fc 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-display-user-information-when-the-session-is-locked.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-display-user-information-when-the-session-is-locked.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Interactive logon: Display user information when the session is locked
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Interactive logon: Display user information when the session is locked** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-display-last-user-name.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-display-last-user-name.md
index ab6e2ff3a9..6cddf9952d 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-display-last-user-name.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-display-last-user-name.md
@@ -19,7 +19,8 @@ ms.technology: itpro-security
 # Interactive logon: Don't display last signed-in
 
 **Applies to**
--   Windows 10
+-   Windows 11
+-   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Interactive logon: Don't display last signed-in** security policy setting. Before Windows 10 version 1703, this policy setting was named **Interactive logon:Do not display last user name.**
 
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-require-ctrl-alt-del.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-require-ctrl-alt-del.md
index 397918894a..f33b15222c 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-require-ctrl-alt-del.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-do-not-require-ctrl-alt-del.md
@@ -19,6 +19,7 @@ ms.technology: itpro-security
 # Interactive logon: Do not require CTRL+ALT+DEL
 
 **Applies to**
+- Windows 11
 - Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Interactive logon: Do not require CTRL+ALT+DEL** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-dont-display-username-at-sign-in.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-dont-display-username-at-sign-in.md
index 52be41f8bc..e283a1f14d 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-dont-display-username-at-sign-in.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-dont-display-username-at-sign-in.md
@@ -20,7 +20,9 @@ ms.technology: itpro-security
 # Interactive logon: Don't display username at sign-in
 
 **Applies to**
-- Windows 10, Windows Server 2019
+- Windows 11
+- Windows 10
+- Windows Server 2019
 
 Describes the best practices, location, values, and security considerations for the **Interactive logon: Don't display username at sign-in** security policy setting.
 
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-account-lockout-threshold.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-account-lockout-threshold.md
index a3296f8c42..c08ad29828 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-account-lockout-threshold.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-account-lockout-threshold.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Interactive logon: Machine account lockout threshold
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, management, and security considerations for the **Interactive logon: Machine account lockout threshold** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-inactivity-limit.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-inactivity-limit.md
index 5803cbee9a..b65e3da751 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-inactivity-limit.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-machine-inactivity-limit.md
@@ -22,6 +22,7 @@ ms.technology: itpro-security
 # Interactive logon: Machine inactivity limit
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, management, and security considerations for the **Interactive logon: Machine inactivity limit** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-message-text-for-users-attempting-to-log-on.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-message-text-for-users-attempting-to-log-on.md
index bee65236bb..0b5af8fa19 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-message-text-for-users-attempting-to-log-on.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-message-text-for-users-attempting-to-log-on.md
@@ -21,6 +21,7 @@ ms.technology: itpro-security
 
 **Applies to:**
 
+- Windows 11
 - Windows 10
 
 Describes the best practices, location, values, management, and security considerations for the **Interactive logon: Message text for users attempting to log on** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-message-title-for-users-attempting-to-log-on.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-message-title-for-users-attempting-to-log-on.md
index 7fe48d083b..c20c76d1c8 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-message-title-for-users-attempting-to-log-on.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-message-title-for-users-attempting-to-log-on.md
@@ -21,6 +21,7 @@ ms.technology: itpro-security
 
 **Applies to**
 
+- Windows 11
 - Windows 10
 
 Describes the best practices, location, values, policy management and security considerations for the **Interactive logon: Message title for users attempting to log on** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-number-of-previous-logons-to-cache-in-case-domain-controller-is-not-available.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-number-of-previous-logons-to-cache-in-case-domain-controller-is-not-available.md
index bbc94ae926..91919d8ae3 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-number-of-previous-logons-to-cache-in-case-domain-controller-is-not-available.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-number-of-previous-logons-to-cache-in-case-domain-controller-is-not-available.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Interactive logon: Number of previous logons to cache (in case domain controller is not available)
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, policy management, and security considerations for the **Interactive logon: Number of previous logons to cache (in case domain controller is not available)** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-prompt-user-to-change-password-before-expiration.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-prompt-user-to-change-password-before-expiration.md
index 642553d04b..5508696327 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-prompt-user-to-change-password-before-expiration.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-prompt-user-to-change-password-before-expiration.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Interactive log on: Prompt the user to change passwords before expiration
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 This article describes the best practices, location, values, policy management, and security considerations for the **Interactive logon: Prompt user to change password before expiration** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-require-domain-controller-authentication-to-unlock-workstation.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-require-domain-controller-authentication-to-unlock-workstation.md
index 7878c175b6..dea0b48963 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-require-domain-controller-authentication-to-unlock-workstation.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-require-domain-controller-authentication-to-unlock-workstation.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Interactive logon: Require Domain Controller authentication to unlock workstation
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, policy management, and security considerations for the **Interactive logon: Require Domain Controller authentication to unlock workstation** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/interactive-logon-smart-card-removal-behavior.md b/windows/security/threat-protection/security-policy-settings/interactive-logon-smart-card-removal-behavior.md
index 697adc586b..804de2d6cb 100644
--- a/windows/security/threat-protection/security-policy-settings/interactive-logon-smart-card-removal-behavior.md
+++ b/windows/security/threat-protection/security-policy-settings/interactive-logon-smart-card-removal-behavior.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Interactive logon: Smart card removal behavior
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the recommended practices, location, values, policy management, and security considerations for the **Interactive logon: Smart card removal behavior** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/maximum-password-age.md b/windows/security/threat-protection/security-policy-settings/maximum-password-age.md
index b8ac0f76a4..7c99d562b8 100644
--- a/windows/security/threat-protection/security-policy-settings/maximum-password-age.md
+++ b/windows/security/threat-protection/security-policy-settings/maximum-password-age.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Maximum password age
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, policy management, and security considerations for the **Maximum password age** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/microsoft-network-client-digitally-sign-communications-always.md b/windows/security/threat-protection/security-policy-settings/microsoft-network-client-digitally-sign-communications-always.md
index 9a86d20cd0..e446db45a1 100644
--- a/windows/security/threat-protection/security-policy-settings/microsoft-network-client-digitally-sign-communications-always.md
+++ b/windows/security/threat-protection/security-policy-settings/microsoft-network-client-digitally-sign-communications-always.md
@@ -19,6 +19,7 @@ ms.topic: conceptual
 # Microsoft network client: Digitally sign communications (always)
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 -   Windows Server
 
diff --git a/windows/security/threat-protection/security-policy-settings/minimum-password-age.md b/windows/security/threat-protection/security-policy-settings/minimum-password-age.md
index 76babb8a47..02c1a25fd5 100644
--- a/windows/security/threat-protection/security-policy-settings/minimum-password-age.md
+++ b/windows/security/threat-protection/security-policy-settings/minimum-password-age.md
@@ -19,6 +19,7 @@ ms.topic: conceptual
 # Minimum password age
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, policy management, and security considerations for the **Minimum password age** security policy setting.
@@ -90,4 +91,4 @@ If you set a password for a user but want that user to change the password when
 
 ## Related topics
 
-- [Password Policy](password-policy.md)
\ No newline at end of file
+- [Password Policy](password-policy.md)
diff --git a/windows/security/threat-protection/security-policy-settings/minimum-password-length.md b/windows/security/threat-protection/security-policy-settings/minimum-password-length.md
index 54bc74dbee..cde1a5df8b 100644
--- a/windows/security/threat-protection/security-policy-settings/minimum-password-length.md
+++ b/windows/security/threat-protection/security-policy-settings/minimum-password-length.md
@@ -22,6 +22,7 @@ ms.technology: itpro-security
 # Minimum password length
 
 **Applies to**
+- Windows 11
 - Windows 10
 
 This article describes the recommended practices, location, values, policy management, and security considerations for the **Minimum password length** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements.md b/windows/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements.md
index 6fb28222b7..c7b9c6ad9d 100644
--- a/windows/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements.md
+++ b/windows/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements.md
@@ -22,6 +22,7 @@ ms.date: 12/31/2017
 # Password must meet complexity requirements
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Password must meet complexity requirements** security policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/password-policy.md b/windows/security/threat-protection/security-policy-settings/password-policy.md
index 2f47a4ef2c..b4163b8525 100644
--- a/windows/security/threat-protection/security-policy-settings/password-policy.md
+++ b/windows/security/threat-protection/security-policy-settings/password-policy.md
@@ -22,6 +22,7 @@ ms.technology: itpro-security
 # Password Policy
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 An overview of password policies for Windows and links to information for each policy setting.
diff --git a/windows/security/threat-protection/security-policy-settings/reset-account-lockout-counter-after.md b/windows/security/threat-protection/security-policy-settings/reset-account-lockout-counter-after.md
index d39b57a3d3..1891e3b322 100644
--- a/windows/security/threat-protection/security-policy-settings/reset-account-lockout-counter-after.md
+++ b/windows/security/threat-protection/security-policy-settings/reset-account-lockout-counter-after.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Reset account lockout counter after
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Reset account lockout counter after** security policy setting.
@@ -76,4 +77,4 @@ If you don't configure this policy setting or if the value is configured to an i
 
 ## Related topics
 
-- [Account Lockout Policy](account-lockout-policy.md)
\ No newline at end of file
+- [Account Lockout Policy](account-lockout-policy.md)
diff --git a/windows/security/threat-protection/security-policy-settings/secpol-advanced-security-audit-policy-settings.md b/windows/security/threat-protection/security-policy-settings/secpol-advanced-security-audit-policy-settings.md
index 5718da80bf..15e8e865fb 100644
--- a/windows/security/threat-protection/security-policy-settings/secpol-advanced-security-audit-policy-settings.md
+++ b/windows/security/threat-protection/security-policy-settings/secpol-advanced-security-audit-policy-settings.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Advanced security audit policy settings for Windows 10
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Provides information about the advanced security audit policy settings that are available in Windows and the audit events that they generate.
diff --git a/windows/security/threat-protection/security-policy-settings/security-options.md b/windows/security/threat-protection/security-policy-settings/security-options.md
index 6a88de5b89..b7b56bf6a8 100644
--- a/windows/security/threat-protection/security-policy-settings/security-options.md
+++ b/windows/security/threat-protection/security-policy-settings/security-options.md
@@ -19,6 +19,7 @@ ms.topic: conceptual
 # Security Options
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Provides an introduction to the **Security Options** settings for local security policies and links to more information.
diff --git a/windows/security/threat-protection/security-policy-settings/store-passwords-using-reversible-encryption.md b/windows/security/threat-protection/security-policy-settings/store-passwords-using-reversible-encryption.md
index c723c48964..93c6889650 100644
--- a/windows/security/threat-protection/security-policy-settings/store-passwords-using-reversible-encryption.md
+++ b/windows/security/threat-protection/security-policy-settings/store-passwords-using-reversible-encryption.md
@@ -20,6 +20,7 @@ ms.technology: itpro-security
 # Store passwords using reversible encryption
 
 **Applies to**
+-   Windows 11
 -   Windows 10
 
 Describes the best practices, location, values, and security considerations for the **Store passwords using reversible encryption** security policy setting.
diff --git a/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection.md b/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection.md
index 83eddad140..1fac194013 100644
--- a/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection.md
+++ b/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection.md
@@ -398,6 +398,17 @@ The following GPO snippet performs the following tasks:
 
 ![configure event channels.](images/capi-gpo.png)
 
+The following table also contains the six actions to configure in the GPO:
+
+| Program/Script                     | Arguments                                                                                                |
+|------------------------------------|----------------------------------------------------------------------------------------------------------|
+| %SystemRoot%\System32\wevtutil.exe | sl Microsoft-Windows-CAPI2/Operational /e:true                                                           |
+| %SystemRoot%\System32\wevtutil.exe | sl Microsoft-Windows-CAPI2/Operational /ms:102432768                                                     |
+| %SystemRoot%\System32\wevtutil.exe | sl "Microsoft-Windows-AppLocker/EXE and DLL" /ms:102432768                                               |
+| %SystemRoot%\System32\wevtutil.exe | sl Microsoft-Windows-CAPI2/Operational /ca:"O:BAG:SYD:(A;;0x7;;;BA)(A;;0x2;;;AU)(A;;0x1;;;S-1-5-32-573)" |
+| %SystemRoot%\System32\wevtutil.exe | sl "Microsoft-Windows-DriverFrameworks-UserMode/Operational" /e:true                                     |
+| %SystemRoot%\System32\wevtutil.exe | sl "Microsoft-Windows-DriverFrameworks-UserMode/Operational" /ms:52432896                                |
+
 ## <a href="" id="bkmk-appendixd"></a>Appendix D - Minimum GPO for WEF Client configuration
 
 Here are the minimum steps for WEF to operate:
@@ -656,4 +667,4 @@ You can get more info with the following links:
 -   [Event Queries and Event XML](/previous-versions/bb399427(v=vs.90))
 -   [Event Query Schema](/windows/win32/wes/queryschema-schema)
 -   [Windows Event Collector](/windows/win32/wec/windows-event-collector)
--   [4625(F): An account failed to log on](./auditing/event-4625.md)
\ No newline at end of file
+-   [4625(F): An account failed to log on](./auditing/event-4625.md)
diff --git a/windows/security/threat-protection/windows-defender-application-control/allow-com-object-registration-in-windows-defender-application-control-policy.md b/windows/security/threat-protection/windows-defender-application-control/allow-com-object-registration-in-windows-defender-application-control-policy.md
index 21694d67d5..b3e65b47bf 100644
--- a/windows/security/threat-protection/windows-defender-application-control/allow-com-object-registration-in-windows-defender-application-control-policy.md
+++ b/windows/security/threat-protection/windows-defender-application-control/allow-com-object-registration-in-windows-defender-application-control-policy.md
@@ -70,6 +70,10 @@ One attribute:
 
 - The setting needs to be placed in the order of ASCII values (first by Provider, then Key, then ValueName)
 
+### Multiple policy considerations
+
+Similar to executable files, COM objects must pass each policy on the system to be allowed by WDAC. For example, if the COM object under evaluation passes most but not all of your WDAC policies, the COM object will not be allowed. If you are using a combination of base and supplemental policies, the COM object just needs to be allowlisted in either the base policy or one of the supplemental policies. 
+
 ### Examples
 
 Example 1: Allows registration of all COM object GUIDs in any provider
diff --git a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide.md b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide.md
index cfbb871e88..938e4370ae 100644
--- a/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide.md
+++ b/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide.md
@@ -31,7 +31,7 @@ Before you deploy your WDAC policies, you must first convert the XML to its bina
 
    ```powershell
     ## Update the path to your WDAC policy XML
-    $WDACPolicyXMLFile = $env:USERPROFILE"\Desktop\MyWDACPolicy.xml"
+    $WDACPolicyXMLFile = $env:USERPROFILE + "\Desktop\MyWDACPolicy.xml"
     [xml]$WDACPolicy = Get-Content -Path $WDACPolicyXMLFile
     if (($WDACPolicy.SiPolicy.PolicyID) -ne $null) ## Multiple policy format (For Windows builds 1903+ only, including Server 2022)
     {
diff --git a/windows/security/threat-protection/windows-defender-security-center/wdsc-customize-contact-information.md b/windows/security/threat-protection/windows-defender-security-center/wdsc-customize-contact-information.md
index e7d38fb7de..1aed92dc61 100644
--- a/windows/security/threat-protection/windows-defender-security-center/wdsc-customize-contact-information.md
+++ b/windows/security/threat-protection/windows-defender-security-center/wdsc-customize-contact-information.md
@@ -35,8 +35,6 @@ You must have Windows 10, version 1709 or later. The ADMX/ADML template files fo
 
 There are two stages to using the contact card and customized notifications. First, you have to enable the contact card or custom notifications (or both), and then you must specify at least a name for your organization and one piece of contact information.
 
-This can only be done in Group Policy.
-
 1. On your Group Policy management machine, open the [Group Policy Management Console](/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)), right-click the Group Policy Object you want to configure and click **Edit**.
 
 2. In the **Group Policy Management Editor** go to **Computer configuration** and click **Administrative templates**.
@@ -47,6 +45,9 @@ This can only be done in Group Policy.
 
     1. To enable the contact card, open the **Configure customized contact information** setting and set it to **Enabled**. Click **OK**.
 
+        > [!NOTE]
+        > This can only be done in Group Policy.
+
     2. To enable the customized notifications, open the **Configure customized notifications** setting and set it to **Enabled**. Click **OK**.
 
 5. After you've enabled the contact card or the customized notifications (or both), you must configure the **Specify contact company name** to **Enabled**. Enter your company or organization's name in the field in the **Options** section. Click **OK**.
@@ -58,5 +59,7 @@ This can only be done in Group Policy.
 
 7. Select **OK** after you configure each setting to save your changes.
 
->[!IMPORTANT]
->You must specify the contact company name and at least one contact method - email, phone number, or website URL. If you do not specify the contact name and a contact method the customization will not apply, the contact card will not show, and notifications will not be customized.
+To enable the customized notifications and add the contact information in Intune, see [Manage device security with endpoint security policies in Microsoft Intune](/mem/intune/protect/endpoint-security-policy) and [Settings for the Windows Security experience profile in Microsoft Intune](/mem/intune/protect/antivirus-security-experience-windows-settings).
+
+> [!IMPORTANT]
+> You must specify the contact company name and at least one contact method - email, phone number, or website URL. If you do not specify the contact name and a contact method the customization will not apply, the contact card will not show, and notifications will not be customized.
diff --git a/windows/security/threat-protection/windows-defender-system-guard/how-hardware-based-root-of-trust-helps-protect-windows.md b/windows/security/threat-protection/windows-defender-system-guard/how-hardware-based-root-of-trust-helps-protect-windows.md
index 1404209dea..10b4f41000 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/how-hardware-based-root-of-trust-helps-protect-windows.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/how-hardware-based-root-of-trust-helps-protect-windows.md
@@ -1,15 +1,11 @@
 ---
 title: How a Windows Defender System Guard helps protect Windows 10
 description: Windows Defender System Guard reorganizes the existing Windows 10 system integrity features under one roof. Learn how it works.
-ms.assetid: 8d6e0474-c475-411b-b095-1c61adb2bdbb
 ms.reviewer: 
 manager: aaroncz
 ms.author: vinpa
 search.appverid: met150
 ms.prod: windows-client
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
 ms.localizationpriority: medium
 author: vinaypamnani-msft
 ms.date: 03/01/2019
@@ -87,7 +83,15 @@ After the system boots, Windows Defender System Guard signs and seals these meas
 
 ## System requirements for System Guard
 
-|For Intel&reg; vPro&trade; processors starting with Intel&reg; Coffeelake, Whiskeylake, or later silicon|Description|
+This feature is available for the following processors:
+
+- Intel&reg; vPro&trade; processors starting with Intel&reg; Coffeelake, Whiskeylake, or later silicon
+- AMD&reg; processors starting with Zen2 or later silicon
+- Qualcomm&reg; processors with SD850 or later chipsets
+
+### Requirements for Intel&reg; vPro&trade; processors starting with Intel&reg; Coffeelake, Whiskeylake, or later silicon
+
+|Name|Description|
 |--------|-----------|
 |64-bit CPU|A 64-bit computer with minimum four cores (logical processors) is required for hypervisor and virtualization-based security (VBS). For more information about Hyper-V, see [Hyper-V on Windows Server 2016](/windows-server/virtualization/hyper-v/hyper-v-on-windows-server) or [Introduction to Hyper-V on Windows 10](/virtualization/hyper-v-on-windows/about/). For more information about hypervisor, see [Hypervisor Specifications](/virtualization/hyper-v-on-windows/reference/tlfs).|
 |Trusted Platform Module (TPM) 2.0|Platforms must support a discrete TPM 2.0. Integrated/firmware TPMs aren't supported, except Intel chips that support Platform Trust Technology (PTT), which is a type of integrated hardware TPM that meets the TPM 2.0 spec.|
@@ -101,7 +105,9 @@ After the system boots, Windows Defender System Guard signs and seals these meas
 |Platform firmware|Platform firmware must carry all code required to execute an Intel&reg; Trusted Execution Technology secure launch: <ul><li>Intel&reg; SINIT ACM must be carried in the OEM BIOS</li><li>Platforms must ship with a production ACM signed by the correct production Intel&reg; ACM signer for the platform</li></ul>|
 |Platform firmware update|System firmware is recommended to be updated via UpdateCapsule in Windows Update. |
 
-|For AMD&reg; processors starting with Zen2 or later silicon|Description|
+### Requirements for AMD&reg; processors starting with Zen2 or later silicon
+
+|Name|Description|
 |--------|-----------|
 |64-bit CPU|A 64-bit computer with minimum four cores (logical processors) is required for hypervisor and virtualization-based security (VBS). For more information about Hyper-V, see [Hyper-V on Windows Server 2016](/windows-server/virtualization/hyper-v/hyper-v-on-windows-server) or [Introduction to Hyper-V on Windows 10](/virtualization/hyper-v-on-windows/about/). For more information about hypervisor, see [Hypervisor Specifications](/virtualization/hyper-v-on-windows/reference/tlfs).|
 |Trusted Platform Module (TPM) 2.0|Platforms must support a discrete TPM 2.0 OR Microsoft Pluton TPM.|
@@ -113,7 +119,9 @@ After the system boots, Windows Defender System Guard signs and seals these meas
 |Platform firmware|Platform firmware must carry all code required to execute Secure Launch: <ul><li>AMD&reg; Secure Launch platforms must ship with AMD&reg; DRTM driver devnode exposed and the AMD&reg; DRTM driver installed</li></ul><br/>Platform must have AMD&reg; Secure Processor Firmware Anti-Rollback protection enabled <br/> Platform must have AMD&reg; Memory Guard enabled.|
 |Platform firmware update|System firmware is recommended to be updated via UpdateCapsule in Windows Update. |
 
-|For Qualcomm&reg; processors with SD850 or later chipsets|Description|
+### Requirements for Qualcomm&reg; processors with SD850 or later chipsets
+
+|Name|Description|
 |--------|-----------|
 |Monitor Mode Communication|All Monitor Mode communication buffers must be implemented in either EfiRuntimeServicesData (recommended), data sections of EfiRuntimeServicesCode as described by the Memory Attributes Table, EfiACPIMemoryNVS, or EfiReservedMemoryType memory types|
 |Monitor Mode Page Tables|All Monitor Mode page tables must: <ul><li>NOT contain any mappings to EfiConventionalMemory (for example no OS/VMM owned memory) </li><li>They must NOT have execute and write permissions for the same page </li><li>Platforms must only allow Monitor Mode pages marked as executable </li><li>The memory map must report Monitor Mode as EfiReservedMemoryType</li><li>Platforms must provide mechanism to protect the Monitor Mode page tables from modification</li></ul> |
diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
index 929c7d815b..f605793303 100644
--- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
+++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md
@@ -25,6 +25,9 @@ ms.topic: conceptual
 
 This topic explains how to configure [System Guard Secure Launch and System Management Mode (SMM) protection](system-guard-how-hardware-based-root-of-trust-helps-protect-windows.md) to improve the startup security of Windows 10 and Windows 11 devices. The information below is presented from a client perspective.
 
+> [!NOTE]
+> System Guard Secure Launch feature requires a supported processor. For more information, see [System requirements for System Guard](how-hardware-based-root-of-trust-helps-protect-windows.md#system-requirements-for-system-guard).
+
 ## How to enable System Guard Secure Launch
 
 You can enable System Guard Secure Launch by using any of these options:
diff --git a/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md b/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
index cbbc3389e5..3987f694a9 100644
--- a/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
+++ b/windows/security/threat-protection/windows-sandbox/windows-sandbox-overview.md
@@ -49,7 +49,7 @@ Windows Sandbox has the following properties:
    - If you're using a virtual machine, run the following PowerShell command to enable nested virtualization:
 
      ```powershell
-     Set-VMProcessor -VMName \<VMName> -ExposeVirtualizationExtensions $true
+     Set-VMProcessor -VMName <VMName> -ExposeVirtualizationExtensions $true
      ```
 
 3. Use the search bar on the task bar and type **Turn Windows Features on or off** to access the Windows Optional Features tool. Select **Windows Sandbox** and then **OK**. Restart the computer if you're prompted.
@@ -57,7 +57,11 @@ Windows Sandbox has the following properties:
    If the **Windows Sandbox** option is unavailable, your computer doesn't meet the requirements to run Windows Sandbox. If you think this analysis is incorrect, review the prerequisite list and steps 1 and 2.
 
    > [!NOTE]
-   > To enable Sandbox using PowerShell, open PowerShell as Administrator and run **Enable-WindowsOptionalFeature -FeatureName "Containers-DisposableClientVM" -All -Online**.
+   > To enable Sandbox using PowerShell, open PowerShell as Administrator and run the following command:
+   > 
+   > ```powershell
+   > Enable-WindowsOptionalFeature -FeatureName "Containers-DisposableClientVM" -All -Online
+   > ```
 
 4. Locate and select **Windows Sandbox** on the Start menu to run it for the first time.
 
diff --git a/windows/security/zero-trust-windows-device-health.md b/windows/security/zero-trust-windows-device-health.md
index f23f01e7d7..d6159d39a6 100644
--- a/windows/security/zero-trust-windows-device-health.md
+++ b/windows/security/zero-trust-windows-device-health.md
@@ -13,7 +13,7 @@ ms.date: 12/31/2017
 ---
 
 # Zero Trust and Windows device health
-Organizations need a security model that more effectively adapts to the complexity of the modern work environment. IT admins need to embrace the hybrid workplace, while protecting people, devices, apps, and data wherever they’re located. Implementing a Zero Trust model for security helps addresses today's complex environments.
+Organizations need a security model that more effectively adapts to the complexity of the modern work environment. IT admins need to embrace the hybrid workplace, while protecting people, devices, apps, and data wherever they’re located. Implementing a Zero Trust model for security helps address today's complex environments.
 
 The [Zero Trust](https://www.microsoft.com/security/business/zero-trust) principles are:
 
diff --git a/windows/whats-new/deprecated-features.md b/windows/whats-new/deprecated-features.md
index 3a0bb5caac..3c58ebfc65 100644
--- a/windows/whats-new/deprecated-features.md
+++ b/windows/whats-new/deprecated-features.md
@@ -23,10 +23,12 @@ Each version of Windows client adds new features and functionality. Occasionally
 
 For more information about features in Windows 11, see [Feature deprecations and removals](https://www.microsoft.com/windows/windows-11-specifications#table3).
 
-To understand the distinction between _deprecation_ and _removal_, see [Windows client features lifecycle](feature-lifecycle.md).
+To understand the distinction between *deprecation* and *removal*, see [Windows client features lifecycle](feature-lifecycle.md).
 
 The features in this article are no longer being actively developed, and might be removed in a future update. Some features have been replaced with other features or functionality and some are now available from other sources.
 
+## Deprecated features
+
 **The following list is subject to change and might not include every affected feature or functionality.**
 
 > [!NOTE]
@@ -34,6 +36,7 @@ The features in this article are no longer being actively developed, and might b
 
 |Feature    |  Details and mitigation  | Deprecation announced |
 | ----------- | --------------------- | ---- |
+| Universal Windows Platform (UWP) Applications for 32-bit Arm <!--7116112-->| This change is applicable only to devices with an Arm processor, for example Snapdragon processors from Qualcomm. If you have a PC built with a processor from Intel or AMD, this content is not applicable. If you are not sure which type of processor you have, check **Settings** > **System** > **About**.</br> </br> Support for 32-bit Arm versions of applications will be removed in a future release of Windows 11. After this change, for the small number of applications affected, app features might be different and you might notice a difference in performance. For more technical details about this change, see [Update app architecture from Arm32 to Arm64](/windows/arm/arm32-to-arm64). | January 2023 |
 | Update Compliance <!--7260188-->| [Update Compliance](/windows/deployment/update/update-compliance-monitor), a cloud-based service for the Windows client, is no longer being developed. This service has been replaced with [Windows Update for Business reports](/windows/deployment/update/wufb-reports-overview), which provides reporting on client compliance with Microsoft updates from the Azure portal. | November 2022|
 | Windows Information Protection <!-- 6010051 --> | [Windows Information Protection](/windows/security/information-protection/windows-information-protection/protect-enterprise-data-using-wip) will no longer be developed in future versions of Windows. For more information, see [Announcing sunset of Windows Information Protection (WIP)](https://go.microsoft.com/fwlink/?linkid=2202124).<br> <br>For your data protection needs, Microsoft recommends that you use [Microsoft Purview Information Protection](/microsoft-365/compliance/information-protection) and [Microsoft Purview Data Loss Prevention](/microsoft-365/compliance/dlp-learn-about-dlp). | July 2022 |
 | BitLocker To Go Reader | **Note: BitLocker to Go as a feature is still supported.**<br>Reading of BitLocker-protected removable drives ([BitLocker To Go](/windows/security/information-protection/bitlocker/bitlocker-to-go-faq)) from Windows XP or Windows Vista in later operating systems is deprecated and might be removed in a future release of Windows client.<br>The following items might not be available in a future release of Windows client:<br>- ADMX policy: **Allow access to BitLocker-protected removable data drives from earlier versions of Windows**<br>- Command line parameter: [`manage-bde -DiscoveryVolumeType`](/windows-server/administration/windows-commands/manage-bde-on) (-dv)<br>- Catalog file: **c:\windows\BitLockerDiscoveryVolumeContents**<br>- BitLocker 2 Go Reader app: **bitlockertogo.exe** and associated files  | 21H1 |
diff --git a/windows/whats-new/images/ICD.png b/windows/whats-new/images/ICD.png
deleted file mode 100644
index 9cfcb845df..0000000000
Binary files a/windows/whats-new/images/ICD.png and /dev/null differ
diff --git a/windows/whats-new/images/block-suspicious-behaviors.png b/windows/whats-new/images/block-suspicious-behaviors.png
deleted file mode 100644
index 31a2cf5727..0000000000
Binary files a/windows/whats-new/images/block-suspicious-behaviors.png and /dev/null differ
diff --git a/windows/whats-new/images/compare-changes.png b/windows/whats-new/images/compare-changes.png
deleted file mode 100644
index 0d86db70f5..0000000000
Binary files a/windows/whats-new/images/compare-changes.png and /dev/null differ
diff --git a/windows/whats-new/images/contribute-link.png b/windows/whats-new/images/contribute-link.png
deleted file mode 100644
index 4cf685e54e..0000000000
Binary files a/windows/whats-new/images/contribute-link.png and /dev/null differ
diff --git a/windows/whats-new/images/funfacts.png b/windows/whats-new/images/funfacts.png
deleted file mode 100644
index 71355ec370..0000000000
Binary files a/windows/whats-new/images/funfacts.png and /dev/null differ
diff --git a/windows/whats-new/images/ldstore.PNG b/windows/whats-new/images/ldstore.PNG
deleted file mode 100644
index 63f0eedee7..0000000000
Binary files a/windows/whats-new/images/ldstore.PNG and /dev/null differ
diff --git a/windows/whats-new/images/lockscreen.png b/windows/whats-new/images/lockscreen.png
deleted file mode 100644
index 68c64e15ec..0000000000
Binary files a/windows/whats-new/images/lockscreen.png and /dev/null differ
diff --git a/windows/whats-new/images/lockscreenpolicy.png b/windows/whats-new/images/lockscreenpolicy.png
deleted file mode 100644
index 30b6a7ae9d..0000000000
Binary files a/windows/whats-new/images/lockscreenpolicy.png and /dev/null differ
diff --git a/windows/whats-new/images/pencil-icon.png b/windows/whats-new/images/pencil-icon.png
deleted file mode 100644
index 82fe7852dd..0000000000
Binary files a/windows/whats-new/images/pencil-icon.png and /dev/null differ
diff --git a/windows/whats-new/images/preview-changes.png b/windows/whats-new/images/preview-changes.png
deleted file mode 100644
index cb4ecab594..0000000000
Binary files a/windows/whats-new/images/preview-changes.png and /dev/null differ
diff --git a/windows/whats-new/images/propose-file-change.png b/windows/whats-new/images/propose-file-change.png
deleted file mode 100644
index aedbc07b16..0000000000
Binary files a/windows/whats-new/images/propose-file-change.png and /dev/null differ
diff --git a/windows/whats-new/images/spotlight.png b/windows/whats-new/images/spotlight.png
deleted file mode 100644
index 515269740b..0000000000
Binary files a/windows/whats-new/images/spotlight.png and /dev/null differ
diff --git a/windows/whats-new/images/video-1709.jpg b/windows/whats-new/images/video-1709.jpg
deleted file mode 100644
index b54fe67cf6..0000000000
Binary files a/windows/whats-new/images/video-1709.jpg and /dev/null differ
diff --git a/windows/whats-new/images/video-1709s.jpg b/windows/whats-new/images/video-1709s.jpg
deleted file mode 100644
index 7abc313dd8..0000000000
Binary files a/windows/whats-new/images/video-1709s.jpg and /dev/null differ
diff --git a/windows/whats-new/images/windows-11-whats-new/windows-11-taskbar.png b/windows/whats-new/images/windows-11-whats-new/windows-11-taskbar.png
deleted file mode 100644
index 1f997e62f9..0000000000
Binary files a/windows/whats-new/images/windows-11-whats-new/windows-11-taskbar.png and /dev/null differ
diff --git a/windows/whats-new/images/windows-defender-atp.png b/windows/whats-new/images/windows-defender-atp.png
deleted file mode 100644
index 938ac2c72d..0000000000
Binary files a/windows/whats-new/images/windows-defender-atp.png and /dev/null differ
diff --git a/windows/whats-new/removed-features.md b/windows/whats-new/removed-features.md
index ac21df98d7..bdaca31c06 100644
--- a/windows/whats-new/removed-features.md
+++ b/windows/whats-new/removed-features.md
@@ -9,7 +9,7 @@ manager: aaroncz
 ms.topic: article
 ms.custom: seo-marvel-apr2020
 ms.technology: itpro-fundamentals
-ms.date: 10/28/2022
+ms.date: 01/05/2023
 ---
 
 # Features and functionality removed in Windows client
@@ -30,12 +30,15 @@ For more information about features in Windows 11, see [Feature deprecations and
 
 To understand the distinction between _deprecation_ and _removal_, see [Windows client features lifecycle](feature-lifecycle.md).
 
+## Removed features and functionality
+
 The following features and functionalities have been removed from the installed product image for Windows client. Applications or code that depend on these features won't function in the release when it was removed, or in later releases.
 
 **The following list is subject to change and might not include every affected feature or functionality.**
 
 |Feature    |  Details and mitigation  | Support removed |
 | ----------- | --------------------- | ------ |
+| Store uploader tool <!--7297297-->| Support has been removed for the store uploader tool. This tool is included in the Windows SDK only. The endpoint for the tool has been removed from service and the files will be removed from the SDK in the next release. | November, 2022 | 
 | Internet Explorer 11 | The Internet Explorer 11 desktop application is [retired and out of support](https://aka.ms/IEJune15Blog) as of June 15, 2022 for certain versions of Windows 10. You can still access older, legacy sites that require Internet Explorer with Internet Explorer mode in Microsoft Edge. [Learn how](https://aka.ms/IEmodewebsite). The Internet Explorer 11 desktop application will progressively redirect to the faster, more secure Microsoft Edge browser, and will ultimately be disabled via Windows Update. [Disable IE today](/deployedge/edge-ie-disable-ie11). | June 15, 2022 |
 | XDDM-based remote display driver  | Support for Windows 2000 Display Driver Model (XDDM) based remote display drivers is removed in this release. Independent Software Vendors that use an XDDM-based remote display driver should plan a migration to the WDDM driver model. For more information on implementing remote display indirect display driver, see [Updates for IddCx versions 1.4 and later](/windows-hardware/drivers/display/iddcx1.4-updates). | 21H1 |
 |Microsoft Edge|The legacy version of Microsoft Edge is no longer supported after March 9, 2021. For more information, see [End of support reminder for Microsoft Edge Legacy](/lifecycle/announcements/edge-legacy-eos-details). | 21H1 |
diff --git a/windows/whats-new/whats-new-windows-10-version-1809.md b/windows/whats-new/whats-new-windows-10-version-1809.md
index 17928723f6..776e3fd5fe 100644
--- a/windows/whats-new/whats-new-windows-10-version-1809.md
+++ b/windows/whats-new/whats-new-windows-10-version-1809.md
@@ -286,9 +286,12 @@ One of the things we’ve heard from you is that it’s hard to know when you’
 
 ## Remote Desktop with Biometrics
 
-Azure Active Directory and Active Directory users using Windows Hello for Business can use biometrics to authenticate to a remote desktop session.
+Windows Hello for Business supports using a certificate deployed to a Windows Hello for Business container as a supplied credential to establish a remote desktop connection to a server or another device. This feature takes advantage of the redirected smart card capabilities of the remote desktop protocol.
+Users using earlier versions of Windows 10 could authenticate to a remote desktop using Windows Hello for Business but were limited to using their PIN as their authentication gesture. Windows 10, version 1809 introduces the ability for users to authenticate to a remote desktop session using their Windows Hello for Business biometric gesture.
 
-To get started, sign into your device using Windows Hello for Business. Bring up **Remote Desktop Connection** (mstsc.exe), type the name of the computer you want to connect to, and click **Connect**. Windows remembers that you signed using Windows Hello for Business, and automatically selects Windows Hello for Business to authenticate you to your RDP session. You can also click **More choices** to choose alternate credentials. Windows uses facial recognition to authenticate the RDP session to the Windows Server 2016 Hyper-V server. You can continue to use Windows Hello for Business in the remote session, but you must use your PIN.
+Azure Active Directory and Active Directory users using Windows Hello for Business in a certificate trust model, can use biometrics to authenticate to a remote desktop session.
+
+To get started, sign into your device using Windows Hello for Business. Bring up **Remote Desktop Connection** (mstsc.exe), type the name of the device you want to connect to, and select **Connect**. Windows remembers that you signed using Windows Hello for Business, and automatically selects Windows Hello for Business to authenticate you to your RDP session. You can also select **More choices** to choose alternate credentials. Windows uses biometrics to authenticate the RDP session to the Windows device. You can continue to use Windows Hello for Business in the remote session, but in the remote session you must use the PIN.
 
 See the following example:
 
diff --git a/windows/whats-new/whats-new-windows-11-version-22H2.md b/windows/whats-new/whats-new-windows-11-version-22H2.md
index df8b5092e6..273e6b1c68 100644
--- a/windows/whats-new/whats-new-windows-11-version-22H2.md
+++ b/windows/whats-new/whats-new-windows-11-version-22H2.md
@@ -120,3 +120,8 @@ For more information, see [Supported configuration service provider (CSP) polici
 Windows 11, version 22H2, includes additional improvements for people with disabilities: system-wide live captions, Focus sessions, voice access, and more natural voices for Narrator. For more information, see [New accessibility features coming to Windows 11](https://blogs.windows.com/windowsexperience/2022/05/10/new-accessibility-features-coming-to-windows-11/) and [How inclusion drives innovation in Windows 11](https://blogs.windows.com/windowsexperience/?p=177554).
 
 For more information, see [Accessibility information for IT professionals](/windows/configuration/windows-10-accessibility-for-itpros).
+
+## High Efficiency Video Coding (HEVC) support
+<!--7475101-->
+Starting in Windows 11, version 22H2, support for High Efficiency Video Coding (HEVC) is now available. You can play HEVC videos in any video app on your Windows 11 device. HEVC is designed to take advantage of hardware capabilities on some newer devices to support 4K and Ultra HD content.
+For devices that don't have hardware support for HEVC videos, software support is provided, but the playback experience might vary based on the video resolution and your devices performance.
diff --git a/windows/whats-new/windows-11-requirements.md b/windows/whats-new/windows-11-requirements.md
index a73d3885e3..4a63cc1f7c 100644
--- a/windows/whats-new/windows-11-requirements.md
+++ b/windows/whats-new/windows-11-requirements.md
@@ -106,5 +106,5 @@ The VM host CPU must also meet Windows 11 [processor requirements](/windows-hard
 ## See also
 
 [Windows minimum hardware requirements](/windows-hardware/design/minimum/minimum-hardware-requirements-overview)<br>
-[What's new in Windows 11 overview](windows-11-whats-new.md)
+[What's new in Windows 11 overview](/windows/whats-new/windows-11-overview)