From 30873c4fd2a5532cd3ae05430f8eacbc40caf556 Mon Sep 17 00:00:00 2001
From: Aaron Czechowski <aczechowski@users.noreply.github.com>
Date: Tue, 6 Feb 2024 16:37:06 -0800
Subject: [PATCH 01/13] remove topic type

---
 education/docfx.json                      | 1 -
 windows/application-management/docfx.json | 9 ++++-----
 windows/hub/docfx.json                    | 9 ++++-----
 windows/privacy/docfx.json                | 9 ++++-----
 windows/whats-new/docfx.json              | 9 ++++-----
 5 files changed, 16 insertions(+), 21 deletions(-)

diff --git a/education/docfx.json b/education/docfx.json
index f066cfa6c2..4e97e1ed26 100644
--- a/education/docfx.json
+++ b/education/docfx.json
@@ -29,7 +29,6 @@
     "globalMetadata": {
       "recommendations": true,
       "adobe-target": true,
-      "ms.topic": "article",
       "ms.collection": [
         "education",
         "tier2"
diff --git a/windows/application-management/docfx.json b/windows/application-management/docfx.json
index f9544bebe7..72c7168b1a 100644
--- a/windows/application-management/docfx.json
+++ b/windows/application-management/docfx.json
@@ -42,7 +42,6 @@
       "uhfHeaderId": "MSDocsHeader-Windows",
       "ms.service": "windows-client",
       "ms.subservice": "itpro-apps",
-      "ms.topic": "article",
       "feedback_system": "Standard",
             "feedback_product_url": "https://support.microsoft.com/windows/send-feedback-to-microsoft-with-the-feedback-hub-app-f59187f8-8739-22d6-ba93-f66612949332",
       "_op_documentIdPathDepotMapping": {
@@ -53,10 +52,10 @@
       },
       "titleSuffix": "Windows Application Management",
       "contributors_to_exclude": [
-        "rjagiewich", 
-        "traya1", 
-        "rmca14", 
-        "claydetels19", 
+        "rjagiewich",
+        "traya1",
+        "rmca14",
+        "claydetels19",
         "jborsecnik",
         "tiburd",
         "garycentric",
diff --git a/windows/hub/docfx.json b/windows/hub/docfx.json
index 5f8b9dc5f7..d107b517cb 100644
--- a/windows/hub/docfx.json
+++ b/windows/hub/docfx.json
@@ -44,7 +44,6 @@
       "uhfHeaderId": "MSDocsHeader-Windows",
       "ms.service": "windows-client",
       "ms.subservice": "itpro-fundamentals",
-      "ms.topic": "article",
       "feedback_system": "Standard",
             "feedback_product_url": "https://support.microsoft.com/windows/send-feedback-to-microsoft-with-the-feedback-hub-app-f59187f8-8739-22d6-ba93-f66612949332",
       "_op_documentIdPathDepotMapping": {
@@ -55,10 +54,10 @@
       },
       "titleSuffix": "Windows for IT Pros",
       "contributors_to_exclude": [
-        "rjagiewich", 
-        "traya1", 
-        "rmca14", 
-        "claydetels19", 
+        "rjagiewich",
+        "traya1",
+        "rmca14",
+        "claydetels19",
         "jborsecnik",
         "tiburd",
         "garycentric",
diff --git a/windows/privacy/docfx.json b/windows/privacy/docfx.json
index 92b2620ad7..7f47903935 100644
--- a/windows/privacy/docfx.json
+++ b/windows/privacy/docfx.json
@@ -39,7 +39,6 @@
       "uhfHeaderId": "MSDocsHeader-Windows",
       "ms.service": "windows-client",
       "ms.subservice": "itpro-privacy",
-      "ms.topic": "article",
       "feedback_system": "Standard",
             "feedback_product_url": "https://support.microsoft.com/windows/send-feedback-to-microsoft-with-the-feedback-hub-app-f59187f8-8739-22d6-ba93-f66612949332",
       "_op_documentIdPathDepotMapping": {
@@ -50,10 +49,10 @@
       },
       "titleSuffix": "Windows Privacy",
       "contributors_to_exclude": [
-        "rjagiewich", 
-        "traya1", 
-        "rmca14", 
-        "claydetels19", 
+        "rjagiewich",
+        "traya1",
+        "rmca14",
+        "claydetels19",
         "jborsecnik",
         "tiburd",
         "garycentric",
diff --git a/windows/whats-new/docfx.json b/windows/whats-new/docfx.json
index 21719523a0..e54d096bf9 100644
--- a/windows/whats-new/docfx.json
+++ b/windows/whats-new/docfx.json
@@ -41,7 +41,6 @@
       "zone_pivot_group_filename": "resources/zone-pivot-groups.json",
       "breadcrumb_path": "/windows/resources/breadcrumb/toc.json",
       "uhfHeaderId": "MSDocsHeader-Windows",
-      "ms.topic": "article",
       "feedback_system": "Standard",
             "feedback_product_url": "https://support.microsoft.com/windows/send-feedback-to-microsoft-with-the-feedback-hub-app-f59187f8-8739-22d6-ba93-f66612949332",
       "_op_documentIdPathDepotMapping": {
@@ -52,10 +51,10 @@
       },
       "titleSuffix": "What's new in Windows",
       "contributors_to_exclude": [
-        "rjagiewich", 
-        "traya1", 
-        "rmca14", 
-        "claydetels19", 
+        "rjagiewich",
+        "traya1",
+        "rmca14",
+        "claydetels19",
         "jborsecnik",
         "tiburd",
         "garycentric",

From 8c36a5481d1e9ce48076a1df8bcb5f93acf701db Mon Sep 17 00:00:00 2001
From: Carmen Forsmann <cmforsmann@live.com>
Date: Fri, 9 Feb 2024 13:28:07 -0700
Subject: [PATCH 02/13] Update wufb-reports-do.md

---
 windows/deployment/update/wufb-reports-do.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/deployment/update/wufb-reports-do.md b/windows/deployment/update/wufb-reports-do.md
index a02d0d0993..eca5fbdfa8 100644
--- a/windows/deployment/update/wufb-reports-do.md
+++ b/windows/deployment/update/wufb-reports-do.md
@@ -164,7 +164,7 @@ There are many Microsoft [content types](waas-delivery-optimization.md#types-of-
 ## Frequency Asked Questions
 
 - **What time period does the Delivery Optimization data include?**
-Data is generated/aggregated for the last 28 days for active devices.
+Data is generated/aggregated for the last 28 days for active devices. For Delivery Optimization data to register in the report, the device must have performed some Delivery Optimization action in the 28-day rolling window. This includes device configuration information. 
 
 - **Data is showing as 'Unknown', what does that mean?**
 You may see data in the report listed as 'Unknown'. This status indicates that the Delivery Optimization DownloadMode setting is either invalid or empty.

From 8fe5a4a6f123f6ca6a73f003d14fdbf7b6551152 Mon Sep 17 00:00:00 2001
From: Raymond Chen <oldnewthing@users.noreply.github.com>
Date: Fri, 9 Feb 2024 14:16:06 -0800
Subject: [PATCH 03/13] Clarify scope of "Create global objects"

Applies only to file mapping and symbolic link objects. Also, apples to Windows in general, not just Terminal Services.
---
 .../security-policy-settings/create-global-objects.md           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/security-policy-settings/create-global-objects.md b/windows/security/threat-protection/security-policy-settings/create-global-objects.md
index 9c2e0740b7..e20df384f0 100644
--- a/windows/security/threat-protection/security-policy-settings/create-global-objects.md
+++ b/windows/security/threat-protection/security-policy-settings/create-global-objects.md
@@ -82,7 +82,7 @@ This section describes how an attacker might exploit a feature or its configurat
 
 ### Vulnerability
 
-The **Create global objects** user right is required for a user account to create global objects in Remote Desktop sessions. Users can still create session-specfic objects without being assigned this user right. Assigning this right can be a security risk.
+The **Create global objects** user right is required for a user account to create global file mapping and symbolic link objects. Users can still create session-specfic objects without being assigned this user right. Assigning this right can be a security risk.
 
 By default, members of the **Administrators** group, the System account, and services that are started by the Service Control Manager are assigned the **Create global objects** user right. Users who are added to the **Remote Desktop Users** group also have this user right.
 

From aab6871bce9caac6616dfcf001585465825c779d Mon Sep 17 00:00:00 2001
From: Meghan Stewart <33289333+mestew@users.noreply.github.com>
Date: Fri, 9 Feb 2024 14:51:34 -0800
Subject: [PATCH 04/13] copilot-avail-8737645

---
 windows/client-management/manage-windows-copilot.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/client-management/manage-windows-copilot.md b/windows/client-management/manage-windows-copilot.md
index 4f5621f987..8608166976 100644
--- a/windows/client-management/manage-windows-copilot.md
+++ b/windows/client-management/manage-windows-copilot.md
@@ -3,7 +3,7 @@ title: Manage Copilot in Windows
 description: Learn how to manage Copilot in Windows for commercial environments using MDM and group policy. Learn about the chat providers available to Copilot in Windows.
 ms.topic: conceptual
 ms.subservice: windows-copilot
-ms.date: 02/05/2024
+ms.date: 02/09/2024
 ms.author: mstewart
 author: mestew
 appliesto:
@@ -19,7 +19,7 @@ Copilot in Windows provides centralized generative AI assistance to your users r
 
 > [!Note]
 > - Copilot in Windows is currently available as a preview. We will continue to experiment with new ideas and methods using your feedback.
-> - Copilot in Windows is being released in preview to select global markets as part of our latest update to Windows 11. The initial markets for the Copilot in Windows preview include North America and parts of Asia and South America. It is our intention to add additional markets over time.
+> - Copilot in Windows (in preview) is available in select global markets and will be rolled out to additional markets over time. [Learn more](https://www.microsoft.com/windows/copilot-ai-features#faq). <!--8737645-->
 
 ## Configure Copilot in Windows for commercial environments
 

From 4ee382387af0d112281ae18274cf6c157e6644d9 Mon Sep 17 00:00:00 2001
From: Aaron Czechowski <aczechowski@users.noreply.github.com>
Date: Fri, 9 Feb 2024 16:08:00 -0800
Subject: [PATCH 05/13] revise wmr

---
 windows/whats-new/deprecated-features.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/whats-new/deprecated-features.md b/windows/whats-new/deprecated-features.md
index 6a3a4809db..be59977024 100644
--- a/windows/whats-new/deprecated-features.md
+++ b/windows/whats-new/deprecated-features.md
@@ -1,7 +1,7 @@
 ---
 title: Deprecated features in the Windows client
 description: Review the list of features that Microsoft is no longer actively developing in Windows 10 and Windows 11.
-ms.date: 01/26/2024
+ms.date: 02/09/2024
 ms.service: windows-client
 ms.subservice: itpro-fundamentals
 ms.localizationpriority: medium
@@ -47,7 +47,7 @@ The features in this article are no longer being actively developed, and might b
 
 | Feature | Details and mitigation  | Deprecation announced |
 |---|---|---|
-| Windows Mixed Reality <!--8412877--> | [Windows Mixed Reality](/windows/mixed-reality/enthusiast-guide/before-you-start) is deprecated and will be removed in a future release of Windows. This deprecation includes the [Mixed Reality Portal](/windows/mixed-reality/enthusiast-guide/install-windows-mixed-reality) app, and [Windows Mixed Reality for SteamVR](/windows/mixed-reality/enthusiast-guide/using-steamvr-with-windows-mixed-reality) and Steam VR Beta. </br></br> As of November 1, 2026, for consumer editions of Windows and November 1, 2027 for commercial editions of Windows, Windows Mixed Reality will no longer be available for download via the Mixed Reality Portal app, Windows Mixed Reality for SteamVR, and Steam VR beta, and we'll discontinue support. At that time, Windows Mixed Reality will no longer receive security updates, nonsecurity updates, bug fixes, technical support, or online technical content updates. Existing Windows Mixed Reality devices will continue to work with Steam until users upgrade to a version of Windows that doesn't include Windows Mixed Reality. </br> </br> This deprecation doesn't impact HoloLens. We remain committed to HoloLens and our enterprise customers.  | December 2023 |
+| Windows Mixed Reality <!--8412877--> | [Windows Mixed Reality](/windows/mixed-reality/enthusiast-guide/before-you-start) is deprecated and will be removed in Windows 11, version 24H2. This deprecation includes the [Mixed Reality Portal](/windows/mixed-reality/enthusiast-guide/install-windows-mixed-reality) app, [Windows Mixed Reality for SteamVR](/windows/mixed-reality/enthusiast-guide/using-steamvr-with-windows-mixed-reality), and Steam VR Beta. Existing Windows Mixed Reality devices will continue to work with Steam through November 2026, if users remain on their current released version of Windows 11, version 23H2. After November 2026, Windows Mixed Reality will no longer receive security updates, nonsecurity updates, bug fixes, technical support, or online technical content updates.</br> </br>This deprecation doesn't affect HoloLens. We remain committed to HoloLens and our enterprise customers. | December 2023 |
 | Microsoft Defender Application Guard for Edge <!--8591267-->| [Microsoft Defender Application Guard](/windows/security/application-security/application-isolation/microsoft-defender-application-guard/md-app-guard-overview), including the [Windows Isolated App Launcher APIs](/windows/win32/api/isolatedapplauncher/), is being deprecated for Microsoft Edge for Business and [will no longer be updated](feature-lifecycle.md). Please download the [Microsoft Edge For Business Security Whitepaper](https://edgestatic.azureedge.net/shared/cms/pdfs/Microsoft_Edge_Security_Whitepaper_v2.pdf) to learn more about Edge for Business security capabilities. | December 2023 |
 | Legacy console mode <!-- 8577271 -->| The [legacy console mode](/windows/console/legacymode) is deprecated and no longer being updated. In future Windows releases, it will be available as an optional [Feature on Demand](/windows-hardware/manufacture/desktop/features-on-demand-v2--capabilities). This feature won't be installed by default. | December 2023 |
 | Windows speech recognition <!--8396142-->| [Windows speech recognition](https://support.microsoft.com/windows/83ff75bd-63eb-0b6c-18d4-6fae94050571) is  deprecated and is no longer being developed. This feature is being replaced with [voice access](https://support.microsoft.com/topic/4dcd23ee-f1b9-4fd1-bacc-862ab611f55d). Voice access is available for Windows 11, version 22H2, or later devices. Currently, voice access supports five English locales: English - US, English - UK, English - India, English - New Zealand, English - Canada, and English - Australia. For more information, see [Setup voice access](https://support.microsoft.com/topic/set-up-voice-access-9fc44e29-12bf-4d86-bc4e-e9bb69df9a0e). | December 2023 |

From 77490447946d669484f00a06c55da52ae9d76428 Mon Sep 17 00:00:00 2001
From: Paolo Matarazzo <74918781+paolomatarazzo@users.noreply.github.com>
Date: Mon, 12 Feb 2024 08:50:39 +0100
Subject: [PATCH 06/13] Update licensing and edition requirements icons

---
 windows/security/images/icons/activation.svg           | 3 +++
 windows/security/images/icons/certificate.svg          | 6 +++---
 windows/security/images/icons/license.svg              | 6 +++---
 windows/security/images/icons/subscription.svg         | 3 +++
 windows/security/licensing-and-edition-requirements.md | 4 ++--
 5 files changed, 14 insertions(+), 8 deletions(-)
 create mode 100644 windows/security/images/icons/activation.svg
 create mode 100644 windows/security/images/icons/subscription.svg

diff --git a/windows/security/images/icons/activation.svg b/windows/security/images/icons/activation.svg
new file mode 100644
index 0000000000..0060e89a0b
--- /dev/null
+++ b/windows/security/images/icons/activation.svg
@@ -0,0 +1,3 @@
+<svg width="18" height="18" viewBox="0 0 18 18" fill="none" xmlns="http://www.w3.org/2000/svg">
+<path d="M3.30469 14.5C2.86523 14.5 2.44629 14.4121 2.04785 14.2363C1.64941 14.0605 1.29785 13.8203 0.993164 13.5156C0.688477 13.2109 0.448242 12.8594 0.272461 12.4609C0.0966797 12.0625 0.00585938 11.6406 0 11.1953V4.30469C0 3.86523 0.0878906 3.44629 0.263672 3.04785C0.439453 2.64941 0.679687 2.29785 0.984375 1.99316C1.28906 1.68848 1.64063 1.44824 2.03906 1.27246C2.4375 1.09668 2.85937 1.00586 3.30469 1H14.6953C15.1348 1 15.5537 1.08789 15.9521 1.26367C16.3506 1.43945 16.7021 1.67969 17.0068 1.98438C17.3115 2.28906 17.5518 2.64063 17.7275 3.03906C17.9033 3.4375 17.9941 3.85937 18 4.30469V4.7002C17.6309 4.30176 17.2236 3.9707 16.7783 3.70703C16.7021 3.47266 16.5938 3.25879 16.4531 3.06543C16.3125 2.87207 16.1484 2.70508 15.9609 2.56445C15.7734 2.42383 15.5654 2.31543 15.3369 2.23926C15.1084 2.16309 14.8711 2.125 14.625 2.125H3.33105C3.03809 2.125 2.75977 2.18359 2.49609 2.30078C2.23242 2.41797 1.99805 2.5791 1.79297 2.78418C1.58789 2.98926 1.42676 3.22363 1.30957 3.4873C1.19238 3.75098 1.13086 4.03223 1.125 4.33105V11.1689C1.125 11.4736 1.18652 11.7578 1.30957 12.0215C1.43262 12.2852 1.59668 12.5195 1.80176 12.7246C2.00684 12.9297 2.24414 13.0879 2.51367 13.1992C2.7832 13.3105 3.07031 13.3691 3.375 13.375H10.125V14.5H3.30469ZM3.9375 5.5C3.78516 5.5 3.65332 5.44434 3.54199 5.33301C3.43066 5.22168 3.375 5.08984 3.375 4.9375C3.375 4.78516 3.43066 4.65332 3.54199 4.54199C3.65332 4.43066 3.78516 4.375 3.9375 4.375H9.5625C9.71484 4.375 9.84668 4.43066 9.95801 4.54199C10.0693 4.65332 10.125 4.78516 10.125 4.9375C10.125 5.08984 10.0693 5.22168 9.95801 5.33301C9.84668 5.44434 9.71484 5.5 9.5625 5.5H3.9375ZM10.125 8.24219C10.125 7.71484 10.2305 7.2168 10.4414 6.74805C10.6523 6.2793 10.9395 5.86914 11.3027 5.51758C11.666 5.16602 12.085 4.8877 12.5596 4.68262C13.0342 4.47754 13.5352 4.375 14.0625 4.375C14.6016 4.375 15.1084 4.47754 15.583 4.68262C16.0576 4.8877 16.4766 5.17188 16.8398 5.53516C17.2031 5.89844 17.4844 6.31445 17.6836 6.7832C17.8828 7.25195 17.9883 7.76172 18 8.3125C18 8.85156 17.8975 9.3584 17.6924 9.83301C17.4873 10.3076 17.2031 10.7266 16.8398 11.0898C16.4766 11.4531 16.0605 11.7344 15.5918 11.9336C15.123 12.1328 14.6133 12.2383 14.0625 12.25C13.5059 12.25 12.9873 12.1445 12.5068 11.9336C12.0264 11.7227 11.6104 11.4355 11.2588 11.0723C10.9072 10.709 10.6318 10.2842 10.4326 9.79785C10.2334 9.31152 10.1309 8.79297 10.125 8.24219ZM3.9375 11.125C3.78516 11.125 3.65332 11.0693 3.54199 10.958C3.43066 10.8467 3.375 10.7148 3.375 10.5625C3.375 10.4102 3.43066 10.2783 3.54199 10.167C3.65332 10.0557 3.78516 10 3.9375 10H8.4375C8.58984 10 8.72168 10.0557 8.83301 10.167C8.94434 10.2783 9 10.4102 9 10.5625C9 10.7148 8.94434 10.8467 8.83301 10.958C8.72168 11.0693 8.58984 11.125 8.4375 11.125H3.9375ZM11.8125 16.7061C11.6543 16.7061 11.5225 16.6533 11.417 16.5479C11.3115 16.4424 11.2559 16.3076 11.25 16.1436V12.8564C11.6719 13.1201 12.1201 13.3193 12.5947 13.4541C13.0693 13.5889 13.5586 13.6562 14.0625 13.6562C14.5605 13.6562 15.0469 13.5889 15.5215 13.4541C15.9961 13.3193 16.4473 13.1201 16.875 12.8564V16.1436C16.875 16.3018 16.8223 16.4336 16.7168 16.5391C16.6113 16.6445 16.4766 16.7002 16.3125 16.7061C16.1777 16.7061 16.0605 16.665 15.9609 16.583L14.4141 15.3438C14.3145 15.2617 14.1973 15.2207 14.0625 15.2207C13.9277 15.2207 13.8105 15.2617 13.7109 15.3438L12.1641 16.583C12.0645 16.665 11.9473 16.7061 11.8125 16.7061Z" fill="#0078D4"/>
+</svg>
diff --git a/windows/security/images/icons/certificate.svg b/windows/security/images/icons/certificate.svg
index 3bd8b81da3..0060e89a0b 100644
--- a/windows/security/images/icons/certificate.svg
+++ b/windows/security/images/icons/certificate.svg
@@ -1,3 +1,3 @@
-<svg width="18" height="18" viewBox="0 0 24 24" fill="none" xmlns="http://www.w3.org/2000/svg">
-  <path d="M4.75 3C3.23122 3 2 4.23122 2 5.75V10.9995C2.91223 9.78534 4.3644 9 6 9C8.76142 9 11 11.2386 11 14C11 15.1258 10.6279 16.1647 10 17.0005V18H19.25C20.7688 18 22 16.7688 22 15.25V5.75C22 4.23122 20.7688 3 19.25 3H4.75ZM6.75 7H17.25C17.6642 7 18 7.33579 18 7.75C18 8.16421 17.6642 8.5 17.25 8.5H6.75C6.33579 8.5 6 8.16421 6 7.75C6 7.33579 6.33579 7 6.75 7ZM12 12.75C12 12.3358 12.3358 12 12.75 12H17.25C17.6642 12 18 12.3358 18 12.75C18 13.1642 17.6642 13.5 17.25 13.5H12.75C12.3358 13.5 12 13.1642 12 12.75ZM5.99967 10C3.79017 10 1.99902 11.7911 1.99902 14.0006C1.99902 16.2101 3.79017 18.0013 5.99967 18.0013C8.20916 18.0013 10.0003 16.2101 10.0003 14.0006C10.0003 11.7911 8.20916 10 5.99967 10ZM9.00076 18.001C8.16487 18.6291 7.12573 19.0013 5.99967 19.0013C4.8745 19.0013 3.83612 18.6297 3.00058 18.0025L3.0001 21.2487C3.0001 21.8195 3.6046 22.1681 4.09019 21.9176L4.17966 21.8635L6.00002 20.5912L7.81967 21.8635C8.28757 22.1904 8.91959 21.8946 8.99232 21.353L8.99923 21.2487L9.00076 18.001Z" fill="#0078D4" />
-</svg>
\ No newline at end of file
+<svg width="18" height="18" viewBox="0 0 18 18" fill="none" xmlns="http://www.w3.org/2000/svg">
+<path d="M3.30469 14.5C2.86523 14.5 2.44629 14.4121 2.04785 14.2363C1.64941 14.0605 1.29785 13.8203 0.993164 13.5156C0.688477 13.2109 0.448242 12.8594 0.272461 12.4609C0.0966797 12.0625 0.00585938 11.6406 0 11.1953V4.30469C0 3.86523 0.0878906 3.44629 0.263672 3.04785C0.439453 2.64941 0.679687 2.29785 0.984375 1.99316C1.28906 1.68848 1.64063 1.44824 2.03906 1.27246C2.4375 1.09668 2.85937 1.00586 3.30469 1H14.6953C15.1348 1 15.5537 1.08789 15.9521 1.26367C16.3506 1.43945 16.7021 1.67969 17.0068 1.98438C17.3115 2.28906 17.5518 2.64063 17.7275 3.03906C17.9033 3.4375 17.9941 3.85937 18 4.30469V4.7002C17.6309 4.30176 17.2236 3.9707 16.7783 3.70703C16.7021 3.47266 16.5938 3.25879 16.4531 3.06543C16.3125 2.87207 16.1484 2.70508 15.9609 2.56445C15.7734 2.42383 15.5654 2.31543 15.3369 2.23926C15.1084 2.16309 14.8711 2.125 14.625 2.125H3.33105C3.03809 2.125 2.75977 2.18359 2.49609 2.30078C2.23242 2.41797 1.99805 2.5791 1.79297 2.78418C1.58789 2.98926 1.42676 3.22363 1.30957 3.4873C1.19238 3.75098 1.13086 4.03223 1.125 4.33105V11.1689C1.125 11.4736 1.18652 11.7578 1.30957 12.0215C1.43262 12.2852 1.59668 12.5195 1.80176 12.7246C2.00684 12.9297 2.24414 13.0879 2.51367 13.1992C2.7832 13.3105 3.07031 13.3691 3.375 13.375H10.125V14.5H3.30469ZM3.9375 5.5C3.78516 5.5 3.65332 5.44434 3.54199 5.33301C3.43066 5.22168 3.375 5.08984 3.375 4.9375C3.375 4.78516 3.43066 4.65332 3.54199 4.54199C3.65332 4.43066 3.78516 4.375 3.9375 4.375H9.5625C9.71484 4.375 9.84668 4.43066 9.95801 4.54199C10.0693 4.65332 10.125 4.78516 10.125 4.9375C10.125 5.08984 10.0693 5.22168 9.95801 5.33301C9.84668 5.44434 9.71484 5.5 9.5625 5.5H3.9375ZM10.125 8.24219C10.125 7.71484 10.2305 7.2168 10.4414 6.74805C10.6523 6.2793 10.9395 5.86914 11.3027 5.51758C11.666 5.16602 12.085 4.8877 12.5596 4.68262C13.0342 4.47754 13.5352 4.375 14.0625 4.375C14.6016 4.375 15.1084 4.47754 15.583 4.68262C16.0576 4.8877 16.4766 5.17188 16.8398 5.53516C17.2031 5.89844 17.4844 6.31445 17.6836 6.7832C17.8828 7.25195 17.9883 7.76172 18 8.3125C18 8.85156 17.8975 9.3584 17.6924 9.83301C17.4873 10.3076 17.2031 10.7266 16.8398 11.0898C16.4766 11.4531 16.0605 11.7344 15.5918 11.9336C15.123 12.1328 14.6133 12.2383 14.0625 12.25C13.5059 12.25 12.9873 12.1445 12.5068 11.9336C12.0264 11.7227 11.6104 11.4355 11.2588 11.0723C10.9072 10.709 10.6318 10.2842 10.4326 9.79785C10.2334 9.31152 10.1309 8.79297 10.125 8.24219ZM3.9375 11.125C3.78516 11.125 3.65332 11.0693 3.54199 10.958C3.43066 10.8467 3.375 10.7148 3.375 10.5625C3.375 10.4102 3.43066 10.2783 3.54199 10.167C3.65332 10.0557 3.78516 10 3.9375 10H8.4375C8.58984 10 8.72168 10.0557 8.83301 10.167C8.94434 10.2783 9 10.4102 9 10.5625C9 10.7148 8.94434 10.8467 8.83301 10.958C8.72168 11.0693 8.58984 11.125 8.4375 11.125H3.9375ZM11.8125 16.7061C11.6543 16.7061 11.5225 16.6533 11.417 16.5479C11.3115 16.4424 11.2559 16.3076 11.25 16.1436V12.8564C11.6719 13.1201 12.1201 13.3193 12.5947 13.4541C13.0693 13.5889 13.5586 13.6562 14.0625 13.6562C14.5605 13.6562 15.0469 13.5889 15.5215 13.4541C15.9961 13.3193 16.4473 13.1201 16.875 12.8564V16.1436C16.875 16.3018 16.8223 16.4336 16.7168 16.5391C16.6113 16.6445 16.4766 16.7002 16.3125 16.7061C16.1777 16.7061 16.0605 16.665 15.9609 16.583L14.4141 15.3438C14.3145 15.2617 14.1973 15.2207 14.0625 15.2207C13.9277 15.2207 13.8105 15.2617 13.7109 15.3438L12.1641 16.583C12.0645 16.665 11.9473 16.7061 11.8125 16.7061Z" fill="#0078D4"/>
+</svg>
diff --git a/windows/security/images/icons/license.svg b/windows/security/images/icons/license.svg
index 96ffa5b4eb..4be1c3b5f7 100644
--- a/windows/security/images/icons/license.svg
+++ b/windows/security/images/icons/license.svg
@@ -1,3 +1,3 @@
-<svg width="18" height="18" viewBox="0 0 16 16" fill="none" xmlns="http://www.w3.org/2000/svg">
-  <path d="M2 3.75C2 2.7835 2.7835 2 3.75 2H9.25C10.2165 2 11 2.7835 11 3.75V10H14V11.5C14 12.8807 12.8807 14 11.5 14H4.5C3.11929 14 2 12.8807 2 11.5V3.75ZM11 13H11.5C12.3284 13 13 12.3284 13 11.5V11H11V13ZM4.5 5.5C4.5 5.77614 4.72386 6 5 6H8C8.27614 6 8.5 5.77614 8.5 5.5C8.5 5.22386 8.27614 5 8 5H5C4.72386 5 4.5 5.22386 4.5 5.5ZM5 7.5C4.72386 7.5 4.5 7.72386 4.5 8C4.5 8.27614 4.72386 8.5 5 8.5H8C8.27614 8.5 8.5 8.27614 8.5 8C8.5 7.72386 8.27614 7.5 8 7.5H5ZM4.5 10.5C4.5 10.7761 4.72386 11 5 11H6.5C6.77614 11 7 10.7761 7 10.5C7 10.2239 6.77614 10 6.5 10H5C4.72386 10 4.5 10.2239 4.5 10.5Z"  fill="#0078D4"  />
-</svg>
\ No newline at end of file
+<svg width="18" height="18" viewBox="0 0 18 18" fill="none" xmlns="http://www.w3.org/2000/svg">
+<path d="M17.8 15C17.8 15.1625 17.7406 15.3031 17.6219 15.4219L15.2219 17.8219C15.1031 17.9406 14.9625 18 14.8 18C14.6375 18 14.4969 17.9406 14.3781 17.8219C14.2594 17.7031 14.2 17.5625 14.2 17.4C14.2 17.2375 14.2594 17.0969 14.3781 16.9781L15.7562 15.6H3.93437C3.54062 15.6 3.16562 15.5219 2.80937 15.3656C2.45312 15.2094 2.14375 14.9969 1.88125 14.7281C1.61875 14.4594 1.40625 14.1469 1.24375 13.7906C1.08125 13.4344 1 13.0594 1 12.6656V2.93438C1 2.54063 1.07813 2.16563 1.23437 1.80938C1.39062 1.45313 1.60312 1.14375 1.87187 0.88125C2.14062 0.61875 2.45312 0.40625 2.80937 0.24375C3.16562 0.08125 3.54062 0 3.93437 0H13.6656C14.0594 0 14.4344 0.078125 14.7906 0.234375C15.1469 0.390625 15.4562 0.603125 15.7187 0.871875C15.9812 1.14063 16.1937 1.45313 16.3562 1.80938C16.5187 2.16563 16.6 2.54063 16.6 2.93438V10.2C16.6 10.3625 16.5406 10.5031 16.4219 10.6219C16.3031 10.7406 16.1625 10.8 16 10.8C15.8375 10.8 15.6969 10.7406 15.5781 10.6219C15.4594 10.5031 15.4 10.3625 15.4 10.2V3C15.4 2.75625 15.3531 2.525 15.2594 2.30625C15.1656 2.0875 15.0375 1.89688 14.875 1.73438C14.7125 1.57188 14.5187 1.44063 14.2937 1.34063C14.0687 1.24063 13.8375 1.19375 13.6 1.2H4C3.75625 1.2 3.525 1.24688 3.30625 1.34063C3.0875 1.43438 2.89687 1.5625 2.73437 1.725C2.57187 1.8875 2.44062 2.08125 2.34062 2.30625C2.24062 2.53125 2.19375 2.7625 2.2 3V12.6C2.2 12.8438 2.24687 13.075 2.34062 13.2938C2.43437 13.5125 2.5625 13.7031 2.725 13.8656C2.8875 14.0281 3.08125 14.1594 3.30625 14.2594C3.53125 14.3594 3.7625 14.4063 4 14.4H15.7562L14.3781 13.0219C14.2594 12.9031 14.2 12.7625 14.2 12.6C14.2 12.4375 14.2594 12.2969 14.3781 12.1781C14.4969 12.0594 14.6375 12 14.8 12C14.9625 12 15.1031 12.0594 15.2219 12.1781L17.6219 14.5781C17.7406 14.6969 17.8 14.8375 17.8 15ZM12.4 3.6C12.5625 3.6 12.7031 3.65938 12.8219 3.77813C12.9406 3.89688 13 4.0375 13 4.2C13 4.3625 12.9406 4.50313 12.8219 4.62188C12.7031 4.74063 12.5625 4.8 12.4 4.8H5.2C5.0375 4.8 4.89687 4.74063 4.77812 4.62188C4.65937 4.50313 4.6 4.3625 4.6 4.2C4.6 4.0375 4.65937 3.89688 4.77812 3.77813C4.89687 3.65938 5.0375 3.6 5.2 3.6H12.4ZM12.4 7.2C12.5625 7.2 12.7031 7.25938 12.8219 7.37813C12.9406 7.49688 13 7.6375 13 7.8C13 7.9625 12.9406 8.10313 12.8219 8.22188C12.7031 8.34063 12.5625 8.4 12.4 8.4H5.2C5.0375 8.4 4.89687 8.34063 4.77812 8.22188C4.65937 8.10313 4.6 7.9625 4.6 7.8C4.6 7.6375 4.65937 7.49688 4.77812 7.37813C4.89687 7.25938 5.0375 7.2 5.2 7.2H12.4Z" fill="#0078D4"/>
+</svg>
diff --git a/windows/security/images/icons/subscription.svg b/windows/security/images/icons/subscription.svg
new file mode 100644
index 0000000000..4be1c3b5f7
--- /dev/null
+++ b/windows/security/images/icons/subscription.svg
@@ -0,0 +1,3 @@
+<svg width="18" height="18" viewBox="0 0 18 18" fill="none" xmlns="http://www.w3.org/2000/svg">
+<path d="M17.8 15C17.8 15.1625 17.7406 15.3031 17.6219 15.4219L15.2219 17.8219C15.1031 17.9406 14.9625 18 14.8 18C14.6375 18 14.4969 17.9406 14.3781 17.8219C14.2594 17.7031 14.2 17.5625 14.2 17.4C14.2 17.2375 14.2594 17.0969 14.3781 16.9781L15.7562 15.6H3.93437C3.54062 15.6 3.16562 15.5219 2.80937 15.3656C2.45312 15.2094 2.14375 14.9969 1.88125 14.7281C1.61875 14.4594 1.40625 14.1469 1.24375 13.7906C1.08125 13.4344 1 13.0594 1 12.6656V2.93438C1 2.54063 1.07813 2.16563 1.23437 1.80938C1.39062 1.45313 1.60312 1.14375 1.87187 0.88125C2.14062 0.61875 2.45312 0.40625 2.80937 0.24375C3.16562 0.08125 3.54062 0 3.93437 0H13.6656C14.0594 0 14.4344 0.078125 14.7906 0.234375C15.1469 0.390625 15.4562 0.603125 15.7187 0.871875C15.9812 1.14063 16.1937 1.45313 16.3562 1.80938C16.5187 2.16563 16.6 2.54063 16.6 2.93438V10.2C16.6 10.3625 16.5406 10.5031 16.4219 10.6219C16.3031 10.7406 16.1625 10.8 16 10.8C15.8375 10.8 15.6969 10.7406 15.5781 10.6219C15.4594 10.5031 15.4 10.3625 15.4 10.2V3C15.4 2.75625 15.3531 2.525 15.2594 2.30625C15.1656 2.0875 15.0375 1.89688 14.875 1.73438C14.7125 1.57188 14.5187 1.44063 14.2937 1.34063C14.0687 1.24063 13.8375 1.19375 13.6 1.2H4C3.75625 1.2 3.525 1.24688 3.30625 1.34063C3.0875 1.43438 2.89687 1.5625 2.73437 1.725C2.57187 1.8875 2.44062 2.08125 2.34062 2.30625C2.24062 2.53125 2.19375 2.7625 2.2 3V12.6C2.2 12.8438 2.24687 13.075 2.34062 13.2938C2.43437 13.5125 2.5625 13.7031 2.725 13.8656C2.8875 14.0281 3.08125 14.1594 3.30625 14.2594C3.53125 14.3594 3.7625 14.4063 4 14.4H15.7562L14.3781 13.0219C14.2594 12.9031 14.2 12.7625 14.2 12.6C14.2 12.4375 14.2594 12.2969 14.3781 12.1781C14.4969 12.0594 14.6375 12 14.8 12C14.9625 12 15.1031 12.0594 15.2219 12.1781L17.6219 14.5781C17.7406 14.6969 17.8 14.8375 17.8 15ZM12.4 3.6C12.5625 3.6 12.7031 3.65938 12.8219 3.77813C12.9406 3.89688 13 4.0375 13 4.2C13 4.3625 12.9406 4.50313 12.8219 4.62188C12.7031 4.74063 12.5625 4.8 12.4 4.8H5.2C5.0375 4.8 4.89687 4.74063 4.77812 4.62188C4.65937 4.50313 4.6 4.3625 4.6 4.2C4.6 4.0375 4.65937 3.89688 4.77812 3.77813C4.89687 3.65938 5.0375 3.6 5.2 3.6H12.4ZM12.4 7.2C12.5625 7.2 12.7031 7.25938 12.8219 7.37813C12.9406 7.49688 13 7.6375 13 7.8C13 7.9625 12.9406 8.10313 12.8219 8.22188C12.7031 8.34063 12.5625 8.4 12.4 8.4H5.2C5.0375 8.4 4.89687 8.34063 4.77812 8.22188C4.65937 8.10313 4.6 7.9625 4.6 7.8C4.6 7.6375 4.65937 7.49688 4.77812 7.37813C4.89687 7.25938 5.0375 7.2 5.2 7.2H12.4Z" fill="#0078D4"/>
+</svg>
diff --git a/windows/security/licensing-and-edition-requirements.md b/windows/security/licensing-and-edition-requirements.md
index ece47c14a8..e2ef744996 100644
--- a/windows/security/licensing-and-edition-requirements.md
+++ b/windows/security/licensing-and-edition-requirements.md
@@ -15,11 +15,11 @@ This article lists the security features that are available in Windows.
 
 Select one of the two tabs to learn about licensing requirements to use the security features, or to learn about the Windows edition requirements that support them:
 
-#### [:::image type="icon" source="images/icons/certificate.svg" border="false"::: **Licensing requirements**](#tab/licensing)
+#### [:::image type="icon" source="images/icons/subscription.svg" border="false"::: **Licensing requirements**](#tab/licensing)
 
 [!INCLUDE [licensing-requirements](../../includes/licensing/_licensing-requirements.md)]
 
-#### [:::image type="icon" source="images/icons/windows-os.svg" border="false"::: **Edition requirements**](#tab/edition)
+#### [:::image type="icon" source="images/icons/activation.svg" border="false"::: **Edition requirements**](#tab/edition)
 
 [!INCLUDE [_edition-requirements](../../includes/licensing/_edition-requirements.md)]
 

From a06450610c78879c4ae0a2e898f51d128ba8b6fb Mon Sep 17 00:00:00 2001
From: Paolo Matarazzo <74918781+paolomatarazzo@users.noreply.github.com>
Date: Mon, 12 Feb 2024 08:59:10 +0100
Subject: [PATCH 07/13] Update icon for Enhanced Phishing Protection

---
 windows/security/images/icons/gear.svg                 | 10 ++++++++++
 windows/security/images/icons/windows-os.svg           |  3 ---
 .../enhanced-phishing-protection.md                    |  2 +-
 3 files changed, 11 insertions(+), 4 deletions(-)
 create mode 100644 windows/security/images/icons/gear.svg
 delete mode 100644 windows/security/images/icons/windows-os.svg

diff --git a/windows/security/images/icons/gear.svg b/windows/security/images/icons/gear.svg
new file mode 100644
index 0000000000..caca268bea
--- /dev/null
+++ b/windows/security/images/icons/gear.svg
@@ -0,0 +1,10 @@
+<svg width="18" height="18" viewBox="0 0 18 18" fill="none" xmlns="http://www.w3.org/2000/svg">
+<g clip-path="url(#clip0_2_14)">
+<path d="M5.28223 14.3877C5.07715 14.3877 4.875 14.4258 4.67578 14.502C4.47656 14.5781 4.28027 14.6602 4.08691 14.748C3.89355 14.8359 3.69434 14.918 3.48926 14.9941C3.28418 15.0703 3.08203 15.1084 2.88281 15.1084C2.70703 15.1084 2.5459 15.0732 2.39941 15.0029C2.25293 14.9326 2.12109 14.8271 2.00391 14.6865C1.92773 14.5986 1.83984 14.4814 1.74023 14.335C1.64063 14.1885 1.53223 14.0273 1.41504 13.8516C1.29785 13.6758 1.18652 13.4912 1.08105 13.2979C0.975586 13.1045 0.878906 12.9141 0.791016 12.7266C0.703125 12.5391 0.632812 12.3633 0.580078 12.1992C0.527344 12.0352 0.500977 11.8975 0.500977 11.7861C0.500977 11.5752 0.553711 11.3877 0.65918 11.2236C0.764648 11.0596 0.893555 10.9072 1.0459 10.7666C1.19824 10.626 1.36816 10.4941 1.55566 10.3711C1.74316 10.248 1.91309 10.1191 2.06543 9.98438C2.21777 9.84961 2.34961 9.70312 2.46094 9.54492C2.57227 9.38672 2.625 9.20508 2.61914 9C2.61914 8.80078 2.56641 8.62207 2.46094 8.46387C2.35547 8.30566 2.22363 8.15918 2.06543 8.02441C1.90723 7.88965 1.7373 7.75488 1.55566 7.62012C1.37402 7.48535 1.2041 7.35059 1.0459 7.21582C0.887695 7.08105 0.755859 6.92578 0.650391 6.75C0.544922 6.57422 0.492188 6.38672 0.492188 6.1875C0.492188 6.08203 0.518555 5.94727 0.571289 5.7832C0.624023 5.61914 0.697266 5.44336 0.791016 5.25586C0.884766 5.06836 0.984375 4.87793 1.08984 4.68457C1.19531 4.49121 1.30957 4.30371 1.43262 4.12207C1.55566 3.94043 1.66699 3.77637 1.7666 3.62988C1.86621 3.4834 1.95703 3.36914 2.03906 3.28711C2.15625 3.1582 2.28809 3.05859 2.43457 2.98828C2.58105 2.91797 2.74219 2.88281 2.91797 2.88281C3.12305 2.88281 3.32227 2.9209 3.51562 2.99707C3.70898 3.07324 3.90234 3.15527 4.0957 3.24316C4.28906 3.33105 4.48242 3.41602 4.67578 3.49805C4.86914 3.58008 5.07129 3.61816 5.28223 3.6123C5.5459 3.6123 5.77148 3.5332 5.95898 3.375C6.14648 3.2168 6.2666 3.00586 6.31934 2.74219L6.47754 1.88086L6.63574 1.01953C6.68262 0.773438 6.78809 0.571289 6.95215 0.413086C7.11621 0.254883 7.32422 0.152344 7.57617 0.105469C7.81055 0.0644531 8.04785 0.0380859 8.28809 0.0263672C8.52832 0.0146484 8.76563 0.00585938 9 0C9.24609 0 9.49219 0.00878906 9.73828 0.0263672C9.98438 0.0439453 10.2275 0.0761719 10.4678 0.123047C10.7139 0.169922 10.916 0.272461 11.0742 0.430664C11.2324 0.588867 11.335 0.791016 11.3818 1.03711C11.4346 1.32422 11.4844 1.6084 11.5312 1.88965C11.5781 2.1709 11.6279 2.45508 11.6807 2.74219C11.7275 2.99414 11.8477 3.20215 12.041 3.36621C12.2344 3.53027 12.46 3.6123 12.7178 3.6123C12.9229 3.6123 13.125 3.57422 13.3242 3.49805C13.5234 3.42187 13.7197 3.33984 13.9131 3.25195C14.1064 3.16406 14.3057 3.08203 14.5107 3.00586C14.7158 2.92969 14.918 2.8916 15.1172 2.8916C15.2988 2.8916 15.46 2.92676 15.6006 2.99707C15.7412 3.06738 15.873 3.17285 15.9961 3.31348C16.0723 3.40137 16.1602 3.51855 16.2598 3.66504C16.3594 3.81152 16.4678 3.97266 16.585 4.14844C16.7021 4.32422 16.8135 4.50879 16.9189 4.70215C17.0244 4.89551 17.1211 5.08594 17.209 5.27344C17.2969 5.46094 17.3672 5.63672 17.4199 5.80078C17.4727 5.96484 17.499 6.10254 17.499 6.21387C17.499 6.43066 17.4463 6.62109 17.3408 6.78516C17.2354 6.94922 17.1064 7.09863 16.9541 7.2334C16.8018 7.36816 16.6318 7.5 16.4443 7.62891C16.2568 7.75781 16.0869 7.88672 15.9346 8.01562C15.7822 8.14453 15.6504 8.29102 15.5391 8.45508C15.4277 8.61914 15.375 8.80078 15.3809 9C15.3809 9.19922 15.4336 9.37793 15.5391 9.53613C15.6445 9.69434 15.7764 9.84082 15.9346 9.97559C16.0928 10.1104 16.2627 10.2451 16.4443 10.3799C16.626 10.5146 16.7959 10.6494 16.9541 10.7842C17.1123 10.9189 17.2441 11.0742 17.3496 11.25C17.4551 11.4258 17.5078 11.6133 17.5078 11.8125C17.5078 11.9297 17.4814 12.0674 17.4287 12.2256C17.376 12.3838 17.3027 12.5596 17.209 12.7529C17.1152 12.9463 17.0156 13.1367 16.9102 13.3242C16.8047 13.5117 16.6904 13.6963 16.5674 13.8779C16.4443 14.0596 16.333 14.2207 16.2334 14.3613C16.1338 14.502 16.04 14.6191 15.9521 14.7129C15.835 14.8418 15.7061 14.9414 15.5654 15.0117C15.4248 15.082 15.2666 15.1172 15.0908 15.1172C14.8975 15.1172 14.7012 15.0791 14.502 15.0029C14.3027 14.9268 14.1006 14.8447 13.8955 14.7568C13.6904 14.6689 13.4912 14.584 13.2979 14.502C13.1045 14.4199 12.9111 14.3818 12.7178 14.3877C12.46 14.3877 12.2607 14.4404 12.1201 14.5459C11.9795 14.6514 11.8711 14.7861 11.7949 14.9502C11.7187 15.1143 11.666 15.2988 11.6367 15.5039C11.6074 15.709 11.5723 15.9053 11.5312 16.0928C11.502 16.2451 11.4756 16.3916 11.4521 16.5322C11.4287 16.6729 11.3994 16.8223 11.3643 16.9805C11.3174 17.2324 11.2119 17.4346 11.0479 17.5869C10.8838 17.7393 10.6758 17.8418 10.4238 17.8945C10.1895 17.9355 9.95508 17.9619 9.7207 17.9736C9.48633 17.9854 9.24609 17.9941 9 18C8.75391 18 8.50781 17.9912 8.26172 17.9736C8.01562 17.9561 7.77246 17.9238 7.53223 17.877C7.28613 17.8301 7.08398 17.7275 6.92578 17.5693C6.76758 17.4111 6.66504 17.2061 6.61816 16.9541C6.56543 16.6729 6.51563 16.3916 6.46875 16.1104C6.42187 15.8291 6.37207 15.5449 6.31934 15.2578C6.27246 15.0059 6.15234 14.7979 5.95898 14.6338C5.76562 14.4697 5.54004 14.3877 5.28223 14.3877ZM10.2568 16.7871C10.2803 16.6582 10.3066 16.5 10.3359 16.3125C10.3652 16.125 10.3975 15.9287 10.4326 15.7236C10.4678 15.5186 10.5059 15.3281 10.5469 15.1523C10.5879 14.9766 10.6289 14.8301 10.6699 14.7129C10.834 14.2734 11.0977 13.9219 11.4609 13.6582C11.8242 13.3945 12.2432 13.2627 12.7178 13.2627C12.876 13.2627 13.0576 13.2891 13.2627 13.3418C13.4678 13.3945 13.6816 13.4619 13.9043 13.5439C14.127 13.626 14.3408 13.7051 14.5459 13.7812C14.751 13.8574 14.9326 13.9277 15.0908 13.9922C15.3662 13.6641 15.6094 13.3184 15.8203 12.9551C16.0312 12.5918 16.2158 12.2109 16.374 11.8125V11.8037L15.0293 10.6611C14.7832 10.4561 14.5928 10.21 14.458 9.92285C14.3232 9.63574 14.2559 9.32812 14.2559 9C14.2559 8.67773 14.3232 8.37012 14.458 8.07715C14.5928 7.78418 14.7861 7.53516 15.0381 7.33008L16.3652 6.22266V6.21387C16.3652 6.20801 16.3535 6.17578 16.3301 6.11719C16.3066 6.05859 16.292 6.02344 16.2861 6.01172C16.1455 5.64844 15.9785 5.30273 15.7852 4.97461C15.5918 4.64648 15.3691 4.32715 15.1172 4.0166H15.1084L13.4561 4.61426C13.2217 4.69629 12.9814 4.7373 12.7354 4.7373C12.3369 4.7373 11.9707 4.64062 11.6367 4.44727C11.3555 4.28906 11.124 4.07812 10.9424 3.81445C10.7607 3.55078 10.6377 3.26074 10.5732 2.94434L10.2744 1.23047C9.85254 1.16016 9.42773 1.125 9 1.125C8.78906 1.125 8.57812 1.13086 8.36719 1.14258C8.15625 1.1543 7.94824 1.17773 7.74316 1.21289C7.69043 1.50586 7.64063 1.7959 7.59375 2.08301C7.54687 2.37012 7.49121 2.65723 7.42676 2.94434C7.37402 3.20215 7.2832 3.43945 7.1543 3.65625C7.02539 3.87305 6.86719 4.06348 6.67969 4.22754C6.49219 4.3916 6.28125 4.51465 6.04688 4.59668C5.8125 4.67871 5.56055 4.72559 5.29102 4.7373C5.02734 4.7373 4.77832 4.69336 4.54395 4.60547H4.53516L2.91797 4.00781H2.90918C2.63965 4.3418 2.39648 4.6875 2.17969 5.04492C1.96289 5.40234 1.77832 5.7832 1.62598 6.1875V6.19629L2.9707 7.33887C3.2168 7.54395 3.40723 7.79004 3.54199 8.07715C3.67676 8.36426 3.74414 8.67188 3.74414 9C3.74414 9.32227 3.67676 9.62988 3.54199 9.92285C3.40723 10.2158 3.21387 10.4648 2.96191 10.6699L1.63477 11.7773V11.7861C1.63477 11.792 1.64648 11.8242 1.66992 11.8828C1.69336 11.9414 1.70801 11.9766 1.71387 11.9883C1.85449 12.3516 2.02148 12.6973 2.21484 13.0254C2.4082 13.3535 2.63086 13.6729 2.88281 13.9834H2.8916L4.54395 13.3857C4.77832 13.3037 5.01855 13.2627 5.26465 13.2627C5.66309 13.2627 6.0293 13.3594 6.36328 13.5527C6.64453 13.7109 6.87598 13.9219 7.05762 14.1855C7.23926 14.4492 7.3623 14.7393 7.42676 15.0557L7.72559 16.7695C8.14746 16.8398 8.57227 16.875 9 16.875C9.21094 16.875 9.42188 16.8691 9.63281 16.8574C9.84375 16.8457 10.0518 16.8223 10.2568 16.7871ZM5.625 9C5.625 8.53125 5.71289 8.0918 5.88867 7.68164C6.06445 7.27148 6.30469 6.91406 6.60938 6.60938C6.91406 6.30469 7.27148 6.06445 7.68164 5.88867C8.0918 5.71289 8.53125 5.625 9 5.625C9.46875 5.625 9.9082 5.71289 10.3184 5.88867C10.7285 6.06445 11.0859 6.30469 11.3906 6.60938C11.6953 6.91406 11.9355 7.27148 12.1113 7.68164C12.2871 8.0918 12.375 8.53125 12.375 9C12.375 9.46875 12.2871 9.9082 12.1113 10.3184C11.9355 10.7285 11.6953 11.0859 11.3906 11.3906C11.0859 11.6953 10.7285 11.9355 10.3184 12.1113C9.9082 12.2871 9.46875 12.375 9 12.375C8.53125 12.375 8.0918 12.2871 7.68164 12.1113C7.27148 11.9355 6.91406 11.6953 6.60938 11.3906C6.30469 11.0859 6.06445 10.7285 5.88867 10.3184C5.71289 9.9082 5.625 9.46875 5.625 9ZM11.25 9C11.25 8.68945 11.1914 8.39941 11.0742 8.12988C10.957 7.86035 10.7959 7.62012 10.5908 7.40918C10.3857 7.19824 10.1484 7.03711 9.87891 6.92578C9.60938 6.81445 9.31641 6.75586 9 6.75C8.68945 6.75 8.39941 6.80859 8.12988 6.92578C7.86035 7.04297 7.62012 7.2041 7.40918 7.40918C7.19824 7.61426 7.03711 7.85156 6.92578 8.12109C6.81445 8.39062 6.75586 8.68359 6.75 9C6.75 9.31055 6.80859 9.60059 6.92578 9.87012C7.04297 10.1396 7.2041 10.3799 7.40918 10.5908C7.61426 10.8018 7.85156 10.9629 8.12109 11.0742C8.39062 11.1855 8.68359 11.2441 9 11.25C9.31055 11.25 9.60059 11.1914 9.87012 11.0742C10.1396 10.957 10.3799 10.7959 10.5908 10.5908C10.8018 10.3857 10.9629 10.1484 11.0742 9.87891C11.1855 9.60938 11.2441 9.31641 11.25 9Z" fill="#0078D4"/>
+</g>
+<defs>
+<clipPath id="clip0_2_14">
+<rect width="18" height="18" fill="white"/>
+</clipPath>
+</defs>
+</svg>
diff --git a/windows/security/images/icons/windows-os.svg b/windows/security/images/icons/windows-os.svg
deleted file mode 100644
index da64baf975..0000000000
--- a/windows/security/images/icons/windows-os.svg
+++ /dev/null
@@ -1,3 +0,0 @@
-<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 2048 2048" width="18" height="18" >
-  <path d="M0 0h961v961H0V0zm1087 0h961v961h-961V0zM0 1087h961v961H0v-961zm1087 0h961v961h-961v-961z" fill="#0078D4" />
-</svg>
\ No newline at end of file
diff --git a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/enhanced-phishing-protection.md b/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/enhanced-phishing-protection.md
index ff13a406b5..1555ed711e 100644
--- a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/enhanced-phishing-protection.md
+++ b/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/enhanced-phishing-protection.md
@@ -71,7 +71,7 @@ Enhanced Phishing Protection can be configured using the following group policy
 - Notify Password Reuse
 - Notify Unsafe App
 
-#### [:::image type="icon" source="images/icons/windows-os.svg"::: **CSP**](#tab/csp)
+#### [:::image type="icon" source="images/icons/gear.svg"::: **CSP**](#tab/csp)
 
 Enhanced Phishing Protection can be configured using the [WebThreatDefense CSP][WIN-1].
 

From c19516a298caf7d828c0aeafa12b9dcefe7f56ad Mon Sep 17 00:00:00 2001
From: Paolo Matarazzo <74918781+paolomatarazzo@users.noreply.github.com>
Date: Mon, 12 Feb 2024 10:21:41 +0100
Subject: [PATCH 08/13] Delete unused SVG icons

---
 .../enhanced-phishing-protection.md           | 12 +++++-----
 .../images/icons/group-policy.svg             |  9 -------
 .../images/icons/intune.svg                   | 24 -------------------
 .../images/icons/windows-os.svg               |  3 ---
 4 files changed, 6 insertions(+), 42 deletions(-)
 delete mode 100644 windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/group-policy.svg
 delete mode 100644 windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/intune.svg
 delete mode 100644 windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/windows-os.svg

diff --git a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/enhanced-phishing-protection.md b/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/enhanced-phishing-protection.md
index 1555ed711e..29ae7131f5 100644
--- a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/enhanced-phishing-protection.md
+++ b/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/enhanced-phishing-protection.md
@@ -49,7 +49,7 @@ Enhanced Phishing Protection can be configured via Microsoft Intune, Group Polic
 
 Follow these instructions to configure your devices using either Microsoft Intune, GPO or CSP.
 
-#### [:::image type="icon" source="images/icons/intune.svg"::: **Intune**](#tab/intune)
+#### [:::image type="icon" source="../../../images/icons/intune.svg"::: **Intune**](#tab/intune)
 
 To configure devices using Microsoft Intune, create a [**Settings catalog** policy][MEM-2], and use the settings listed under the category **`SmartScreen > Enhanced Phishing Protection`**:
 
@@ -61,7 +61,7 @@ To configure devices using Microsoft Intune, create a [**Settings catalog** poli
 
 Assign the policy to a security group that contains as members the devices or users that you want to configure.
 
-#### [:::image type="icon" source="images/icons/group-policy.svg"::: **GPO**](#tab/gpo)
+#### [:::image type="icon" source="../../../images/icons/group-policy.svg"::: **GPO**](#tab/gpo)
 
 Enhanced Phishing Protection can be configured using the following group policy settings found under **Administrative Templates > Windows Components > Windows Defender SmartScreen > Enhanced Phishing Protection**:
 
@@ -71,7 +71,7 @@ Enhanced Phishing Protection can be configured using the following group policy
 - Notify Password Reuse
 - Notify Unsafe App
 
-#### [:::image type="icon" source="images/icons/gear.svg"::: **CSP**](#tab/csp)
+#### [:::image type="icon" source="../../../images/icons/gear.svg"::: **CSP**](#tab/csp)
 
 Enhanced Phishing Protection can be configured using the [WebThreatDefense CSP][WIN-1].
 
@@ -107,7 +107,7 @@ To better help you protect your organization, we recommend turning on and using
 | Notify Password Reuse     | **Disabled**                                                                                               | **Enabled**: Turns on Enhanced Phishing Protection notifications when users reuse their work or school password and encourages them to change their password.                                                                                                        |
 | Notify Unsafe App         | **Disabled**                                                                                               | **Enabled**: Turns on Enhanced Phishing Protection notifications when users type their work or school passwords in Notepad and Microsoft 365 Office Apps.                                                                                                            |
 
-#### [:::image type="icon" source="images/icons/intune.svg"::: **Intune**](#tab/intune)
+#### [:::image type="icon" source="../../../images/icons/intune.svg"::: **Intune**](#tab/intune)
 
 | Settings catalog element  | Recommended value |
 |---------------------------|-------------------|
@@ -117,7 +117,7 @@ To better help you protect your organization, we recommend turning on and using
 | Notify Password Reuse     | **Enabled**       |
 | Notify Unsafe App         | **Enabled**       |
 
-#### [:::image type="icon" source="images/icons/group-policy.svg"::: **GPO**](#tab/gpo)
+#### [:::image type="icon" source="../../../images/icons/group-policy.svg"::: **GPO**](#tab/gpo)
 
 | Group Policy setting      | Recommended value |
 |---------------------------|-------------------|
@@ -127,7 +127,7 @@ To better help you protect your organization, we recommend turning on and using
 | Notify Password Reuse     | **Enabled**       |
 | Notify Unsafe App         | **Enabled**       |
 
-#### [:::image type="icon" source="images/icons/windows-os.svg"::: **CSP**](#tab/csp)
+#### [:::image type="icon" source="../../../images/icons/gear.svg"::: **CSP**](#tab/csp)
 
 | MDM setting             | Recommended value |
 |-------------------------|-------------------|
diff --git a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/group-policy.svg b/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/group-policy.svg
deleted file mode 100644
index 95957a5914..0000000000
--- a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/group-policy.svg
+++ /dev/null
@@ -1,9 +0,0 @@
-<svg width="18" height="18" viewBox="0 0 18 18" fill="none" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
-<rect width="17.2" height="18" fill="url(#pattern0)"/>
-<defs>
-<pattern id="pattern0" patternContentUnits="objectBoundingBox" width="1" height="1">
-<use xlink:href="#image0_48_118" transform="scale(0.0232558 0.0222222)"/>
-</pattern>
-<image id="image0_48_118" width="43" height="45" xlink:href="data:image/png;base64,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"/>
-</defs>
-</svg>
diff --git a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/intune.svg b/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/intune.svg
deleted file mode 100644
index 6e0d938aed..0000000000
--- a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/intune.svg
+++ /dev/null
@@ -1,24 +0,0 @@
-<svg id="a9ed4d43-c916-4b9a-b9ca-be76fbdc694c" xmlns="http://www.w3.org/2000/svg" width="18" height="18" viewBox="0 0 18 18">
-  <defs>
-    <linearGradient id="aaede26b-698f-4a65-b6db-859d207e2da6" x1="8.05" y1="11.32" x2="8.05" y2="1.26" gradientUnits="userSpaceOnUse">
-      <stop offset="0" stop-color="#0078d4" />
-      <stop offset="0.82" stop-color="#5ea0ef" />
-    </linearGradient>
-    <linearGradient id="bc54987f-34ba-4701-8ce4-6eca10aff9e9" x1="8.05" y1="15.21" x2="8.05" y2="11.32" gradientUnits="userSpaceOnUse">
-      <stop offset="0" stop-color="#1490df" />
-      <stop offset="0.98" stop-color="#1f56a3" />
-    </linearGradient>
-    <linearGradient id="a5434fd8-c18c-472c-be91-f2aa070858b7" x1="8.05" y1="7.87" x2="8.05" y2="4.94" gradientUnits="userSpaceOnUse">
-      <stop offset="0" stop-color="#d2ebff" />
-      <stop offset="1" stop-color="#f0fffd" />
-    </linearGradient>
-  </defs>
-  <title>Icon-intune-329</title>
-  <rect x="0.5" y="1.26" width="15.1" height="10.06" rx="0.5" fill="url(#aaede26b-698f-4a65-b6db-859d207e2da6)" />
-  <rect x="1.34" y="2.1" width="13.42" height="8.39" rx="0.28" fill="#fff" />
-  <path d="M11.08,14.37c-1.5-.23-1.56-1.31-1.55-3h-3c0,1.74-.06,2.82-1.55,3a.87.87,0,0,0-.74.84h7.54A.88.88,0,0,0,11.08,14.37Z" fill="url(#bc54987f-34ba-4701-8ce4-6eca10aff9e9)" />
-  <path d="M17.17,5.91H10.29a2.31,2.31,0,1,0,0,.92H11v9.58a.33.33,0,0,0,.33.33h5.83a.33.33,0,0,0,.33-.33V6.24A.33.33,0,0,0,17.17,5.91Z" fill="#32bedd" />
-  <rect x="11.62" y="6.82" width="5.27" height="8.7" rx="0.12" fill="#fff" />
-  <circle cx="8.05" cy="6.41" r="1.46" opacity="0.9" fill="url(#a5434fd8-c18c-472c-be91-f2aa070858b7)" />
-  <path d="M14.88,10.82,13.76,9.7a.06.06,0,0,0-.1.05v.68a.06.06,0,0,1-.06.06H11v.83H13.6a.06.06,0,0,1,.06.06v.69a.06.06,0,0,0,.1,0L14.88,11A.12.12,0,0,0,14.88,10.82Z" fill="#0078d4" />
-</svg>
\ No newline at end of file
diff --git a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/windows-os.svg b/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/windows-os.svg
deleted file mode 100644
index da64baf975..0000000000
--- a/windows/security/operating-system-security/virus-and-threat-protection/microsoft-defender-smartscreen/images/icons/windows-os.svg
+++ /dev/null
@@ -1,3 +0,0 @@
-<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 2048 2048" width="18" height="18" >
-  <path d="M0 0h961v961H0V0zm1087 0h961v961h-961V0zM0 1087h961v961H0v-961zm1087 0h961v961h-961v-961z" fill="#0078D4" />
-</svg>
\ No newline at end of file

From 7e7688e9d3ce844ea5a03c4d8c0b5eb8c8e2f3a8 Mon Sep 17 00:00:00 2001
From: Paolo Matarazzo <74918781+paolomatarazzo@users.noreply.github.com>
Date: Mon, 12 Feb 2024 11:16:02 +0100
Subject: [PATCH 09/13] Add note-devicelock-csp include

---
 .../hello-for-business/configure.md                   |  2 ++
 .../includes/note-devicelock-csp.md                   | 11 +++++++++++
 .../hello-for-business/policy-settings.md             |  2 ++
 3 files changed, 15 insertions(+)
 create mode 100644 windows/security/identity-protection/hello-for-business/includes/note-devicelock-csp.md

diff --git a/windows/security/identity-protection/hello-for-business/configure.md b/windows/security/identity-protection/hello-for-business/configure.md
index 7c498d0bb4..d4c47fb6cd 100644
--- a/windows/security/identity-protection/hello-for-business/configure.md
+++ b/windows/security/identity-protection/hello-for-business/configure.md
@@ -72,6 +72,8 @@ There are different ways to enable and configure Windows Hello for Business in I
   - [Account protection policy][MEM-5]
   - [Identity protection policy template][MEM-6]
 
+[!INCLUDE [note-devicelock-csp](includes/note-devicelock-csp.md)]
+
 ### Verify the tenant-wide policy
 
 To check the Windows Hello for Business policy settings applied at enrollment time:
diff --git a/windows/security/identity-protection/hello-for-business/includes/note-devicelock-csp.md b/windows/security/identity-protection/hello-for-business/includes/note-devicelock-csp.md
new file mode 100644
index 0000000000..3b8bf1d30a
--- /dev/null
+++ b/windows/security/identity-protection/hello-for-business/includes/note-devicelock-csp.md
@@ -0,0 +1,11 @@
+---
+author: paolomatarazzo
+ms.author: paoloma
+ms.date: 01/03/2024
+ms.topic: include
+---
+
+>[!IMPORTANT]
+>If you configure password lenght and complexity settings that are part of the [DeviceLock CSP](/windows/client-management/mdm/policy-csp-devicelock), and PIN lenght and complexity settings defined by the PassportForWork CSP, Windows enforces the strictest policy out of the set of governing policies.
+>
+>The DeviceLock CSP utilizes the Exchange ActiveSync Policy Engine. For more information, see [Exchange ActiveSync Policy Engine Overview](/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/dn282287).
diff --git a/windows/security/identity-protection/hello-for-business/policy-settings.md b/windows/security/identity-protection/hello-for-business/policy-settings.md
index 050b2a862d..c8bc44dd24 100644
--- a/windows/security/identity-protection/hello-for-business/policy-settings.md
+++ b/windows/security/identity-protection/hello-for-business/policy-settings.md
@@ -38,6 +38,8 @@ Select one of the tabs to see the list of available settings:
 
 # [:::image type="icon" source="images/pin.svg"::: **PIN settings**](#tab/pin)
 
+[!INCLUDE [note-devicelock-csp](includes/note-devicelock-csp.md)]
+
 |Setting Name|CSP|GPO|
 |-|-|-|-|
 |[Expiration](#expiration)|✅|✅|

From 68bf1016646a7e2aba11831eae57332e21337605 Mon Sep 17 00:00:00 2001
From: Paolo Matarazzo <74918781+paolomatarazzo@users.noreply.github.com>
Date: Mon, 12 Feb 2024 11:49:59 +0100
Subject: [PATCH 10/13] Update Windows Hello for Business policy hierarchy

---
 .../hello-for-business/configure.md               | 15 ++++++++++-----
 .../includes/note-devicelock-csp.md               | 11 -----------
 .../hello-for-business/policy-settings.md         |  2 --
 3 files changed, 10 insertions(+), 18 deletions(-)
 delete mode 100644 windows/security/identity-protection/hello-for-business/includes/note-devicelock-csp.md

diff --git a/windows/security/identity-protection/hello-for-business/configure.md b/windows/security/identity-protection/hello-for-business/configure.md
index d4c47fb6cd..625c55a872 100644
--- a/windows/security/identity-protection/hello-for-business/configure.md
+++ b/windows/security/identity-protection/hello-for-business/configure.md
@@ -24,13 +24,20 @@ Some of the Windows Hello for Business policies are available for both computer
 - Windows Hello for Business policy settings are enforced using the following hierarchy:
   - User GPO
   - Computer GPO
-  - User MDM
-  - Device MDM
-  - Device Lock policy
+  - User MDM (PassportForWork CSP)
+  - Device MDM (PassportForWork CSP)
+  - Exchange Active Sync (DeviceLock CSP)
 
 >[!IMPORTANT]
 >All devices only have one PIN associated with Windows Hello for Business. This means that any PIN on a device will be subject to the policies specified in the PassportForWork CSP. The values specified take precedence over any complexity rules set via Exchange ActiveSync (EAS) or the DeviceLock CSP.
 
+<!--
+>[!IMPORTANT]
+>If you configure password lenght and complexity settings that are part of the [DeviceLock CSP](/windows/client-management/mdm/policy-csp-devicelock), and PIN lenght and complexity settings defined by the PassportForWork CSP, Windows enforces the strictest policy out of the set of governing policies.
+>
+>The DeviceLock CSP utilizes the Exchange ActiveSync Policy Engine. For more information, see [Exchange ActiveSync Policy Engine Overview](/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/dn282287).
+-->
+
 >[!NOTE]
 > If a policy isn't explicitly configured to require letters or special characters, users can optionally set an alphanumeric PIN.
 
@@ -72,8 +79,6 @@ There are different ways to enable and configure Windows Hello for Business in I
   - [Account protection policy][MEM-5]
   - [Identity protection policy template][MEM-6]
 
-[!INCLUDE [note-devicelock-csp](includes/note-devicelock-csp.md)]
-
 ### Verify the tenant-wide policy
 
 To check the Windows Hello for Business policy settings applied at enrollment time:
diff --git a/windows/security/identity-protection/hello-for-business/includes/note-devicelock-csp.md b/windows/security/identity-protection/hello-for-business/includes/note-devicelock-csp.md
deleted file mode 100644
index 3b8bf1d30a..0000000000
--- a/windows/security/identity-protection/hello-for-business/includes/note-devicelock-csp.md
+++ /dev/null
@@ -1,11 +0,0 @@
----
-author: paolomatarazzo
-ms.author: paoloma
-ms.date: 01/03/2024
-ms.topic: include
----
-
->[!IMPORTANT]
->If you configure password lenght and complexity settings that are part of the [DeviceLock CSP](/windows/client-management/mdm/policy-csp-devicelock), and PIN lenght and complexity settings defined by the PassportForWork CSP, Windows enforces the strictest policy out of the set of governing policies.
->
->The DeviceLock CSP utilizes the Exchange ActiveSync Policy Engine. For more information, see [Exchange ActiveSync Policy Engine Overview](/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/dn282287).
diff --git a/windows/security/identity-protection/hello-for-business/policy-settings.md b/windows/security/identity-protection/hello-for-business/policy-settings.md
index c8bc44dd24..050b2a862d 100644
--- a/windows/security/identity-protection/hello-for-business/policy-settings.md
+++ b/windows/security/identity-protection/hello-for-business/policy-settings.md
@@ -38,8 +38,6 @@ Select one of the tabs to see the list of available settings:
 
 # [:::image type="icon" source="images/pin.svg"::: **PIN settings**](#tab/pin)
 
-[!INCLUDE [note-devicelock-csp](includes/note-devicelock-csp.md)]
-
 |Setting Name|CSP|GPO|
 |-|-|-|-|
 |[Expiration](#expiration)|✅|✅|

From e129e6c72269c3d7fe0a70e70eb6d2d1fc328468 Mon Sep 17 00:00:00 2001
From: Paolo Matarazzo <74918781+paolomatarazzo@users.noreply.github.com>
Date: Mon, 12 Feb 2024 18:30:11 +0100
Subject: [PATCH 11/13] Update Windows Hello for Business configuration
 documentation

---
 .../identity-protection/hello-for-business/configure.md  | 9 ++-------
 1 file changed, 2 insertions(+), 7 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/configure.md b/windows/security/identity-protection/hello-for-business/configure.md
index 625c55a872..ba9a89f070 100644
--- a/windows/security/identity-protection/hello-for-business/configure.md
+++ b/windows/security/identity-protection/hello-for-business/configure.md
@@ -29,14 +29,9 @@ Some of the Windows Hello for Business policies are available for both computer
   - Exchange Active Sync (DeviceLock CSP)
 
 >[!IMPORTANT]
->All devices only have one PIN associated with Windows Hello for Business. This means that any PIN on a device will be subject to the policies specified in the PassportForWork CSP. The values specified take precedence over any complexity rules set via Exchange ActiveSync (EAS) or the DeviceLock CSP.
-
-<!--
->[!IMPORTANT]
->If you configure password lenght and complexity settings that are part of the [DeviceLock CSP](/windows/client-management/mdm/policy-csp-devicelock), and PIN lenght and complexity settings defined by the PassportForWork CSP, Windows enforces the strictest policy out of the set of governing policies.
+>If you configure password length and complexity settings defined by the [DeviceLock CSP](/windows/client-management/mdm/policy-csp-devicelock), and PIN length and complexity settings defined by the PassportForWork CSP, Windows enforces the strictest policy out of the set of governing policies.
 >
->The DeviceLock CSP utilizes the Exchange ActiveSync Policy Engine. For more information, see [Exchange ActiveSync Policy Engine Overview](/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/dn282287).
--->
+>The DeviceLock CSP utilizes the Exchange ActiveSync Policy (EAS) engine. For more information, see [Exchange ActiveSync Policy Engine Overview](/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/dn282287(v=ws.11)).
 
 >[!NOTE]
 > If a policy isn't explicitly configured to require letters or special characters, users can optionally set an alphanumeric PIN.

From 1715f7c8993304877902d0c5de540298fe310807 Mon Sep 17 00:00:00 2001
From: Paolo Matarazzo <74918781+paolomatarazzo@users.noreply.github.com>
Date: Mon, 12 Feb 2024 18:36:58 +0100
Subject: [PATCH 12/13] Fix typos and clarify wording in Windows Hello for
 Business configuration guide

---
 .../hello-for-business/configure.md                | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/configure.md b/windows/security/identity-protection/hello-for-business/configure.md
index ba9a89f070..99023982ca 100644
--- a/windows/security/identity-protection/hello-for-business/configure.md
+++ b/windows/security/identity-protection/hello-for-business/configure.md
@@ -13,14 +13,14 @@ This article describes the options to configure Windows Hello for Business in an
 
 You can configure Windows Hello for Business by using the following options:
 
-- Configuration Service Provider (CSP): commonly used for devices managed by a Mobile Device Management (MDM) solution, like Microsoft Intune. CSPs can also be configured with [provisioning packages](/windows/configuration/provisioning-packages/how-it-pros-can-use-configuration-service-providers#csps-in-windows-configuration-designer), which are usually used at deployment time or for unamanged devices. To configure Windows Hello for Business, use the [PassportForWork CSP][CSP-2]
+- Configuration Service Provider (CSP): commonly used for devices managed by a Mobile Device Management (MDM) solution, like Microsoft Intune. CSPs can also be configured with [provisioning packages](/windows/configuration/provisioning-packages/how-it-pros-can-use-configuration-service-providers#csps-in-windows-configuration-designer), which are usually used at deployment time or for unmanaged devices. To configure Windows Hello for Business, use the [PassportForWork CSP][CSP-2]
 - Group policy (GPO): used for devices that are Active Directory joined or Microsoft Entra hybrid joined, and aren't managed by a device management solution
 
 ## Policy precedence
 
 Some of the Windows Hello for Business policies are available for both computer and user configuration. The following list describes the policy precedence for Windows Hello for Business:
 
-- *User policies* take precedence over *computer policies*. If a user policy is set, the corresponded computer policy is ignored. If a user policy is not set, the computer policy is used
+- *User policies* take precedence over *computer policies*. If a user policy is set, the corresponded computer policy is ignored. If a user policy isn't set, the computer policy is used
 - Windows Hello for Business policy settings are enforced using the following hierarchy:
   - User GPO
   - Computer GPO
@@ -65,9 +65,9 @@ For Microsoft Entra joined devices and Microsoft Entra hybrid joined devices enr
 There are different ways to enable and configure Windows Hello for Business in Intune:
 
 - Using a policy applied at the tenant level. The tenant policy:
-  - Is only applied at enrollment time, and any changes to its configuration won't apply to devices already enrolled in Intune
+  - Is only applied at enrollment time, and any changes to its configuration doesn't apply to devices already enrolled in Intune
   - It applies to *all devices* getting enrolled in Intune. For this reason, the policy is usually disabled and Windows Hello for Business is enabled using a policy targeted to a security group
-- A device configuration policy that is applied *after* device enrollment. Any changes to the policy will be applied to the devices during regular policy refresh intervals. There are different policy types to choose from:
+- A device configuration policy that is applied *after* device enrollment. Any changes to the policy are applied to the devices during regular policy refresh intervals. There are different policy types to choose from:
   - [Settings catalog][MEM-1]
   - [Security baselines][MEM-2]
   - [Custom policy][MEM-3], via the [PassportForWork CSP][MEM-4]
@@ -78,16 +78,16 @@ There are different ways to enable and configure Windows Hello for Business in I
 
 To check the Windows Hello for Business policy settings applied at enrollment time:
 
-1. Sign in to the [Microsoft Intune admin center](https://go.microsoft.com/fwlink/?linkid=2109431).
+1. Sign in to the [Microsoft Intune admin center](https://go.microsoft.com/fwlink/?linkid=2109431)
 1. Select **Devices** > **Windows** > **Windows Enrollment**
 1. Select **Windows Hello for Business**
-1. Verify the status of **Configure Windows Hello for Business** and any settings that may be configured
+1. Verify the status of **Configure Windows Hello for Business** and any settings that might be configured
 
 :::image type="content" source="deploy/images/whfb-intune-disable.png" alt-text="Disablement of Windows Hello for Business from Microsoft Intune admin center." lightbox="deploy/images/whfb-intune-disable.png":::
 
 ## Policy conflicts from multiple policy sources
 
-Windows Hello for Business is designed to be managed by group policy or MDM, but not a combination of both. Avoid mixing group policy and MDM policy settings for Windows Hello for Business. If you mix group policy and MDM policy settings, the MDM settings are ignored until all group policy settings are cleared.
+Windows Hello for Business can be configured by GPO or CSP, but not a combination of both. Avoid mixing GPO and CSP policy settings for Windows Hello for Business. If you mix GPO and CSP policy settings, the CSP settings are ignored until all group policy settings are cleared.
 
 > [!IMPORTANT]
 > The [*MDMWinsOverGP*](/windows/client-management/mdm/policy-csp-controlpolicyconflict#mdmwinsovergp) policy setting doesn't apply to Windows Hello for Business. MDMWinsOverGP only applies to policies in the *Policy CSP*, while the Windows Hello for Business policies are in the *PassportForWork CSP*.

From 4dbe49cedd148f6e3dfb3e58c82c7a612ae18dc3 Mon Sep 17 00:00:00 2001
From: Paolo Matarazzo <74918781+paolomatarazzo@users.noreply.github.com>
Date: Mon, 12 Feb 2024 18:42:01 +0100
Subject: [PATCH 13/13] Update Windows Hello for Business policy hierarchy

---
 .../hello-for-business/configure.md                  | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/identity-protection/hello-for-business/configure.md b/windows/security/identity-protection/hello-for-business/configure.md
index 99023982ca..6d581f8f55 100644
--- a/windows/security/identity-protection/hello-for-business/configure.md
+++ b/windows/security/identity-protection/hello-for-business/configure.md
@@ -22,14 +22,14 @@ Some of the Windows Hello for Business policies are available for both computer
 
 - *User policies* take precedence over *computer policies*. If a user policy is set, the corresponded computer policy is ignored. If a user policy isn't set, the computer policy is used
 - Windows Hello for Business policy settings are enforced using the following hierarchy:
-  - User GPO
-  - Computer GPO
-  - User MDM (PassportForWork CSP)
-  - Device MDM (PassportForWork CSP)
-  - Exchange Active Sync (DeviceLock CSP)
+  - User - GPO
+  - Computer - GPO
+  - User - PassportForWork CSP
+  - Device - PassportForWork CSP
+  - Exchange Active Sync - [DeviceLock CSP](/windows/client-management/mdm/policy-csp-devicelock)
 
 >[!IMPORTANT]
->If you configure password length and complexity settings defined by the [DeviceLock CSP](/windows/client-management/mdm/policy-csp-devicelock), and PIN length and complexity settings defined by the PassportForWork CSP, Windows enforces the strictest policy out of the set of governing policies.
+>If you configure password length and complexity settings defined by the DeviceLock CSP, and PIN length and complexity settings defined by the PassportForWork CSP, Windows enforces the strictest policy out of the set of governing policies.
 >
 >The DeviceLock CSP utilizes the Exchange ActiveSync Policy (EAS) engine. For more information, see [Exchange ActiveSync Policy Engine Overview](/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/dn282287(v=ws.11)).