From a75c6ecfffa08ea71fe6c5ddfb10ff6a4267ad4d Mon Sep 17 00:00:00 2001
From: Adam Gross <github@grosshome.com>
Date: Wed, 5 Aug 2020 10:36:42 -0500
Subject: [PATCH 01/38] Updated several app names that have changed

I have updated the names of several apps. Can someone also update this list for Windows 10 2004?
---
 .../application-management/apps-in-windows-10.md   | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/application-management/apps-in-windows-10.md b/windows/application-management/apps-in-windows-10.md
index c27ad32063..9d150d9583 100644
--- a/windows/application-management/apps-in-windows-10.md
+++ b/windows/application-management/apps-in-windows-10.md
@@ -51,13 +51,13 @@ Here are the provisioned Windows apps in Windows 10 versions 1803, 1809, 1903, a
 | Microsoft.HEIFImageExtension                 | [HEIF Image Extensions](ms-windows-store://pdp/?PFN=Microsoft.HEIFImageExtension_8wekyb3d8bbwe)                    |      |   x  |   x  |   x  |           No          |
 | Microsoft.Messaging                          | [Microsoft Messaging](ms-windows-store://pdp/?PFN=Microsoft.Messaging_8wekyb3d8bbwe)                               |   x  |   x  |   x  |   x  |           No          |
 | Microsoft.Microsoft3DViewer                  | [Mixed Reality Viewer](ms-windows-store://pdp/?PFN=Microsoft.Microsoft3DViewer_8wekyb3d8bbwe)                      |   x  |   x  |   x  |   x  |           No          |
-| Microsoft.MicrosoftOfficeHub                 | [My Office](ms-windows-store://pdp/?PFN=Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe)                                |   x  |   x  |   x  |   x  |          Yes          |
+| Microsoft.MicrosoftOfficeHub                 | [Office](ms-windows-store://pdp/?PFN=Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe)                                |   x  |   x  |   x  |   x  |          Yes          |
 | Microsoft.MicrosoftSolitaireCollection       | [Microsoft Solitaire Collection](ms-windows-store://pdp/?PFN=Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe) |   x  |   x  |   x  |   x  |          Yes          |
 | Microsoft.MicrosoftStickyNotes               | [Microsoft Sticky Notes](ms-windows-store://pdp/?PFN=Microsoft.MicrosoftStickyNotes_8wekyb3d8bbwe)                 |   x  |   x  |   x  |   x  |           No          |
 | Microsoft.MixedReality.Portal                | [Mixed Reality Portal](ms-windows-store://pdp/?PFN=Microsoft.MixedReality.Portal_8wekyb3d8bbwe)                    |      |   x  |   x  |   x  |           No          |
 | Microsoft.MSPaint                            | [Paint 3D](ms-windows-store://pdp/?PFN=Microsoft.MSPaint_8wekyb3d8bbwe)                                            |   x  |   x  |   x  |   x  |           No          |
-| Microsoft.Office.OneNote                     | [OneNote](ms-windows-store://pdp/?PFN=Microsoft.Office.OneNote_8wekyb3d8bbwe)                                      |   x  |   x  |   x  |   x  |          Yes          |
-| Microsoft.OneConnect                         | [Paid Wi-Fi & Cellular](ms-windows-store://pdp/?PFN=Microsoft.OneConnect_8wekyb3d8bbwe)                            |   x  |   x  |   x  |   x  |           No          |
+| Microsoft.Office.OneNote                     | [OneNote for Windows 10](ms-windows-store://pdp/?PFN=Microsoft.Office.OneNote_8wekyb3d8bbwe)                                      |   x  |   x  |   x  |   x  |          Yes          |
+| Microsoft.OneConnect                         | [Mobile Plans](ms-windows-store://pdp/?PFN=Microsoft.OneConnect_8wekyb3d8bbwe)                            |   x  |   x  |   x  |   x  |           No          |
 | Microsoft.Outlook.DesktopIntegrationServices |                                                                                                                    |      |      |      |   x  |                       |
 | Microsoft.People                             | [Microsoft People](ms-windows-store://pdp/?PFN=Microsoft.People_8wekyb3d8bbwe)                                     |   x  |   x  |   x  |   x  |           No          |
 | Microsoft.Print3D                            | [Print 3D](ms-windows-store://pdp/?PFN=Microsoft.Print3D_8wekyb3d8bbwe)                                            |   x  |   x  |   x  |   x  |           No          |
@@ -77,10 +77,10 @@ Here are the provisioned Windows apps in Windows 10 versions 1803, 1809, 1903, a
 | Microsoft.WindowsMaps                        | [Windows Maps](ms-windows-store://pdp/?PFN=Microsoft.WindowsMaps_8wekyb3d8bbwe)                                    |   x  |   x  |   x  |   x  |           No          |
 | Microsoft.WindowsSoundRecorder               | [Windows Voice Recorder](ms-windows-store://pdp/?PFN=Microsoft.WindowsSoundRecorder_8wekyb3d8bbwe)                 |   x  |   x  |   x  |   x  |           No          |
 | Microsoft.WindowsStore                       | [Microsoft Store](ms-windows-store://pdp/?PFN=Microsoft.WindowsStore_8wekyb3d8bbwe)                                |   x  |   x  |   x  |   x  |           No          |
-| Microsoft.Xbox.TCUI                          | [Xbox TCUI](ms-windows-store://pdp/?PFN=Microsoft.Xbox.TCUI_8wekyb3d8bbwe)                                         |   x  |   x  |   x  |   x  |           No          |
-| Microsoft.XboxApp                            | [Xbox](ms-windows-store://pdp/?PFN=Microsoft.XboxApp_8wekyb3d8bbwe)                                                |   x  |   x  |   x  |   x  |           No          |
-| Microsoft.XboxGameOverlay                    | [Xbox Game Bar](ms-windows-store://pdp/?PFN=Microsoft.XboxGameOverlay_8wekyb3d8bbwe)                               |   x  |   x  |   x  |   x  |           No          |
-| Microsoft.XboxGamingOverlay                  | [Xbox Gaming Overlay](ms-windows-store://pdp/?PFN=Microsoft.XboxGamingOverlay_8wekyb3d8bbwe)                       |   x  |   x  |   x  |   x  |           No          |
+| Microsoft.Xbox.TCUI                          | [Xbox Live in-game experience](ms-windows-store://pdp/?PFN=Microsoft.Xbox.TCUI_8wekyb3d8bbwe)                                         |   x  |   x  |   x  |   x  |           No          |
+| Microsoft.XboxApp                            | [Xbox Console Companion](ms-windows-store://pdp/?PFN=Microsoft.XboxApp_8wekyb3d8bbwe)                                                |   x  |   x  |   x  |   x  |           No          |
+| Microsoft.XboxGameOverlay                    | [Xbox Game Bar Plugin](ms-windows-store://pdp/?PFN=Microsoft.XboxGameOverlay_8wekyb3d8bbwe)                               |   x  |   x  |   x  |   x  |           No          |
+| Microsoft.XboxGamingOverlay                  | [Xbox Game Bar](ms-windows-store://pdp/?PFN=Microsoft.XboxGamingOverlay_8wekyb3d8bbwe)                       |   x  |   x  |   x  |   x  |           No          |
 | Microsoft.XboxIdentityProvider               | [Xbox Identity Provider](ms-windows-store://pdp/?PFN=Microsoft.XboxIdentityProvider_8wekyb3d8bbwe)                 |   x  |   x  |   x  |   x  |           No          |
 | Microsoft.XboxSpeechToTextOverlay            |                                                                                                                    |   x  |   x  |   x  |   x  |           No          |
 | Microsoft.YourPhone                          | [Your Phone](ms-windows-store://pdp/?PFN=Microsoft.YourPhone_8wekyb3d8bbwe)                                        |      |   x  |   x  |   x  |           No          |

From e401b14fa5746aabd67000c2180a87ef70b3b772 Mon Sep 17 00:00:00 2001
From: Russ Rimmerman <russ.rimmerman@microsoft.com>
Date: Sat, 8 Aug 2020 19:56:12 -0500
Subject: [PATCH 02/38] Update
 open-the-group-policy-management-console-to-windows-firewall.md

This heading doesn't seem to make sense and it's lacking sufficient wording in the navigation pane
---
 ...e-group-policy-management-console-to-windows-firewall.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall.md b/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall.md
index bce220a506..134a6bb928 100644
--- a/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/open-the-group-policy-management-console-to-windows-firewall.md
@@ -1,6 +1,6 @@
 ---
-title: Open a GPO to Windows Defender Firewall (Windows 10)
-description: Open the Group Policy Management Console to Windows Defender Firewall with Advanced Security
+title: Group Policy Management of Windows Defender Firewall (Windows 10)
+description: Group Policy Management of Windows Defender Firewall with Advanced Security
 ms.assetid: 5090b2c8-e038-4905-b238-19ecf8227760
 ms.reviewer: 
 ms.author: dansimp
@@ -17,7 +17,7 @@ ms.topic: conceptual
 ms.date: 04/02/2017
 ---
 
-# Open the Group Policy Management Console to Windows Defender Firewall
+# Group Policy Management of Windows Defender Firewall
 
 **Applies to**
 -   Windows 10

From 0556754e06163a59cb6327d134f90fa04f54ce34 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 12 Aug 2020 09:39:45 +0500
Subject: [PATCH 03/38] Update bitlocker-to-go-faq.md

---
 .../information-protection/bitlocker/bitlocker-to-go-faq.md     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/information-protection/bitlocker/bitlocker-to-go-faq.md b/windows/security/information-protection/bitlocker/bitlocker-to-go-faq.md
index e8bd11f12b..275443414a 100644
--- a/windows/security/information-protection/bitlocker/bitlocker-to-go-faq.md
+++ b/windows/security/information-protection/bitlocker/bitlocker-to-go-faq.md
@@ -24,7 +24,7 @@ ms.date: 07/10/2018
 
 ## What is BitLocker To Go?
 
-BitLocker To Go is BitLocker Drive Encryption on removable data drives. This includes the encryption of USB flash drives, SD cards, external hard disk drives, and other drives formatted by using the NTFS, FAT16, FAT32, or exFAT file systems. 
+BitLocker To Go is BitLocker Drive Encryption on removable data drives. This includes the encryption of USB flash drives, SD cards, external hard disk drives, and other drives formatted by using the NTFS, FAT16, FAT32, or exFAT file systems. Drive partitioning must meet the [BitLocker Drive Encryption Partitioning Requirements](https://docs.microsoft.com/windows-hardware/manufacture/desktop/bitlocker-drive-encryption#bitlocker-drive-encryption-partitioning-requirements).
 
 As with BitLocker, drives that are encrypted using BitLocker To Go can be opened with a password or smart card on another computer by using **BitLocker Drive Encryption** in Control Panel. 
 

From 6a3aabb8663ecefec0c988147f4beea056cd1ac4 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Wed, 12 Aug 2020 17:13:42 +0500
Subject: [PATCH 04/38] Update
 network-access-restrict-clients-allowed-to-make-remote-sam-calls.md

---
 ...ccess-restrict-clients-allowed-to-make-remote-sam-calls.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/security-policy-settings/network-access-restrict-clients-allowed-to-make-remote-sam-calls.md b/windows/security/threat-protection/security-policy-settings/network-access-restrict-clients-allowed-to-make-remote-sam-calls.md
index f5a0e5c08f..ed9022b411 100644
--- a/windows/security/threat-protection/security-policy-settings/network-access-restrict-clients-allowed-to-make-remote-sam-calls.md
+++ b/windows/security/threat-protection/security-policy-settings/network-access-restrict-clients-allowed-to-make-remote-sam-calls.md
@@ -91,9 +91,9 @@ In other words, the hotfix in each KB article provides the necessary code and fu
 
 | |Default SDDL	|Translated SDDL| Comments
 |---|---|---|---|
-|Windows Server 2016 domain controller (reading Active Directory)|“”|-|Everyone has read permissions to preserve compatibility.|
+|Windows Server 2016 (or later) domain controller (reading Active Directory)|“”|-|Everyone has read permissions to preserve compatibility.|
 |Earlier domain controller |-|-|No access check is performed by default.|
-|Windows 10, version 1607 non-domain controller|O:SYG:SYD:(A;;RC;;;BA)| Owner: NTAUTHORITY/SYSTEM (WellKnownGroup) (S-1-5-18) <br>Primary group: NTAUTHORITY/SYSTEM (WellKnownGroup) (S-1-5-18) <br>DACL: <br>•	Revision: 0x02 <br>•	Size: 0x0020 <br>•	Ace Count: 0x001 <br>•	Ace[00]------------------------- <br> &nbsp;&nbsp;AceType:0x00 <br> &nbsp;&nbsp;(ACCESS\_ALLOWED_ACE_TYPE)<br> &nbsp;&nbsp;AceSize:0x0018 <br> &nbsp;&nbsp;InheritFlags:0x00 <br> &nbsp;&nbsp;Access Mask:0x00020000 <br> &nbsp;&nbsp;AceSid: BUILTIN\Administrators (Alias) (S-1-5-32-544) <br><br> &nbsp;&nbsp;SACL: Not present |Grants RC access (READ_CONTROL, also known as STANDARD_RIGHTS_READ) only to members of the local (built-in) Administrators group. |
+|Windows 10, version 1607 (or later) non-domain controller|O:SYG:SYD:(A;;RC;;;BA)| Owner: NTAUTHORITY/SYSTEM (WellKnownGroup) (S-1-5-18) <br>Primary group: NTAUTHORITY/SYSTEM (WellKnownGroup) (S-1-5-18) <br>DACL: <br>•	Revision: 0x02 <br>•	Size: 0x0020 <br>•	Ace Count: 0x001 <br>•	Ace[00]------------------------- <br> &nbsp;&nbsp;AceType:0x00 <br> &nbsp;&nbsp;(ACCESS\_ALLOWED_ACE_TYPE)<br> &nbsp;&nbsp;AceSize:0x0018 <br> &nbsp;&nbsp;InheritFlags:0x00 <br> &nbsp;&nbsp;Access Mask:0x00020000 <br> &nbsp;&nbsp;AceSid: BUILTIN\Administrators (Alias) (S-1-5-32-544) <br><br> &nbsp;&nbsp;SACL: Not present |Grants RC access (READ_CONTROL, also known as STANDARD_RIGHTS_READ) only to members of the local (built-in) Administrators group. |
 |Earlier non-domain controller |-|-|No access check is performed by default.|
 
 ## Policy management

From 69428242703c27f768b02fcd5b8845563324f56a Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 12 Aug 2020 14:26:33 -0700
Subject: [PATCH 05/38] adding topic, started formatting

---
 .../troubleshooting-uwp-firewall.md           | 2074 +++++++++++++++++
 1 file changed, 2074 insertions(+)
 create mode 100644 windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md

diff --git a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
new file mode 100644
index 0000000000..dbc2f8af22
--- /dev/null
+++ b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
@@ -0,0 +1,2074 @@
+---
+title: Troubleshooting UWP App Connectivity Issues in Windows Firewall
+description: Troubleshooting UWP App Connectivity Issues in Windows Firewall
+
+ms.reviewer: 
+ms.author: dansimp
+ms.prod: w10
+ms.sitesec: library
+ms.pagetype: security
+ms.localizationpriority: medium
+author: dansimp
+manager: dansimp
+ms.collection: M365-security-compliance
+ms.topic: troubleshooting
+---
+
+# Troubleshooting UWP App Connectivity Issues
+
+This document is intended to help network admins, support engineers, and developers to
+investigate UWP app network connectivity issues.
+
+# Introduction
+
+This document guides you through steps to debug different Universal Windows Platform (UWP) app network connectivity issues by providing practical case examples.
+
+UWP app network connectivity issues typically stem from one of the following causes:
+
+1. The UWP app was not permitted to receive loopback traffic (this must be configured as, by default, a UWP app is not allowed to receive loopback traffic).
+2. The UWP app is missing the proper capability tokens.
+3. The private range is configured incorrectly (i.e. set incorrectly through GP/MDM policies, etc.)
+
+To understand these causes more thoroughly, there are several concepts that should be reviewed.
+
+The traffic of network packets (e.g. what's permitted and what’s not) on Windows is ultimately determined by the Windows Filtering Platform (WFP). When a UWP app
+or the private range is configured incorrectly, it affects how the UWP app’s network traffic will be processed by WFP.
+
+When a packet is processed by WFP, the characteristics of that packet must explicitly match all the conditions of a filter to either be permitted or dropped to its target address. Connectivity issues typically happen when the packet does not match the filter conditions of any filters, leading the packet to be dropped by a default block filter. The presence of the default block
+filters ensures network isolation for UWP applications. Specifically, it guarantees a network drop for a packet that does not have the correct capabilities for the resource it is trying to reach, ensuring the application’s granular access to each resource type and preventing the application from “escaping” its environment.
+
+For more information on the filter arbitration algorithm and network isolation,
+please read [Filter
+Arbitration](https://docs.microsoft.com/en-us/windows/win32/fwp/filter-arbitration)
+and
+[Isolation](https://docs.microsoft.com/en-us/windows/win32/secauthz/appcontainer-isolation).
+
+The next sections will cover debugging case examples for loopback and
+non-loopback UWP app network connectivity issues.
+
+> [!NOTE] 
+> As improvements to debugging and diagnostics around the Windows Filtering Platform are made, the trace examples in this document may not exactly match the
+traces collected on an older Windows build.
+
+# Debugging UWP App Loopback scenarios
+
+If you have a scenario where you are establishing a TCP/IP connection between two processes on the same host where one of them is a UWP app, you must enable loopback.
+
+To enable loopback for client outbound connections, run the following in a command prompt:
+
+`CheckNetIsolation.exe LoopbackExempt -a -n=\<AppContainer or Package Family\>`
+
+To enable loopback for server inbound connections, please run the following in a
+command prompt:
+
+`CheckNetIsolation.exe LoopbackExempt -is -n=\<AppContainer or Package Family\>`
+
+You can ensure loopback is enabled by checking the appx manifests of both the
+sender and receiver.
+
+For more information about loopback scenarios, please read [Communicating with
+localhost
+(loopback)](https://docs.microsoft.com/en-us/windows/iot-core/develop-your-app/loopback)
+
+# Debugging Live Drops
+
+If the issue happened recently, but you find you are not able to reproduce the
+issue, go to Debugging Past Drops for the appropriate trace commands.
+
+If you can consistently reproduce the issue, then you can run the following in
+an admin command prompt to gather a fresh trace:
+
+```
+Netsh wfp capture start keywords=19
+\<Run UWP app\>
+Netsh wfp capture stop
+```
+
+The above commands will generate a wfpdiag.cab. Inside the .cab exists a
+wfpdiag.xml, which contains any allow or drop netEvents and filters that existed
+during that repro. Without “keywords=19”, the trace will only collect drop
+netEvents.
+
+Inside the wfpdiag.xml, search for netEvents which have
+FWPM_NET_EVENT_TYPE_CLASSIFY_DROP as the netEvent type. To find the relevant
+drop events, search for the drop events with matching destination IP address,
+package SID, or application ID name. The characters in the application ID name
+will be separated by periods:
+```
+(ex) 					
+
+\<asString\>
+
+\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.w.i.n.d.o.w.s.\\.s.y.s.t.e.m.3.2.\\.s.v.c.h.o.s.t...e.x.e...
+
+\</asString\>
+```
+The netEvent will have more information about the packet that was dropped
+including information about its capabilities, the filter that dropped the
+packet, and much more.
+
+## Case 1: UWP app connects to Internet target address with all capabilities
+
+In this example, the UWP app successfully connects to bing.com
+[2620:1ec:c11::200].
+
+A packet from a UWP app needs the correct networking capability token for the
+resource it is trying to reach.
+
+In this scenario, the app could successfully send a packet to the Internet
+target because it had an Internet capability token.
+
+The following shows the allow netEvent of the app connecting to the target IP.
+The netEvent contains information about the packet including its local address,
+remote address, capabilities, etc.
+
+```**Classify Allow netEvent, Wfpdiag-Case-1.xml**
+
+\<netEvent\>
+\<header\>
+>   \<timeStamp\>2020-05-21T17:25:59.070Z\</timeStamp\>
+>   \<flags numItems="9"\>
+>   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
+>   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
+>   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
+>   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
+>   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
+>   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
+>   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>	
+>   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
+>   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
+>   \</flags\>
+>   \<ipVersion\>FWP_IP_VERSION_V6\</ipVersion\>
+>   \<ipProtocol\>6\</ipProtocol\>				
+>   \<localAddrV6.byteArray16\>2001:4898:30:3:256c:e5ba:12f3:beb1\</localAddrV6.byteArray16\>	\<remoteAddrV6.byteArray16\>2620:1ec:c11::200\</remoteAddrV6.byteArray16\>
+\<localPort\>52127\</localPort\>
+\<remotePort\>443\</remotePort\>
+\<scopeId\>0\</scopeId\>
+\<appId\>				
+>   \<data\>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\</data\>
+>   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+>   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.0...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
+\</appId\>
+\<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
+\<addressFamily\>FWP_AF_INET6\</addressFamily\>
+\<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
+\<enterpriseId/\>
+\<policyFlags\>0\</policyFlags\>
+\<effectiveName/\>
+\</header\>
+\<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_ALLOW\</type\>
+\<classifyAllow\>
+>   \<filterId\>125918\</filterId\>
+>   \<layerId\>50\</layerId\>
+>   \<reauthReason\>0\</reauthReason\>
+>   \<originalProfile\>1\</originalProfile\>
+>   \<currentProfile\>1\</currentProfile\>
+\</classifyAllow\>
+\<internalFields\>
+\<internalFlags/\>
+\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
+\<capabilities numItems="3"\>				
+>   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>			\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
+>   \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
+\</capabilities\>
+\<fqbnVersion\>0\</fqbnVersion\>
+\<fqbnName/\>
+\<terminatingFiltersInfo numItems="2"\>
+>   \<item\>
+		\<filterId\>125918\</filterId\>					
+>   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
+		\<actionType\>FWP_ACTION_PERMIT\</actionType\>
+>   \</item\>
+>   \<item\>
+		\<filterId\>121167\</filterId\>
+		\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
+		\<actionType\>FWP_ACTION_PERMIT\</actionType\>
+    \</item\>
+\</terminatingFiltersInfo\>
+\</internalFields\>
+\</netEvent\>
+```
+
+The following is the filter that permitted the packet to be sent to the target
+address according to the terminatingFiltersInfo in the netEvent. This packet was
+allowed by Filter \#125918 which is from the InternetClient Default Rule.
+
+**InternetClient Default Rule Filter \#125918, Wfpdiag-Case-1.xml**
+```
+\<item\>
+
+>   \<filterKey\>{3389708e-f7ae-4ebc-a61a-f659065ab24e}\</filterKey\>
+
+>   \<displayData\>
+
+>   \<name\>InternetClient Default Rule\</name\>
+
+>   \<description\>InternetClient Default Rule\</description\>
+
+>   \</displayData\>
+
+>   \<flags/\>
+
+>   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
+
+>   \<providerData\>
+
+>   \<data\>ad2b000000000000\</data\>
+
+>   \<asString\>.+......\</asString\>
+
+>   \</providerData\>
+
+>   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V6\</layerKey\>
+
+>   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
+
+>   \<weight\>
+
+>   \<type\>FWP_EMPTY\</type\>
+
+>   \</weight\>
+
+>   \<filterCondition numItems="5"\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SID\</type\>
+
+>   \<sid\>S-1-0-0\</sid\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_RANGE\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_RANGE_TYPE\</type\>
+
+>   \<rangeValue\>
+
+>   \<valueLow\>
+
+>   \<type\>FWP_BYTE_ARRAY16_TYPE\</type\>
+
+>   \<byteArray16\>::\</byteArray16\>
+
+>   \</valueLow\>
+
+>   \<valueHigh\>
+
+>   \<type\>FWP_BYTE_ARRAY16_TYPE\</type\>
+
+>   \<byteArray16\>ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff\</byteArray16\>
+
+>   \</valueHigh\>
+
+>   \</rangeValue\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>1\</uint32\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>1\</uint32\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
+
+>   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \</filterCondition\>
+
+>   \<action\>
+
+>   \<type\>FWP_ACTION_PERMIT\</type\>
+
+>   \<filterType/\>
+
+>   \</action\>
+
+>   \<rawContext\>0\</rawContext\>
+
+>   \<reserved/\>
+
+>   \<filterId\>125918\</filterId\>
+
+>   \<effectiveWeight\>
+
+>   \<type\>FWP_UINT64\</type\>
+
+>   \<uint64\>103079219136\</uint64\>
+
+>   \</effectiveWeight\>
+
+\</item\>
+```
+One condition is
+
+**Capabilities Condition in Filter \#125918, Wfpdiag-Case-1.xml**
+```
+\<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
+
+>   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
+
+>   \</conditionValue\>
+
+\</item\>
+```
+which is the condition for checking capabilities in this filter.
+
+The important part of this condition is S-1-15-3-1, which is the capability SID
+for INTERNET_CLIENT privileges.
+
+From the netEvent’s capabilities section,
+```
+Capabilities from netEvent, Wfpdiag-Case-1.xml
+
+\<capabilities numItems="3"\>				
+
+>   **\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>**			\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
+
+\<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
+
+\</capabilities\>
+```
+it shows the packet came from an app with an Internet client token
+(FWP_CAPABILITIES_FLAG_INTERNET_CLIENT) which matches the capability SID in the
+filter. All the other conditions are also met for the filter, so the packet is
+allowed.
+
+Something to note is that the only capability token required for the packet to
+reach bing.com was the Internet client token, even though this example showed
+the packet having all capabilities.
+
+## Case 2: UWP APP cannot reach Internet target address and has no capabilities
+
+In this example, the UWP app is unable to connect to bing.com
+[2620:1ec:c11::200].
+
+The following is a drop netEvent that was captured in the traces during this
+repro.
+
+**Classify Drop netEvent, Wfpdiag-Case-2.xml**
+```
+\<netEvent\>
+\<header\>
+\<timeStamp\>2020-03-30T23:53:09.720Z\</timeStamp\>
+\<flags numItems="9"\>
+\<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
+\</flags\>
+\<ipVersion\>FWP_IP_VERSION_V6\</ipVersion\>
+\<ipProtocol\>6\</ipProtocol\>
+\<localAddrV6.byteArray16\>2001:4898:1a:1045:8469:3351:e6e2:543\</localAddrV6.byteArray16\>
+\<remoteAddrV6.byteArray16\>2620:1ec:c11::200\</remoteAddrV6.byteArray16\>
+\<localPort\>63187\</localPort\>
+\<remotePort\>443\</remotePort\>
+\<scopeId\>0\</scopeId\>
+\<appId\>
+\<data\>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\</data\>
+\<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...4...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
+\</appId\>
+\<userId\>S-1-5-21-2788718703-1626973220-3690764900-1000\</userId\>
+\<addressFamily\>FWP_AF_INET6\</addressFamily\>
+\<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
+\<enterpriseId/\>
+\<policyFlags\>0\</policyFlags\>
+\<effectiveName/\>
+\</header\>
+\<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
+\<classifyDrop\>
+\<filterId\>68893\</filterId\>
+\<layerId\>50\</layerId\>
+\<reauthReason\>0\</reauthReason\>
+\<originalProfile\>1\</originalProfile\>
+\<currentProfile\>1\</currentProfile\>
+\<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
+\<isLoopback\>false\</isLoopback\>
+\<vSwitchId/\>
+\<vSwitchSourcePort\>0\</vSwitchSourcePort\>
+\<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
+\</classifyDrop\>
+\<internalFields\>
+\<internalFlags/\>
+\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
+\<capabilities/\>
+\<fqbnVersion\>0\</fqbnVersion\>
+\<fqbnName/\>
+\<terminatingFiltersInfo numItems="2"\>
+\<item\>
+\<filterId\>68893\</filterId\>
+\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
+\<actionType\>FWP_ACTION_BLOCK\</actionType\>
+\</item\>
+\<item\>
+\<filterId\>68879\</filterId\>
+\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
+\<actionType\>FWP_ACTION_PERMIT\</actionType\>
+\</item\>
+\</terminatingFiltersInfo\>
+\</internalFields\>
+\</netEvent\>
+```
+The first thing that should be checked in the netEvent is the capabilities
+field\*. In this example, the capabilities field is empty, indicating that the
+UWP app was not configured with any capability tokens to allow it to connect to
+a network.
+
+**Internal Fields from netEvent, Wfpdiag-Case-2.xml**
+```
+\<internalFields\>
+\<internalFlags/\>
+\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
+**\<capabilities/\>**
+\<fqbnVersion\>0\</fqbnVersion\>
+\<fqbnName/\>
+\<terminatingFiltersInfo numItems="2"\>
+\<item\>
+\<filterId\>68893\</filterId\>
+\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
+\<actionType\>FWP_ACTION_BLOCK\</actionType\>
+\</item\>
+\<item\>
+\<filterId\>68879\</filterId\>
+\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
+\<actionType\>FWP_ACTION_PERMIT\</actionType\>
+\</item\>
+\</terminatingFiltersInfo\>
+\</internalFields\>
+```
+The netEvent also gives us information about the filter that explicitly dropped
+this packet, like the FilterId, listed under classify drop
+
+**Classify Drop from netEvent, Wfpdiag-Case-2.xml**
+```
+\<classifyDrop\>
+**\<filterId\>68893\</filterId\>**
+\<layerId\>50\</layerId\>
+\<reauthReason\>0\</reauthReason\>
+\<originalProfile\>1\</originalProfile\>
+\<currentProfile\>1\</currentProfile\>
+\<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
+\<isLoopback\>false\</isLoopback\>
+\<vSwitchId/\>
+\<vSwitchSourcePort\>0\</vSwitchSourcePort\>
+\<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
+\</classifyDrop\>
+```
+If we search for that filter, \#68893, in Wfpdiag-Case2.xml, we will see that
+the packet was dropped by a Block Outbound Default Rule filter.
+
+**Block Outbound Default Rule Filter \#68893, Wfpdiag-Case-2.xml**
+
+```
+\<item\>
+>   \<filterKey\>{6d51582f-bcf8-42c4-afc9-e2ce7155c11b}\</filterKey\>
+>   \<displayData\>
+>   \<name\>**Block Outbound Default Rule**\</name\>
+>   \<description\>Block Outbound Default Rule\</description\>
+>   \</displayData\>
+>   \<flags/\>
+>   \<providerKey\>{4b153735-1049-4480-aab4-d1b9bdc03710}\</providerKey\>
+>   \<providerData\>
+>   \<data\>b001000000000000\</data\>
+>   \<asString\>........\</asString\>
+>   \</providerData\>
+>   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V6\</layerKey\>
+>   \<subLayerKey\>{b3cdd441-af90-41ba-a745-7c6008ff2300}\</subLayerKey\>
+>   \<weight\>
+>   \<type\>FWP_EMPTY\</type\>
+>   \</weight\>
+>   \<filterCondition numItems="1"\>
+>   \<item\>
+>   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
+>   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
+>   \<conditionValue\>
+>   \<type\>FWP_SID\</type\>
+>   \<sid\>S-1-0-0\</sid\>
+>   \</conditionValue\>
+>   \</item\>
+>   \</filterCondition\>
+>   \<action\>
+>   \<type\>FWP_ACTION_BLOCK\</type\>
+>   \<filterType/\>
+>   \</action\>
+>   \<rawContext\>0\</rawContext\>
+>   \<reserved/\>
+>   \<filterId\>68893\</filterId\>
+>   \<effectiveWeight\>
+>   \<type\>FWP_UINT64\</type\>
+>   \<uint64\>68719476736\</uint64\>
+>   \</effectiveWeight\>
+\</item\>
+```
+
+A packet will reach a default block filter if the packet was unable to match any of the conditions of other filters, and thus not allowed by the other filters in
+the same sublayer.
+
+If the packet had the correct capability token,
+FWP_CAPABILITIES_FLAG_INTERNET_CLIENT, it would have matched a condition for a
+non-default block filter and would have been permitted to reach bing.com.
+Without the correct capability tokens, the packet will be explicitly dropped by
+a default block outbound filter.
+
+## Case 3: UWP app cannot reach Internet target address without Internet Client capability
+
+In this example, the app is unable to connect to bing.com [2620:1ec:c11::200].
+
+The app in this scenario only has private network capabilities (Client and
+Server). The app is trying to connect to an Internet resource (bing.com), but
+only has a private network token. Therefore, the packet will be dropped.
+
+**Classify Drop netEvent, Wfpdiag-Case-3.xml**
+```
+\<netEvent\>
+\<header\>
+\<timeStamp\>2020-03-31T16:57:18.570Z\</timeStamp\>
+\<flags numItems="9"\>
+\<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
+\<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
+\</flags\>
+\<ipVersion\>FWP_IP_VERSION_V6\</ipVersion\>
+\<ipProtocol\>6\</ipProtocol\>
+\<localAddrV6.byteArray16\>2001:4898:1a:1045:9c65:7805:dd4a:cc4b\</localAddrV6.byteArray16\>
+\<remoteAddrV6.byteArray16\>2620:1ec:c11::200\</remoteAddrV6.byteArray16\>
+\<localPort\>64086\</localPort\>
+\<remotePort\>443\</remotePort\>
+\<scopeId\>0\</scopeId\>
+\<appId\>
+\<data\>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\</data\>
+\<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...5...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
+\</appId\>
+\<userId\>S-1-5-21-2788718703-1626973220-3690764900-1000\</userId\>
+\<addressFamily\>FWP_AF_INET6\</addressFamily\>
+\<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
+\<enterpriseId/\>
+\<policyFlags\>0\</policyFlags\>
+\<effectiveName/\>
+\</header\>
+\<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
+\<classifyDrop\>
+\<filterId\>68893\</filterId\>
+\<layerId\>50\</layerId\>
+\<reauthReason\>0\</reauthReason\>
+\<originalProfile\>1\</originalProfile\>
+\<currentProfile\>1\</currentProfile\>
+\<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
+\<isLoopback\>false\</isLoopback\>
+\<vSwitchId/\>
+\<vSwitchSourcePort\>0\</vSwitchSourcePort\>
+\<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
+\</classifyDrop\>
+\<internalFields\>
+\<internalFlags/\>
+\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
+**\<capabilities numItems="1"\>**
+**\<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>**
+**\</capabilities\>**
+\<fqbnVersion\>0\</fqbnVersion\>
+\<fqbnName/\>
+\<terminatingFiltersInfo numItems="2"\>
+\<item\>
+\<filterId\>68893\</filterId\>
+\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
+\<actionType\>FWP_ACTION_BLOCK\</actionType\>
+\</item\>
+\<item\>
+\<filterId\>68879\</filterId\>
+\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
+\<actionType\>FWP_ACTION_PERMIT\</actionType\>
+\</item\>
+\</terminatingFiltersInfo\>
+\</internalFields\>
+\</netEvent\>
+```
+
+## Case 4: UWP app cannot reach Intranet target address without Private Network capability
+
+In this example, the UWP app is unable to reach the Intranet target address,
+10.50.50.50, because it does not have a Private Network capability.
+
+**Classify Drop netEvent, Wfpdiag-Case-4.xml**
+
+\<netEvent\>
+
+\<header\>
+
+>   \<timeStamp\>2020-05-22T21:29:28.601Z\</timeStamp\>
+
+>   \<flags numItems="9"\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
+
+>   \</flags\>
+
+>   \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
+
+>   \<ipProtocol\>6\</ipProtocol\>
+
+>   \<localAddrV4\>10.216.117.17\</localAddrV4\>
+
+>   \<remoteAddrV4\>10.50.50.50\</remoteAddrV4\>
+
+>   \<localPort\>52998\</localPort\>
+
+>   \<remotePort\>53\</remotePort\>
+
+>   \<scopeId\>0\</scopeId\>
+
+>   \<appId\>				
+
+>   \<data\>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\</data\>
+
+>   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+>   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.1...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
+
+>   \</appId\>
+
+>   \<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
+
+>   \<addressFamily\>FWP_AF_INET\</addressFamily\>
+
+>   \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
+
+>   \<enterpriseId/\>
+
+>   \<policyFlags\>0\</policyFlags\>
+
+>   \<effectiveName/\>
+
+\</header\>
+
+>   \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
+
+>   \<classifyDrop\>
+
+>   \<filterId\>121180\</filterId\>
+
+>   \<layerId\>48\</layerId\>
+
+>   \<reauthReason\>0\</reauthReason\>
+
+>   \<originalProfile\>1\</originalProfile\>
+
+>   \<currentProfile\>1\</currentProfile\>
+
+>   \<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
+
+>   \<isLoopback\>false\</isLoopback\>
+
+>   \<vSwitchId/\>
+
+>   \<vSwitchSourcePort\>0\</vSwitchSourcePort\>
+
+>   \<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
+
+\</classifyDrop\>
+
+\<internalFields\>
+
+>   \<internalFlags/\>
+
+>   \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
+
+>   \<capabilities numItems="2"\>
+
+>   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>
+
+>   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
+
+>   \</capabilities\>
+
+>   \<fqbnVersion\>0\</fqbnVersion\>
+
+>   \<fqbnName/\>
+
+>   \<terminatingFiltersInfo numItems="2"\>
+
+>   \<item\>
+
+>   \<filterId\>121180\</filterId\>
+
+>   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
+
+>   \<actionType\>FWP_ACTION_BLOCK\</actionType\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<filterId\>121165\</filterId\>
+
+>   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
+
+>   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
+
+>   \</item\>
+
+>   \</terminatingFiltersInfo\>
+
+\</internalFields\>
+
+\</netEvent\>
+
+## Case 5: UWP app cannot reach “Intranet” target address with Private Network capability
+
+In this example, the UWP app is unable to reach the Intranet target address,
+10.1.1.1, even though it has a Private Network capability token.
+
+**Classify Drop netEvent, Wfpdiag-Case-5.xml**
+
+\<netEvent\>
+
+>   \<header\>
+
+>   \<timeStamp\>2020-05-22T20:54:53.499Z\</timeStamp\>
+
+>   \<flags numItems="9"\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
+
+>   \</flags\>
+
+>   \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
+
+>   \<ipProtocol\>6\</ipProtocol\>
+
+>   \<localAddrV4\>10.216.117.17\</localAddrV4\>
+
+>   \<remoteAddrV4\>10.1.1.1\</remoteAddrV4\>
+
+>   \<localPort\>52956\</localPort\>
+
+>   \<remotePort\>53\</remotePort\>
+
+>   \<scopeId\>0\</scopeId\>
+
+>   \<appId\>	
+
+>   \<data\>5c006400650076006900630065005c0068006100720064006400690073006b0076006f006c0075006d00650031005c00700072006f006700720061006d002000660069006c00650073005c00770069006e0064006f007700730061007000700073005c00610066003600390032006200660066002d0036003700370039002d0034003200340066002d0038003700300065002d006600360065003500390063003500300032003300340039005f0031002e0031002e00310033002e0030005f007800360034005f005f00350063003000330037006a0061007200350038003300390072005c0075007700700073006f0063006b006500740063006c00690065006e0074002e006500780065000000\</data\>
+
+>   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+>   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.3...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
+
+>   \</appId\>
+
+>   \<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
+
+>   \<addressFamily\>FWP_AF_INET\</addressFamily\>
+
+>   \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
+
+>   \<enterpriseId/\>
+
+>   \<policyFlags\>0\</policyFlags\>
+
+>   \<effectiveName/\>
+
+\</header\>
+
+>   \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
+
+>   \<classifyDrop\>
+
+>   \<filterId\>121180\</filterId\>
+
+>   \<layerId\>48\</layerId\>
+
+>   \<reauthReason\>0\</reauthReason\>
+
+>   \<originalProfile\>1\</originalProfile\>
+
+>   \<currentProfile\>1\</currentProfile\>
+
+>   \<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
+
+>   \<isLoopback\>false\</isLoopback\>
+
+>   \<vSwitchId/\>
+
+>   \<vSwitchSourcePort\>0\</vSwitchSourcePort\>
+
+>   \<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
+
+>   \</classifyDrop\>
+
+>   \<internalFields\>
+
+>   \<internalFlags/\>
+
+>   \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
+
+>   \<capabilities numItems="1"\>
+
+>   \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
+
+>   \</capabilities\>
+
+>   \<fqbnVersion\>0\</fqbnVersion\>
+
+>   \<fqbnName/\>
+
+>   \<terminatingFiltersInfo numItems="2"\>
+
+>   \<item\>
+
+>   \<filterId\>121180\</filterId\>
+
+>   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
+
+>   \<actionType\>FWP_ACTION_BLOCK\</actionType\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<filterId\>121165\</filterId\>
+
+>   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
+
+>   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
+
+>   \</item\>
+
+>   \</terminatingFiltersInfo\>
+
+>   \</internalFields\>
+
+\</netEvent\>
+
+The following shows the filter that blocked the event:
+
+**Block Outbound Default Rule Filter \#121180, Wfpdiag-Case-5.xml**
+
+\<item\>
+
+>   \<filterKey\>{e62a1a22-c80a-4518-a7f8-e7d1ef3a9ff6}\</filterKey\>
+
+>   \<displayData\>
+
+>   \<name\>Block Outbound Default Rule\</name\>
+
+>   \<description\>Block Outbound Default Rule\</description\>
+
+>   \</displayData\>
+
+>   \<flags/\>
+
+>   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
+
+>   \<providerData\>
+
+>   \<data\>c029000000000000\</data\>
+
+>   \<asString\>.)......\</asString\>
+
+>   \</providerData\>
+
+>   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
+
+>   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
+
+>   \<weight\>
+
+>   \<type\>FWP_EMPTY\</type\>
+
+>   \</weight\>
+
+>   \<filterCondition numItems="1"\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SID\</type\>
+
+>   \<sid\>S-1-0-0\</sid\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \</filterCondition\>
+
+>   \<action\>
+
+>   \<type\>FWP_ACTION_BLOCK\</type\>
+
+>   \<filterType/\>
+
+>   \</action\>
+
+>   \<rawContext\>0\</rawContext\>
+
+>   \<reserved/\>
+
+>   \<filterId\>121180\</filterId\>
+
+>   \<effectiveWeight\>
+
+>   \<type\>FWP_UINT64\</type\>
+
+>   \<uint64\>274877906944\</uint64\>
+
+>   \</effectiveWeight\>
+
+\</item\>
+
+If the target was in the private range, then it should have been allowed by a
+PrivateNetwork Outbound Default Rule filter.
+
+The following PrivateNetwork Outbound Default Rule filters have conditions for
+matching Intranet IP addresses. Since the expected Intranet target address,
+10.1.1.1, is not included in these filters it becomes clear that the address is
+not in the private range. Check the policies which configure the private range
+on the machine (MDM, GP, etc) and make sure it includes the private target
+address you wanted to reach.
+
+**PrivateNetwork Outbound Default Rule Filters, Wfpdiag-Case-5.xml**
+
+\<item\>
+
+>   \<filterKey\>{fd65507b-e356-4e2f-966f-0c9f9c1c6e78}\</filterKey\>
+
+>   \<displayData\>
+
+>   \<name\>PrivateNetwork Outbound Default Rule\</name\>
+
+>   \<description\>PrivateNetwork Outbound Default Rule\</description\>
+
+>   \</displayData\>
+
+>   \<flags/\>
+
+>   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
+
+>   \<providerData\>
+
+>   \<data\>f22d000000000000\</data\>
+
+>   \<asString\>.-......\</asString\>
+
+>   \</providerData\>
+
+>   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
+
+>   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
+
+>   \<weight\>
+
+>   \<type\>FWP_EMPTY\</type\>
+
+>   \</weight\>
+
+>   \<filterCondition numItems="5"\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SID\</type\>
+
+>   \<sid\>S-1-0-0\</sid\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>1.1.1.1\</uint32\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>1\</uint32\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>1\</uint32\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
+
+>   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \</filterCondition\>
+
+>   \<action\>
+
+>   \<type\>FWP_ACTION_PERMIT\</type\>
+
+>   \<filterType/\>
+
+>   \</action\>
+
+>   \<rawContext\>0\</rawContext\>
+
+>   \<reserved/\>
+
+>   \<filterId\>129656\</filterId\>
+
+>   \<effectiveWeight\>
+
+>   \<type\>FWP_UINT64\</type\>
+
+>   \<uint64\>144115600392724416\</uint64\>
+
+>   \</effectiveWeight\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<filterKey\>{b11b4f8a-222e-49d6-8d69-02728681d8bc}\</filterKey\>
+
+>   \<displayData\>
+
+>   \<name\>PrivateNetwork Outbound Default Rule\</name\>
+
+>   \<description\>PrivateNetwork Outbound Default Rule\</description\>
+
+>   \</displayData\>
+
+>   \<flags/\>
+
+>   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
+
+>   \<providerData\>
+
+>   \<data\>f22d000000000000\</data\>
+
+>   \<asString\>.-......\</asString\>
+
+>   \</providerData\>
+
+>   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
+
+>   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
+
+>   \<weight\>
+
+>   \<type\>FWP_EMPTY\</type\>
+
+>   \</weight\>
+
+>   \<filterCondition numItems="5"\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SID\</type\>
+
+>   \<sid\>S-1-0-0\</sid\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_RANGE\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_RANGE_TYPE\</type\>
+
+>   \<rangeValue\>
+
+>   \<valueLow\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>172.16.0.0\</uint32\>
+
+>   \</valueLow\>
+
+>   \<valueHigh\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>172.31.255.255\</uint32\>
+
+>   \</valueHigh\>
+
+>   \</rangeValue\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>1\</uint32\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>1\</uint32\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
+
+>   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \</filterCondition\>
+
+>   \<action\>
+
+>   \<type\>FWP_ACTION_PERMIT\</type\>
+
+>   \<filterType/\>
+
+>   \</action\>
+
+>   \<rawContext\>0\</rawContext\>
+
+>   \<reserved/\>
+
+>   \<filterId\>129657\</filterId\>
+
+>   \<effectiveWeight\>
+
+>   \<type\>FWP_UINT64\</type\>
+
+>   \<uint64\>36029209335832512\</uint64\>
+
+>   \</effectiveWeight\>
+
+\</item\>
+
+\<item\>
+
+>   \<filterKey\>{21cd82bc-6077-4069-94bf-750e5a43ca23}\</filterKey\>
+
+>   \<displayData\>
+
+>   \<name\>PrivateNetwork Outbound Default Rule\</name\>
+
+>   \<description\>PrivateNetwork Outbound Default Rule\</description\>
+
+>   \</displayData\>
+
+>   \<flags/\>
+
+>   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
+
+>   \<providerData\>
+
+>   \<data\>f22d000000000000\</data\>
+
+>   \<asString\>.-......\</asString\>
+
+>   \</providerData\>
+
+>   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
+
+>   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
+
+>   \<weight\>
+
+>   \<type\>FWP_EMPTY\</type\>
+
+>   \</weight\>
+
+>   \<filterCondition numItems="5"\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SID\</type\>
+
+>   \<sid\>S-1-0-0\</sid\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_RANGE\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_RANGE_TYPE\</type\>
+
+>   \<rangeValue\>
+
+>   \<valueLow\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>192.168.0.0\</uint32\>
+
+>   \</valueLow\>
+
+>   \<valueHigh\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>192.168.255.255\</uint32\>
+
+>   \</valueHigh\>
+
+>   \</rangeValue\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>1\</uint32\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_UINT32\</type\>
+
+>   \<uint32\>1\</uint32\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
+
+>   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+>   \<conditionValue\>
+
+>   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
+
+>   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
+
+>   \</conditionValue\>
+
+>   \</item\>
+
+>   \</filterCondition\>
+
+>   \<action\>
+
+>   \<type\>FWP_ACTION_PERMIT\</type\>
+
+>   \<filterType/\>
+
+>   \</action\>
+
+>   \<rawContext\>0\</rawContext\>
+
+>   \<reserved/\>
+
+>   \<filterId\>129658\</filterId\>
+
+>   \<effectiveWeight\>
+
+>   \<type\>FWP_UINT64\</type\>
+
+>   \<uint64\>36029209335832512\</uint64\>
+
+>   \</effectiveWeight\>
+
+\</item\>
+
+# Debugging Past Drops 
+
+If you are debugging a network drop from the past or from a remote machine, you
+may have traces already collected from Feedback Hub, such as nettrace.etl and
+wfpstate.xml. Once nettrace.etl is converted, nettrace.txt will have the
+netEvents of the reproduced event, and wfpstate.xml will contain the filters
+that were present on the machine at the time.
+
+If you **do not** have a live repro or traces already collected, you can still
+collect traces after the UWP network connectivity issue has happened by running
+these commands in an Admin command prompt
+
+>   \<Run UWP app\>
+
+>   Netsh wfp show netevents
+
+>   Netsh wfp show state
+
+“Netsh wfp show netevents” will generate netevents.xml, which contains the past
+net events. “Netsh wfp show state” will generate wfpstate.xml, which contains
+the current filters present on the machine.
+
+Unfortunately, collecting traces after the UWP network connectivity issue is not
+always reliable.
+
+NetEvents on the machine are stored in a buffer. Once that buffer has reached
+max capacity, the buffer will overwrite older net events. Due to the buffer
+overwrite, it is possible that the collected netevents.xml will not contain the
+net event associated with the UWP network connectivity issue if it was
+overwritten. Additionally, filters on the machine can get deleted and re-added
+with different filterIds due to miscellaneous events on the machine. Because of
+this, a filterId from “netsh wfp show netevents” may not necessarily match any
+filter in “netsh wfp show state” because that filterId may be outdated.
+
+If you can reproduce the UWP network connectivity issue consistently, we would
+recommend using the commands from Debugging Live Drops instead.
+
+Additionally, you can still follow the examples from Debugging Live Drops
+section using the trace commands in this section, even if you do not have a live
+repro. The netEvents and filters are stored in one file in Debugging Live Drops
+as opposed to two separate files in the following Debugging Past Drops examples.
+
+## Case 7: Debugging Past Drop - UWP app cannot reach Internet target address and has no capabilities
+
+In this example, the UWP app is unable to connect to bing.com.
+
+Classify Drop Net Event, NetEvents-Case-7.xml
+
+\<item\>
+
+\<header\>
+
+\<timeStamp\>2020-05-04T22:04:07.039Z\</timeStamp\>
+
+\<flags numItems="9"\>
+
+\<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
+
+\<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
+
+\<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
+
+\<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
+
+\<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
+
+\<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
+
+\<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
+
+\<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
+
+\<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
+
+\</flags\>
+
+\<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
+
+\<ipProtocol\>6\</ipProtocol\>
+
+\<localAddrV4\>10.195.36.30\</localAddrV4\>
+
+\<remoteAddrV4\>204.79.197.200\</remoteAddrV4\>
+
+\<localPort\>57062\</localPort\>
+
+\<remotePort\>443\</remotePort\>
+
+\<scopeId\>0\</scopeId\>
+
+\<appId\>
+
+\<data\>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\</data\>
+
+\<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.2...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
+
+\</appId\>
+
+\<userId\>S-1-5-21-1578316205-4060061518-881547182-1000\</userId\>
+
+\<addressFamily\>FWP_AF_INET\</addressFamily\>
+
+\<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
+
+\<enterpriseId/\>
+
+\<policyFlags\>0\</policyFlags\>
+
+\<effectiveName/\>
+
+\</header\>
+
+\<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
+
+\<classifyDrop\>
+
+\<filterId\>206064\</filterId\>
+
+\<layerId\>48\</layerId\>
+
+\<reauthReason\>0\</reauthReason\>
+
+\<originalProfile\>1\</originalProfile\>
+
+\<currentProfile\>1\</currentProfile\>
+
+\<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
+
+\<isLoopback\>false\</isLoopback\>
+
+\<vSwitchId/\>
+
+\<vSwitchSourcePort\>0\</vSwitchSourcePort\>
+
+\<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
+
+\</classifyDrop\>
+
+\<internalFields\>
+
+\<internalFlags/\>
+
+\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
+
+\<capabilities/\>
+
+\<fqbnVersion\>0\</fqbnVersion\>
+
+\<fqbnName/\>
+
+\<terminatingFiltersInfo numItems="2"\>
+
+\<item\>
+
+\<filterId\>206064\</filterId\>
+
+\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
+
+\<actionType\>FWP_ACTION_BLOCK\</actionType\>
+
+\</item\>
+
+\<item\>
+
+\<filterId\>206049\</filterId\>
+
+\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
+
+\<actionType\>FWP_ACTION_PERMIT\</actionType\>
+
+\</item\>
+
+\</terminatingFiltersInfo\>
+
+\</internalFields\>
+
+\</item\>
+
+The Internal fields lists no active capabilities, and the packet is dropped at
+filter 206064.
+
+This is a default block rule filter, meaning the packet passed through every
+filter that could have allowed it, but because conditions didn’t match for any
+those filters, the packet fell to the filter which blocks any packet that the
+Security Descriptor doesn’t match.
+
+**Block Outbound Default Rule Filter \#206064, FilterState-Case-7.xml**
+
+\<item\>
+
+\<filterKey\>{f138d1ad-9293-478f-8519-c3368e796711}\</filterKey\>
+
+\<displayData\>
+
+\<name\>Block Outbound Default Rule\</name\>
+
+\<description\>Block Outbound Default Rule\</description\>
+
+\</displayData\>
+
+\<flags/\>
+
+\<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
+
+\<providerData\>
+
+\<data\>2e65000000000000\</data\>
+
+\<asString\>.e......\</asString\>
+
+\</providerData\>
+
+\<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
+
+\<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
+
+\<weight\>
+
+\<type\>FWP_EMPTY\</type\>
+
+\</weight\>
+
+\<filterCondition numItems="1"\>
+
+\<item\>
+
+\<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
+
+\<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
+
+\<conditionValue\>
+
+\<type\>FWP_SID\</type\>
+
+\<sid\>S-1-0-0\</sid\>
+
+\</conditionValue\>
+
+\</item\>
+
+\</filterCondition\>
+
+\<action\>
+
+\<type\>FWP_ACTION_BLOCK\</type\>
+
+\<filterType/\>
+
+\</action\>
+
+\<rawContext\>0\</rawContext\>
+
+\<reserved/\>
+
+\<filterId\>206064\</filterId\>
+
+\<effectiveWeight\>
+
+\<type\>FWP_UINT64\</type\>
+
+\<uint64\>274877906944\</uint64\>
+
+\</effectiveWeight\>
+
+\</item\>
+
+## Case 8: Debugging Past Drop - UWP app connects to Internet target address with all capabilities
+
+In this example, the UWP app successfully connects to bing.com [204.79.197.200].
+
+**Classify Allow Net Event, NetEvents-Case-8.xml**
+
+\<item\>
+
+>   \<header\>
+
+>   \<timeStamp\>2020-05-04T18:49:55.101Z\</timeStamp\>
+
+>   \<flags numItems="9"\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
+
+>   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
+
+>   \</flags\>
+
+>   \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
+
+>   \<ipProtocol\>6\</ipProtocol\>
+
+>   \<localAddrV4\>10.195.36.30\</localAddrV4\>
+
+>   \<remoteAddrV4\>204.79.197.200\</remoteAddrV4\>
+
+>   \<localPort\>61673\</localPort\>
+
+>   \<remotePort\>443\</remotePort\>
+
+>   \<scopeId\>0\</scopeId\>
+
+>   \<appId\>
+
+>   \<data\>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\</data\>
+
+>   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+>   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.0...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
+
+>   \</appId\>
+
+>   \<userId\>S-1-5-21-1578316205-4060061518-881547182-1000\</userId\>
+
+>   \<addressFamily\>FWP_AF_INET\</addressFamily\>
+
+>   \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
+
+>   \<enterpriseId/\>
+
+>   \<policyFlags\>0\</policyFlags\>
+
+>   \<effectiveName/\>
+
+>   \</header\>
+
+>   \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_ALLOW\</type\>
+
+>   \<classifyAllow\>
+
+>   \<filterId\>208757\</filterId\>
+
+>   \<layerId\>48\</layerId\>
+
+>   \<reauthReason\>0\</reauthReason\>
+
+>   \<originalProfile\>1\</originalProfile\>
+
+>   \<currentProfile\>1\</currentProfile\>
+
+>   \</classifyAllow\>
+
+>   \<internalFields\>
+
+>   \<internalFlags/\>
+
+>   \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
+
+>   \<capabilities numItems="3"\>
+
+>   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>
+
+>   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
+
+>   \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
+
+>   \</capabilities\>
+
+>   \<fqbnVersion\>0\</fqbnVersion\>
+
+>   \<fqbnName/\>
+
+>   \<terminatingFiltersInfo numItems="2"\>
+
+>   \<item\>
+
+>   \<filterId\>208757\</filterId\>
+
+>   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
+
+>   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
+
+>   \</item\>
+
+>   \<item\>
+
+>   \<filterId\>206049\</filterId\>
+
+>   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
+
+>   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
+
+>   \</item\>
+
+>   \</terminatingFiltersInfo\>
+
+>   \</internalFields\>
+
+\</item\>
+
+Important things to note: all capabilities are enabled and the resulting filter
+determining the flow of the packet is 208757.
+
+The filter stated above with action permit:
+
+**InternetClient Default Rule Filter \#208757, FilterState-Case-8.xml**
+
+				\<item\>
+
+					\<filterKey\>{e0f6f24e-1f0a-4f1a-bdd8-b9277c144fb5}\</filterKey\>
+
+					\<displayData\>
+
+						\<name\>InternetClient Default Rule\</name\>
+
+						\<description\>InternetClient Default Rule\</description\>
+
+					\</displayData\>
+
+					\<flags/\>
+
+					\<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
+
+					\<providerData\>
+
+						\<data\>e167000000000000\</data\>
+
+						\<asString\>.g......\</asString\>
+
+					\</providerData\>
+
+					\<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
+
+					\<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
+
+					\<weight\>
+
+						\<type\>FWP_EMPTY\</type\>
+
+					\</weight\>
+
+					\<filterCondition numItems="5"\>
+
+						\<item\>
+
+							\<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
+
+							\<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
+
+							\<conditionValue\>
+
+								\<type\>FWP_SID\</type\>
+
+								\<sid\>S-1-0-0\</sid\>
+
+							\</conditionValue\>
+
+						\</item\>
+
+						\<item\>
+
+							\<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
+
+							\<matchType\>FWP_MATCH_RANGE\</matchType\>
+
+							\<conditionValue\>
+
+								\<type\>FWP_RANGE_TYPE\</type\>
+
+								\<rangeValue\>
+
+									\<valueLow\>
+
+										\<type\>FWP_UINT32\</type\>
+
+										\<uint32\>0.0.0.0\</uint32\>
+
+									\</valueLow\>
+
+									\<valueHigh\>
+
+										\<type\>FWP_UINT32\</type\>
+
+										\<uint32\>255.255.255.255\</uint32\>
+
+									\</valueHigh\>
+
+								\</rangeValue\>
+
+							\</conditionValue\>
+
+						\</item\>
+
+						\<item\>
+
+							\<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
+
+							\<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+							\<conditionValue\>
+
+								\<type\>FWP_UINT32\</type\>
+
+								\<uint32\>1\</uint32\>
+
+							\</conditionValue\>
+
+						\</item\>
+
+						\<item\>
+
+							\<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
+
+							\<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+							\<conditionValue\>
+
+								\<type\>FWP_UINT32\</type\>
+
+								\<uint32\>1\</uint32\>
+
+							\</conditionValue\>
+
+						\</item\>
+
+						\<item\>
+
+							\<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
+
+							\<matchType\>FWP_MATCH_EQUAL\</matchType\>
+
+							\<conditionValue\>
+
+								\<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
+
+								\<sd\>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
+
+							\</conditionValue\>
+
+						\</item\>
+
+					\</filterCondition\>
+
+					\<action\>
+
+						\<type\>FWP_ACTION_PERMIT\</type\>
+
+						\<filterType/\>
+
+					\</action\>
+
+					\<rawContext\>0\</rawContext\>
+
+					\<reserved/\>
+
+					\<filterId\>208757\</filterId\>
+
+					\<effectiveWeight\>
+
+						\<type\>FWP_UINT64\</type\>
+
+						\<uint64\>412316868544\</uint64\>
+
+					\</effectiveWeight\>
+
+				\</item\>
+
+\*The capabilities field in a netEvent was added to the traces in the Windows 10
+May 2019 Update

From db87b515c2506dbf18ccf4aa6a60c9bb97527579 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Wed, 12 Aug 2020 16:11:04 -0700
Subject: [PATCH 06/38] move topics in toc

---
 .../threat-protection/windows-firewall/TOC.md | 99 ++++++++++++++-----
 1 file changed, 77 insertions(+), 22 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/TOC.md b/windows/security/threat-protection/windows-firewall/TOC.md
index e3271818c1..791aa26a20 100644
--- a/windows/security/threat-protection/windows-firewall/TOC.md
+++ b/windows/security/threat-protection/windows-firewall/TOC.md
@@ -1,44 +1,54 @@
 # [Windows Firewall with Advanced Security](windows-firewall-with-advanced-security.md)
-## [Isolating Microsoft Store Apps on Your Network](isolating-apps-on-your-network.md)
-## [Securing IPsec](securing-end-to-end-ipsec-connections-by-using-ikev2.md)
-## [PowerShell](windows-firewall-with-advanced-security-administration-with-windows-powershell.md)
-## [Design Guide](windows-firewall-with-advanced-security-design-guide.md)
+
+## [Plan/Design]()
+
+### [Design Guide](windows-firewall-with-advanced-security-design-guide.md)
+
 ### [Design Process](understanding-the-windows-firewall-with-advanced-security-design-process.md)
 ### [Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)
 #### [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md)
 #### [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md)
 #### [Require Encryption](require-encryption-when-accessing-sensitive-network-resources.md)
 #### [Restrict Access](restrict-access-to-only-specified-users-or-devices.md)
+
 ### [Mapping Goals to a Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)
 #### [Basic Design](basic-firewall-policy-design.md)
 #### [Domain Isolation Design](domain-isolation-policy-design.md)
 #### [Server Isolation Design](server-isolation-policy-design.md)
 #### [Certificate-based Isolation Design](certificate-based-isolation-policy-design.md)
+
 ### [Evaluating Design Examples](evaluating-windows-firewall-with-advanced-security-design-examples.md)
 #### [Basic Design Example](firewall-policy-design-example.md)
 #### [Domain Isolation Design Example](domain-isolation-policy-design-example.md)
 #### [Server Isolation Design Example](server-isolation-policy-design-example.md)
 #### [Certificate-based Isolation Design Example](certificate-based-isolation-policy-design-example.md)
+
 ### [Designing a Strategy](designing-a-windows-firewall-with-advanced-security-strategy.md)
+
 #### [Gathering the Info You Need](gathering-the-information-you-need.md)
 ##### [Network](gathering-information-about-your-current-network-infrastructure.md)
 ##### [Active Directory](gathering-information-about-your-active-directory-deployment.md)
 ##### [Computers](gathering-information-about-your-devices.md)
 ##### [Other Relevant Information](gathering-other-relevant-information.md)
 #### [Determining the Trusted State of Your Computers](determining-the-trusted-state-of-your-devices.md)
+
 ### [Planning Your Design](planning-your-windows-firewall-with-advanced-security-design.md)
 #### [Planning Settings for a Basic Firewall Policy](planning-settings-for-a-basic-firewall-policy.md)
+
 #### [Planning Domain Isolation Zones](planning-domain-isolation-zones.md)
 ##### [Exemption List](exemption-list.md)
 ##### [Isolated Domain](isolated-domain.md)
 ##### [Boundary Zone](boundary-zone.md)
 ##### [Encryption Zone](encryption-zone.md)
 #### [Planning Server Isolation Zones](planning-server-isolation-zones.md)
+
 #### [Planning Certificate-based Authentication](planning-certificate-based-authentication.md)
 ##### [Documenting the Zones](documenting-the-zones.md)
+
 ##### [Planning Group Policy Deployment for Your Isolation Zones](planning-group-policy-deployment-for-your-isolation-zones.md)
 ###### [Planning Isolation Groups for the Zones](planning-isolation-groups-for-the-zones.md)
 ###### [Planning Network Access Groups](planning-network-access-groups.md)
+
 ###### [Planning the GPOs](planning-the-gpos.md)
 ####### [Firewall GPOs](firewall-gpos.md)
 ######## [GPO_DOMISO_Firewall](gpo-domiso-firewall.md)
@@ -50,25 +60,29 @@
 ####### [Encryption Zone GPOs](encryption-zone-gpos.md)
 ######## [GPO_DOMISO_Encryption](gpo-domiso-encryption.md)
 ####### [Server Isolation GPOs](server-isolation-gpos.md)
+
 ###### [Planning GPO Deployment](planning-gpo-deployment.md)
-### [Appendix A: Sample GPO Template Files for Settings Used in this Guide](appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md)
-## [Deployment Guide](windows-firewall-with-advanced-security-deployment-guide.md)
-### [Planning to Deploy](planning-to-deploy-windows-firewall-with-advanced-security.md)
-### [Implementing Your Plan](implementing-your-windows-firewall-with-advanced-security-design-plan.md)
-### [Checklist: Creating Group Policy Objects](checklist-creating-group-policy-objects.md)
-### [Checklist: Implementing a Basic Firewall Policy Design](checklist-implementing-a-basic-firewall-policy-design.md)
-### [Checklist: Configuring Basic Firewall Settings](checklist-configuring-basic-firewall-settings.md)
-### [Checklist: Creating Inbound Firewall Rules](checklist-creating-inbound-firewall-rules.md)
-### [Checklist: Creating Outbound Firewall Rules](checklist-creating-outbound-firewall-rules.md)
-### [Checklist: Implementing a Domain Isolation Policy Design](checklist-implementing-a-domain-isolation-policy-design.md)
-#### [Checklist: Configuring Rules for the Isolated Domain](checklist-configuring-rules-for-the-isolated-domain.md)
-#### [Checklist: Configuring Rules for the Boundary Zone](checklist-configuring-rules-for-the-boundary-zone.md)
-#### [Checklist: Configuring Rules for the Encryption Zone](checklist-configuring-rules-for-the-encryption-zone.md)
-#### [Checklist: Configuring Rules for an Isolated Server Zone](checklist-configuring-rules-for-an-isolated-server-zone.md)
-### [Checklist: Implementing a Standalone Server Isolation Policy Design](checklist-implementing-a-standalone-server-isolation-policy-design.md)
-#### [Checklist: Configuring Rules for Servers in a Standalone Isolated Server Zone](checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md)
-#### [Checklist: Creating Rules for Clients of a Standalone Isolated Server Zone](checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md)
-### [Checklist: Implementing a Certificate-based Isolation Policy Design](checklist-implementing-a-certificate-based-isolation-policy-design.md)
+
+
+## [Deployment guide]()
+### [Deployment Guide](windows-firewall-with-advanced-security-deployment-guide.md)
+#### [Planning to Deploy](planning-to-deploy-windows-firewall-with-advanced-security.md)
+#### [Implementing Your Plan](implementing-your-windows-firewall-with-advanced-security-design-plan.md)
+
+
+
+
+## [Best practices]()
+### [Securing IPsec](securing-end-to-end-ipsec-connections-by-using-ikev2.md)
+### [PowerShell](windows-firewall-with-advanced-security-administration-with-windows-powershell.md)
+### [Isolating Microsoft Store Apps on Your Network](isolating-apps-on-your-network.md)
+
+
+
+
+
+
+## [How-to]()
 ### [Procedures Used in This Guide](procedures-used-in-this-guide.md)
 #### [Add Production Devices to the Membership Group for a Zone](add-production-devices-to-the-membership-group-for-a-zone.md)
 #### [Add Test Devices to the Membership Group for a Zone](add-test-devices-to-the-membership-group-for-a-zone.md)
@@ -108,3 +122,44 @@
 #### [Restrict Server Access](restrict-server-access-to-members-of-a-group-only.md)
 #### [Enable Windows Firewall](turn-on-windows-firewall-and-configure-default-behavior.md)
 #### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
+#### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
+
+
+
+
+## [References]()
+### [Checklist: Creating Group Policy Objects](checklist-creating-group-policy-objects.md)
+### [Checklist: Implementing a Basic Firewall Policy Design](checklist-implementing-a-basic-firewall-policy-design.md)
+### [Checklist: Configuring Basic Firewall Settings](checklist-configuring-basic-firewall-settings.md)
+### [Checklist: Creating Inbound Firewall Rules](checklist-creating-inbound-firewall-rules.md)
+### [Checklist: Creating Outbound Firewall Rules](checklist-creating-outbound-firewall-rules.md)
+### [Checklist: Implementing a Domain Isolation Policy Design](checklist-implementing-a-domain-isolation-policy-design.md)
+#### [Checklist: Configuring Rules for the Isolated Domain](checklist-configuring-rules-for-the-isolated-domain.md)
+#### [Checklist: Configuring Rules for the Boundary Zone](checklist-configuring-rules-for-the-boundary-zone.md)
+#### [Checklist: Configuring Rules for the Encryption Zone](checklist-configuring-rules-for-the-encryption-zone.md)
+#### [Checklist: Configuring Rules for an Isolated Server Zone](checklist-configuring-rules-for-an-isolated-server-zone.md)
+### [Checklist: Implementing a Standalone Server Isolation Policy Design](checklist-implementing-a-standalone-server-isolation-policy-design.md)
+#### [Checklist: Configuring Rules for Servers in a Standalone Isolated Server Zone](checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md)
+#### [Checklist: Creating Rules for Clients of a Standalone Isolated Server Zone](checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md)
+
+### [Checklist: Implementing a Certificate-based Isolation Policy Design](checklist-implementing-a-certificate-based-isolation-policy-design.md)
+
+### [Appendix A: Sample GPO Template Files for Settings Used in this Guide](appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md)
+
+
+
+## [Troubleshooting]()
+
+
+
+
+
+
+
+
+
+
+
+
+
+

From 847ebd5a2f280aa41bb1bfaac54ff7f143879238 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 12 Aug 2020 16:25:33 -0700
Subject: [PATCH 07/38] checking in formatting

---
 .../troubleshooting-uwp-firewall.md           | 518 +-----------------
 1 file changed, 13 insertions(+), 505 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
index dbc2f8af22..4874e16c5e 100644
--- a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
@@ -196,163 +196,84 @@ allowed by Filter \#125918 which is from the InternetClient Default Rule.
 **InternetClient Default Rule Filter \#125918, Wfpdiag-Case-1.xml**
 ```
 \<item\>
-
 >   \<filterKey\>{3389708e-f7ae-4ebc-a61a-f659065ab24e}\</filterKey\>
-
 >   \<displayData\>
-
 >   \<name\>InternetClient Default Rule\</name\>
-
 >   \<description\>InternetClient Default Rule\</description\>
-
 >   \</displayData\>
-
 >   \<flags/\>
-
 >   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
-
 >   \<providerData\>
-
 >   \<data\>ad2b000000000000\</data\>
-
 >   \<asString\>.+......\</asString\>
-
 >   \</providerData\>
-
 >   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V6\</layerKey\>
-
 >   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
-
 >   \<weight\>
-
 >   \<type\>FWP_EMPTY\</type\>
-
 >   \</weight\>
-
 >   \<filterCondition numItems="5"\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SID\</type\>
-
 >   \<sid\>S-1-0-0\</sid\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_RANGE\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_RANGE_TYPE\</type\>
-
 >   \<rangeValue\>
-
 >   \<valueLow\>
-
 >   \<type\>FWP_BYTE_ARRAY16_TYPE\</type\>
-
 >   \<byteArray16\>::\</byteArray16\>
-
 >   \</valueLow\>
-
 >   \<valueHigh\>
-
 >   \<type\>FWP_BYTE_ARRAY16_TYPE\</type\>
-
 >   \<byteArray16\>ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff\</byteArray16\>
-
 >   \</valueHigh\>
-
 >   \</rangeValue\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>1\</uint32\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>1\</uint32\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
-
 >   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \</filterCondition\>
-
 >   \<action\>
-
 >   \<type\>FWP_ACTION_PERMIT\</type\>
-
 >   \<filterType/\>
-
 >   \</action\>
-
 >   \<rawContext\>0\</rawContext\>
-
 >   \<reserved/\>
-
 >   \<filterId\>125918\</filterId\>
-
 >   \<effectiveWeight\>
-
 >   \<type\>FWP_UINT64\</type\>
-
 >   \<uint64\>103079219136\</uint64\>
-
 >   \</effectiveWeight\>
-
 \</item\>
 ```
 One condition is
@@ -360,19 +281,12 @@ One condition is
 **Capabilities Condition in Filter \#125918, Wfpdiag-Case-1.xml**
 ```
 \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
-
 >   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
-
 >   \</conditionValue\>
-
 \</item\>
 ```
 which is the condition for checking capabilities in this filter.
@@ -381,15 +295,12 @@ The important part of this condition is S-1-15-3-1, which is the capability SID
 for INTERNET_CLIENT privileges.
 
 From the netEvent’s capabilities section,
-```
+
 Capabilities from netEvent, Wfpdiag-Case-1.xml
-
+```
 \<capabilities numItems="3"\>				
-
 >   **\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>**			\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
-
 \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
-
 \</capabilities\>
 ```
 it shows the packet came from an app with an Internet client token
@@ -665,842 +576,439 @@ In this example, the UWP app is unable to reach the Intranet target address,
 10.50.50.50, because it does not have a Private Network capability.
 
 **Classify Drop netEvent, Wfpdiag-Case-4.xml**
-
+```
 \<netEvent\>
-
 \<header\>
-
 >   \<timeStamp\>2020-05-22T21:29:28.601Z\</timeStamp\>
-
 >   \<flags numItems="9"\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
-
 >   \</flags\>
-
 >   \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
-
 >   \<ipProtocol\>6\</ipProtocol\>
-
 >   \<localAddrV4\>10.216.117.17\</localAddrV4\>
-
 >   \<remoteAddrV4\>10.50.50.50\</remoteAddrV4\>
-
 >   \<localPort\>52998\</localPort\>
-
 >   \<remotePort\>53\</remotePort\>
-
 >   \<scopeId\>0\</scopeId\>
-
 >   \<appId\>				
-
 >   \<data\>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\</data\>
-
 >   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
 >   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.1...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
-
 >   \</appId\>
-
 >   \<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
-
 >   \<addressFamily\>FWP_AF_INET\</addressFamily\>
-
 >   \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
-
 >   \<enterpriseId/\>
-
 >   \<policyFlags\>0\</policyFlags\>
-
 >   \<effectiveName/\>
-
 \</header\>
-
 >   \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
-
 >   \<classifyDrop\>
-
 >   \<filterId\>121180\</filterId\>
-
 >   \<layerId\>48\</layerId\>
-
 >   \<reauthReason\>0\</reauthReason\>
-
 >   \<originalProfile\>1\</originalProfile\>
-
 >   \<currentProfile\>1\</currentProfile\>
-
 >   \<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
-
 >   \<isLoopback\>false\</isLoopback\>
-
 >   \<vSwitchId/\>
-
 >   \<vSwitchSourcePort\>0\</vSwitchSourcePort\>
-
 >   \<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
-
 \</classifyDrop\>
-
 \<internalFields\>
-
 >   \<internalFlags/\>
-
 >   \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-
 >   \<capabilities numItems="2"\>
-
 >   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>
-
 >   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
-
 >   \</capabilities\>
-
 >   \<fqbnVersion\>0\</fqbnVersion\>
-
 >   \<fqbnName/\>
-
 >   \<terminatingFiltersInfo numItems="2"\>
-
 >   \<item\>
-
 >   \<filterId\>121180\</filterId\>
-
 >   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-
 >   \<actionType\>FWP_ACTION_BLOCK\</actionType\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<filterId\>121165\</filterId\>
-
 >   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-
 >   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
-
 >   \</item\>
-
 >   \</terminatingFiltersInfo\>
-
 \</internalFields\>
-
 \</netEvent\>
-
+```
 ## Case 5: UWP app cannot reach “Intranet” target address with Private Network capability
 
 In this example, the UWP app is unable to reach the Intranet target address,
 10.1.1.1, even though it has a Private Network capability token.
 
 **Classify Drop netEvent, Wfpdiag-Case-5.xml**
-
+```
 \<netEvent\>
-
 >   \<header\>
-
 >   \<timeStamp\>2020-05-22T20:54:53.499Z\</timeStamp\>
-
 >   \<flags numItems="9"\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
-
 >   \</flags\>
-
 >   \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
-
 >   \<ipProtocol\>6\</ipProtocol\>
-
 >   \<localAddrV4\>10.216.117.17\</localAddrV4\>
-
 >   \<remoteAddrV4\>10.1.1.1\</remoteAddrV4\>
-
 >   \<localPort\>52956\</localPort\>
-
 >   \<remotePort\>53\</remotePort\>
-
 >   \<scopeId\>0\</scopeId\>
-
 >   \<appId\>	
-
 >   \<data\>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\</data\>
-
 >   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
 >   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.3...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
-
 >   \</appId\>
-
 >   \<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
-
 >   \<addressFamily\>FWP_AF_INET\</addressFamily\>
-
 >   \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
-
 >   \<enterpriseId/\>
-
 >   \<policyFlags\>0\</policyFlags\>
-
 >   \<effectiveName/\>
-
 \</header\>
-
 >   \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
-
 >   \<classifyDrop\>
-
 >   \<filterId\>121180\</filterId\>
-
 >   \<layerId\>48\</layerId\>
-
 >   \<reauthReason\>0\</reauthReason\>
-
 >   \<originalProfile\>1\</originalProfile\>
-
 >   \<currentProfile\>1\</currentProfile\>
-
 >   \<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
-
 >   \<isLoopback\>false\</isLoopback\>
-
 >   \<vSwitchId/\>
-
 >   \<vSwitchSourcePort\>0\</vSwitchSourcePort\>
-
 >   \<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
-
 >   \</classifyDrop\>
-
 >   \<internalFields\>
-
 >   \<internalFlags/\>
-
 >   \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-
 >   \<capabilities numItems="1"\>
-
 >   \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
-
 >   \</capabilities\>
-
 >   \<fqbnVersion\>0\</fqbnVersion\>
-
 >   \<fqbnName/\>
-
 >   \<terminatingFiltersInfo numItems="2"\>
-
 >   \<item\>
-
 >   \<filterId\>121180\</filterId\>
-
 >   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-
 >   \<actionType\>FWP_ACTION_BLOCK\</actionType\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<filterId\>121165\</filterId\>
-
 >   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-
 >   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
-
 >   \</item\>
-
 >   \</terminatingFiltersInfo\>
-
 >   \</internalFields\>
-
 \</netEvent\>
-
+```
 The following shows the filter that blocked the event:
 
 **Block Outbound Default Rule Filter \#121180, Wfpdiag-Case-5.xml**
 
+```
 \<item\>
-
 >   \<filterKey\>{e62a1a22-c80a-4518-a7f8-e7d1ef3a9ff6}\</filterKey\>
-
 >   \<displayData\>
-
 >   \<name\>Block Outbound Default Rule\</name\>
-
 >   \<description\>Block Outbound Default Rule\</description\>
-
 >   \</displayData\>
-
 >   \<flags/\>
-
 >   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
-
 >   \<providerData\>
-
 >   \<data\>c029000000000000\</data\>
-
 >   \<asString\>.)......\</asString\>
-
 >   \</providerData\>
-
 >   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
-
 >   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
-
 >   \<weight\>
-
 >   \<type\>FWP_EMPTY\</type\>
-
 >   \</weight\>
-
 >   \<filterCondition numItems="1"\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SID\</type\>
-
 >   \<sid\>S-1-0-0\</sid\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \</filterCondition\>
-
 >   \<action\>
-
 >   \<type\>FWP_ACTION_BLOCK\</type\>
-
 >   \<filterType/\>
-
 >   \</action\>
-
 >   \<rawContext\>0\</rawContext\>
-
 >   \<reserved/\>
-
 >   \<filterId\>121180\</filterId\>
-
 >   \<effectiveWeight\>
-
 >   \<type\>FWP_UINT64\</type\>
-
 >   \<uint64\>274877906944\</uint64\>
-
 >   \</effectiveWeight\>
-
 \</item\>
-
+```
 If the target was in the private range, then it should have been allowed by a
 PrivateNetwork Outbound Default Rule filter.
 
-The following PrivateNetwork Outbound Default Rule filters have conditions for
-matching Intranet IP addresses. Since the expected Intranet target address,
-10.1.1.1, is not included in these filters it becomes clear that the address is
-not in the private range. Check the policies which configure the private range
-on the machine (MDM, GP, etc) and make sure it includes the private target
-address you wanted to reach.
+The following PrivateNetwork Outbound Default Rule filters have conditions for matching Intranet IP addresses. Since the expected Intranet target address,
+10.1.1.1, is not included in these filters it becomes clear that the address isnot in the private range. Check the policies which configure the private range
+on the machine (MDM, GP, etc) and make sure it includes the private targetaddress you wanted to reach.
 
 **PrivateNetwork Outbound Default Rule Filters, Wfpdiag-Case-5.xml**
-
+```
 \<item\>
-
 >   \<filterKey\>{fd65507b-e356-4e2f-966f-0c9f9c1c6e78}\</filterKey\>
-
 >   \<displayData\>
-
 >   \<name\>PrivateNetwork Outbound Default Rule\</name\>
-
 >   \<description\>PrivateNetwork Outbound Default Rule\</description\>
-
 >   \</displayData\>
-
 >   \<flags/\>
-
 >   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
-
 >   \<providerData\>
-
 >   \<data\>f22d000000000000\</data\>
-
 >   \<asString\>.-......\</asString\>
-
 >   \</providerData\>
-
 >   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
-
 >   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
-
 >   \<weight\>
-
 >   \<type\>FWP_EMPTY\</type\>
-
 >   \</weight\>
-
 >   \<filterCondition numItems="5"\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SID\</type\>
-
 >   \<sid\>S-1-0-0\</sid\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>1.1.1.1\</uint32\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>1\</uint32\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>1\</uint32\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
-
 >   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \</filterCondition\>
-
 >   \<action\>
-
 >   \<type\>FWP_ACTION_PERMIT\</type\>
-
 >   \<filterType/\>
-
 >   \</action\>
-
 >   \<rawContext\>0\</rawContext\>
-
 >   \<reserved/\>
-
 >   \<filterId\>129656\</filterId\>
-
 >   \<effectiveWeight\>
-
 >   \<type\>FWP_UINT64\</type\>
-
 >   \<uint64\>144115600392724416\</uint64\>
-
 >   \</effectiveWeight\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<filterKey\>{b11b4f8a-222e-49d6-8d69-02728681d8bc}\</filterKey\>
-
 >   \<displayData\>
-
 >   \<name\>PrivateNetwork Outbound Default Rule\</name\>
-
 >   \<description\>PrivateNetwork Outbound Default Rule\</description\>
-
 >   \</displayData\>
-
 >   \<flags/\>
-
 >   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
-
 >   \<providerData\>
-
 >   \<data\>f22d000000000000\</data\>
-
 >   \<asString\>.-......\</asString\>
-
 >   \</providerData\>
-
 >   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
-
 >   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
-
 >   \<weight\>
-
 >   \<type\>FWP_EMPTY\</type\>
-
 >   \</weight\>
-
 >   \<filterCondition numItems="5"\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SID\</type\>
-
 >   \<sid\>S-1-0-0\</sid\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_RANGE\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_RANGE_TYPE\</type\>
-
 >   \<rangeValue\>
-
 >   \<valueLow\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>172.16.0.0\</uint32\>
-
 >   \</valueLow\>
-
 >   \<valueHigh\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>172.31.255.255\</uint32\>
-
 >   \</valueHigh\>
-
 >   \</rangeValue\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>1\</uint32\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>1\</uint32\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
-
 >   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \</filterCondition\>
-
 >   \<action\>
-
 >   \<type\>FWP_ACTION_PERMIT\</type\>
-
 >   \<filterType/\>
-
 >   \</action\>
-
 >   \<rawContext\>0\</rawContext\>
-
 >   \<reserved/\>
-
 >   \<filterId\>129657\</filterId\>
-
 >   \<effectiveWeight\>
-
 >   \<type\>FWP_UINT64\</type\>
-
 >   \<uint64\>36029209335832512\</uint64\>
-
 >   \</effectiveWeight\>
-
 \</item\>
-
 \<item\>
-
 >   \<filterKey\>{21cd82bc-6077-4069-94bf-750e5a43ca23}\</filterKey\>
-
 >   \<displayData\>
-
 >   \<name\>PrivateNetwork Outbound Default Rule\</name\>
-
 >   \<description\>PrivateNetwork Outbound Default Rule\</description\>
-
 >   \</displayData\>
-
 >   \<flags/\>
-
 >   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
-
 >   \<providerData\>
-
 >   \<data\>f22d000000000000\</data\>
-
 >   \<asString\>.-......\</asString\>
-
 >   \</providerData\>
-
 >   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
-
 >   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
-
 >   \<weight\>
-
 >   \<type\>FWP_EMPTY\</type\>
-
 >   \</weight\>
-
 >   \<filterCondition numItems="5"\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SID\</type\>
-
 >   \<sid\>S-1-0-0\</sid\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_RANGE\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_RANGE_TYPE\</type\>
-
 >   \<rangeValue\>
-
 >   \<valueLow\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>192.168.0.0\</uint32\>
-
 >   \</valueLow\>
-
 >   \<valueHigh\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>192.168.255.255\</uint32\>
-
 >   \</valueHigh\>
-
 >   \</rangeValue\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>1\</uint32\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_UINT32\</type\>
-
 >   \<uint32\>1\</uint32\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
-
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 >   \<conditionValue\>
-
 >   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
-
 >   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
-
 >   \</conditionValue\>
-
 >   \</item\>
-
 >   \</filterCondition\>
-
 >   \<action\>
-
 >   \<type\>FWP_ACTION_PERMIT\</type\>
-
 >   \<filterType/\>
-
 >   \</action\>
-
 >   \<rawContext\>0\</rawContext\>
-
 >   \<reserved/\>
-
 >   \<filterId\>129658\</filterId\>
-
 >   \<effectiveWeight\>
-
 >   \<type\>FWP_UINT64\</type\>
-
 >   \<uint64\>36029209335832512\</uint64\>
-
 >   \</effectiveWeight\>
-
 \</item\>
-
+```
 # Debugging Past Drops 
 
 If you are debugging a network drop from the past or from a remote machine, you

From 8771fdd2ae4e44ffc834f3afca8252328b3a5f9b Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Wed, 12 Aug 2020 17:03:33 -0700
Subject: [PATCH 08/38] more formatting

---
 .../troubleshooting-uwp-firewall.md           | 300 ++----------------
 1 file changed, 30 insertions(+), 270 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
index 4874e16c5e..fc7c29c60d 100644
--- a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
@@ -122,8 +122,8 @@ The following shows the allow netEvent of the app connecting to the target IP.
 The netEvent contains information about the packet including its local address,
 remote address, capabilities, etc.
 
-```**Classify Allow netEvent, Wfpdiag-Case-1.xml**
-
+**Classify Allow netEvent, Wfpdiag-Case-1.xml**
+```xml
 \<netEvent\>
 \<header\>
 >   \<timeStamp\>2020-05-21T17:25:59.070Z\</timeStamp\>
@@ -194,7 +194,7 @@ address according to the terminatingFiltersInfo in the netEvent. This packet was
 allowed by Filter \#125918 which is from the InternetClient Default Rule.
 
 **InternetClient Default Rule Filter \#125918, Wfpdiag-Case-1.xml**
-```
+```xml
 \<item\>
 >   \<filterKey\>{3389708e-f7ae-4ebc-a61a-f659065ab24e}\</filterKey\>
 >   \<displayData\>
@@ -279,7 +279,7 @@ allowed by Filter \#125918 which is from the InternetClient Default Rule.
 One condition is
 
 **Capabilities Condition in Filter \#125918, Wfpdiag-Case-1.xml**
-```
+```xml
 \<item\>
 >   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
 >   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
@@ -297,7 +297,7 @@ for INTERNET_CLIENT privileges.
 From the netEvent’s capabilities section,
 
 Capabilities from netEvent, Wfpdiag-Case-1.xml
-```
+```xml
 \<capabilities numItems="3"\>				
 >   **\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>**			\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
 \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
@@ -321,7 +321,7 @@ The following is a drop netEvent that was captured in the traces during this
 repro.
 
 **Classify Drop netEvent, Wfpdiag-Case-2.xml**
-```
+```xml
 \<netEvent\>
 \<header\>
 \<timeStamp\>2020-03-30T23:53:09.720Z\</timeStamp\>
@@ -395,7 +395,7 @@ UWP app was not configured with any capability tokens to allow it to connect to
 a network.
 
 **Internal Fields from netEvent, Wfpdiag-Case-2.xml**
-```
+```xml
 \<internalFields\>
 \<internalFlags/\>
 \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
@@ -420,7 +420,7 @@ The netEvent also gives us information about the filter that explicitly dropped
 this packet, like the FilterId, listed under classify drop
 
 **Classify Drop from netEvent, Wfpdiag-Case-2.xml**
-```
+```xml
 \<classifyDrop\>
 **\<filterId\>68893\</filterId\>**
 \<layerId\>50\</layerId\>
@@ -439,7 +439,7 @@ the packet was dropped by a Block Outbound Default Rule filter.
 
 **Block Outbound Default Rule Filter \#68893, Wfpdiag-Case-2.xml**
 
-```
+```xml
 \<item\>
 >   \<filterKey\>{6d51582f-bcf8-42c4-afc9-e2ce7155c11b}\</filterKey\>
 >   \<displayData\>
@@ -499,7 +499,7 @@ Server). The app is trying to connect to an Internet resource (bing.com), but
 only has a private network token. Therefore, the packet will be dropped.
 
 **Classify Drop netEvent, Wfpdiag-Case-3.xml**
-```
+```xml
 \<netEvent\>
 \<header\>
 \<timeStamp\>2020-03-31T16:57:18.570Z\</timeStamp\>
@@ -576,7 +576,7 @@ In this example, the UWP app is unable to reach the Intranet target address,
 10.50.50.50, because it does not have a Private Network capability.
 
 **Classify Drop netEvent, Wfpdiag-Case-4.xml**
-```
+```xml
 \<netEvent\>
 \<header\>
 >   \<timeStamp\>2020-05-22T21:29:28.601Z\</timeStamp\>
@@ -653,7 +653,7 @@ In this example, the UWP app is unable to reach the Intranet target address,
 10.1.1.1, even though it has a Private Network capability token.
 
 **Classify Drop netEvent, Wfpdiag-Case-5.xml**
-```
+```xml
 \<netEvent\>
 >   \<header\>
 >   \<timeStamp\>2020-05-22T20:54:53.499Z\</timeStamp\>
@@ -727,7 +727,7 @@ The following shows the filter that blocked the event:
 
 **Block Outbound Default Rule Filter \#121180, Wfpdiag-Case-5.xml**
 
-```
+```xml
 \<item\>
 >   \<filterKey\>{e62a1a22-c80a-4518-a7f8-e7d1ef3a9ff6}\</filterKey\>
 >   \<displayData\>
@@ -776,7 +776,7 @@ The following PrivateNetwork Outbound Default Rule filters have conditions for m
 on the machine (MDM, GP, etc) and make sure it includes the private targetaddress you wanted to reach.
 
 **PrivateNetwork Outbound Default Rule Filters, Wfpdiag-Case-5.xml**
-```
+```xml
 \<item\>
 >   \<filterKey\>{fd65507b-e356-4e2f-966f-0c9f9c1c6e78}\</filterKey\>
 >   \<displayData\>
@@ -1021,11 +1021,11 @@ If you **do not** have a live repro or traces already collected, you can still
 collect traces after the UWP network connectivity issue has happened by running
 these commands in an Admin command prompt
 
+```xml
 >   \<Run UWP app\>
-
 >   Netsh wfp show netevents
-
 >   Netsh wfp show state
+```
 
 “Netsh wfp show netevents” will generate netevents.xml, which contains the past
 net events. “Netsh wfp show state” will generate wfpstate.xml, which contains
@@ -1057,136 +1057,74 @@ In this example, the UWP app is unable to connect to bing.com.
 
 Classify Drop Net Event, NetEvents-Case-7.xml
 
+```xml
 \<item\>
-
 \<header\>
-
 \<timeStamp\>2020-05-04T22:04:07.039Z\</timeStamp\>
-
 \<flags numItems="9"\>
-
 \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
-
 \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
-
 \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
-
 \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
-
 \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
-
 \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
-
 \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
-
 \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
-
 \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
-
 \</flags\>
-
 \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
-
 \<ipProtocol\>6\</ipProtocol\>
-
 \<localAddrV4\>10.195.36.30\</localAddrV4\>
-
 \<remoteAddrV4\>204.79.197.200\</remoteAddrV4\>
-
 \<localPort\>57062\</localPort\>
-
 \<remotePort\>443\</remotePort\>
-
 \<scopeId\>0\</scopeId\>
-
 \<appId\>
-
 \<data\>5c006400650076006900630065005c0068006100720064006400690073006b0076006f006c0075006d00650031005c00700072006f006700720061006d002000660069006c00650073005c00770069006e0064006f007700730061007000700073005c00610066003600390032006200660066002d0036003700370039002d0034003200340066002d0038003700300065002d006600360065003500390063003500300032003300340039005f0031002e0031002e00310032002e0030005f007800360034005f005f00350063003000330037006a0061007200350038003300390072005c0075007700700073006f0063006b006500740063006c00690065006e0074002e006500780065000000\</data\>
-
 \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
 .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.2...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
-
 \</appId\>
-
 \<userId\>S-1-5-21-1578316205-4060061518-881547182-1000\</userId\>
-
 \<addressFamily\>FWP_AF_INET\</addressFamily\>
-
 \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
-
 \<enterpriseId/\>
-
 \<policyFlags\>0\</policyFlags\>
-
 \<effectiveName/\>
-
 \</header\>
-
 \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
-
 \<classifyDrop\>
-
 \<filterId\>206064\</filterId\>
-
 \<layerId\>48\</layerId\>
-
 \<reauthReason\>0\</reauthReason\>
-
 \<originalProfile\>1\</originalProfile\>
-
 \<currentProfile\>1\</currentProfile\>
-
 \<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
-
 \<isLoopback\>false\</isLoopback\>
-
 \<vSwitchId/\>
-
 \<vSwitchSourcePort\>0\</vSwitchSourcePort\>
-
 \<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
-
 \</classifyDrop\>
-
 \<internalFields\>
-
 \<internalFlags/\>
-
 \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-
 \<capabilities/\>
-
 \<fqbnVersion\>0\</fqbnVersion\>
-
 \<fqbnName/\>
-
 \<terminatingFiltersInfo numItems="2"\>
-
 \<item\>
-
 \<filterId\>206064\</filterId\>
-
 \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-
 \<actionType\>FWP_ACTION_BLOCK\</actionType\>
-
 \</item\>
-
 \<item\>
-
 \<filterId\>206049\</filterId\>
-
 \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-
 \<actionType\>FWP_ACTION_PERMIT\</actionType\>
-
 \</item\>
-
 \</terminatingFiltersInfo\>
-
 \</internalFields\>
-
 \</item\>
+```
 
 The Internal fields lists no active capabilities, and the packet is dropped at
 filter 206064.
@@ -1198,385 +1136,207 @@ Security Descriptor doesn’t match.
 
 **Block Outbound Default Rule Filter \#206064, FilterState-Case-7.xml**
 
+```xml
 \<item\>
-
 \<filterKey\>{f138d1ad-9293-478f-8519-c3368e796711}\</filterKey\>
-
 \<displayData\>
-
 \<name\>Block Outbound Default Rule\</name\>
-
 \<description\>Block Outbound Default Rule\</description\>
-
 \</displayData\>
-
 \<flags/\>
-
 \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
-
 \<providerData\>
-
 \<data\>2e65000000000000\</data\>
-
 \<asString\>.e......\</asString\>
-
 \</providerData\>
-
 \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
-
 \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
-
 \<weight\>
-
 \<type\>FWP_EMPTY\</type\>
-
 \</weight\>
-
 \<filterCondition numItems="1"\>
-
 \<item\>
-
 \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
-
 \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
-
 \<conditionValue\>
-
 \<type\>FWP_SID\</type\>
-
 \<sid\>S-1-0-0\</sid\>
-
 \</conditionValue\>
-
 \</item\>
-
 \</filterCondition\>
-
 \<action\>
-
 \<type\>FWP_ACTION_BLOCK\</type\>
-
 \<filterType/\>
-
 \</action\>
-
 \<rawContext\>0\</rawContext\>
-
 \<reserved/\>
-
 \<filterId\>206064\</filterId\>
-
 \<effectiveWeight\>
-
 \<type\>FWP_UINT64\</type\>
-
 \<uint64\>274877906944\</uint64\>
-
 \</effectiveWeight\>
-
 \</item\>
-
+```
 ## Case 8: Debugging Past Drop - UWP app connects to Internet target address with all capabilities
 
 In this example, the UWP app successfully connects to bing.com [204.79.197.200].
 
 **Classify Allow Net Event, NetEvents-Case-8.xml**
 
+```xml
 \<item\>
-
 >   \<header\>
-
 >   \<timeStamp\>2020-05-04T18:49:55.101Z\</timeStamp\>
-
 >   \<flags numItems="9"\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
-
 >   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
-
 >   \</flags\>
-
 >   \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
-
 >   \<ipProtocol\>6\</ipProtocol\>
-
 >   \<localAddrV4\>10.195.36.30\</localAddrV4\>
-
 >   \<remoteAddrV4\>204.79.197.200\</remoteAddrV4\>
-
 >   \<localPort\>61673\</localPort\>
-
 >   \<remotePort\>443\</remotePort\>
-
 >   \<scopeId\>0\</scopeId\>
-
 >   \<appId\>
-
 >   \<data\>5c006400650076006900630065005c0068006100720064006400690073006b0076006f006c0075006d00650031005c00700072006f006700720061006d002000660069006c00650073005c00770069006e0064006f007700730061007000700073005c00610066003600390032006200660066002d0036003700370039002d0034003200340066002d0038003700300065002d006600360065003500390063003500300032003300340039005f0031002e0031002e00310030002e0030005f007800360034005f005f00350063003000330037006a0061007200350038003300390072005c0075007700700073006f0063006b006500740063006c00690065006e0074002e006500780065000000\</data\>
-
 >   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
 >   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.0...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
-
 >   \</appId\>
-
 >   \<userId\>S-1-5-21-1578316205-4060061518-881547182-1000\</userId\>
-
 >   \<addressFamily\>FWP_AF_INET\</addressFamily\>
-
 >   \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
-
 >   \<enterpriseId/\>
-
 >   \<policyFlags\>0\</policyFlags\>
-
 >   \<effectiveName/\>
-
 >   \</header\>
-
 >   \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_ALLOW\</type\>
-
 >   \<classifyAllow\>
-
 >   \<filterId\>208757\</filterId\>
-
 >   \<layerId\>48\</layerId\>
-
 >   \<reauthReason\>0\</reauthReason\>
-
 >   \<originalProfile\>1\</originalProfile\>
-
 >   \<currentProfile\>1\</currentProfile\>
-
 >   \</classifyAllow\>
-
 >   \<internalFields\>
-
 >   \<internalFlags/\>
-
 >   \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-
 >   \<capabilities numItems="3"\>
-
 >   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>
-
 >   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
-
 >   \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
-
 >   \</capabilities\>
-
 >   \<fqbnVersion\>0\</fqbnVersion\>
-
 >   \<fqbnName/\>
-
 >   \<terminatingFiltersInfo numItems="2"\>
-
 >   \<item\>
-
 >   \<filterId\>208757\</filterId\>
-
 >   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-
 >   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
-
 >   \</item\>
-
 >   \<item\>
-
 >   \<filterId\>206049\</filterId\>
-
 >   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-
 >   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
-
 >   \</item\>
-
 >   \</terminatingFiltersInfo\>
-
 >   \</internalFields\>
-
 \</item\>
-
+```
 Important things to note: all capabilities are enabled and the resulting filter
 determining the flow of the packet is 208757.
 
 The filter stated above with action permit:
 
 **InternetClient Default Rule Filter \#208757, FilterState-Case-8.xml**
-
-				\<item\>
-
-					\<filterKey\>{e0f6f24e-1f0a-4f1a-bdd8-b9277c144fb5}\</filterKey\>
-
-					\<displayData\>
-
-						\<name\>InternetClient Default Rule\</name\>
-
-						\<description\>InternetClient Default Rule\</description\>
-
+```xml
+\<item\>
+	\<filterKey\>{e0f6f24e-1f0a-4f1a-bdd8-b9277c144fb5}\</filterKey\>
+	\<displayData\>
+	\<name\>InternetClient Default Rule\</name\>
+		\<description\>InternetClient Default Rule\</description\>
 					\</displayData\>
-
 					\<flags/\>
-
 					\<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
-
 					\<providerData\>
-
 						\<data\>e167000000000000\</data\>
-
 						\<asString\>.g......\</asString\>
-
 					\</providerData\>
-
 					\<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
-
 					\<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
-
 					\<weight\>
-
 						\<type\>FWP_EMPTY\</type\>
-
 					\</weight\>
-
 					\<filterCondition numItems="5"\>
-
 						\<item\>
-
 							\<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
-
 							\<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
-
 							\<conditionValue\>
-
 								\<type\>FWP_SID\</type\>
-
 								\<sid\>S-1-0-0\</sid\>
-
 							\</conditionValue\>
-
 						\</item\>
-
 						\<item\>
-
 							\<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
-
 							\<matchType\>FWP_MATCH_RANGE\</matchType\>
-
 							\<conditionValue\>
-
 								\<type\>FWP_RANGE_TYPE\</type\>
-
 								\<rangeValue\>
-
 									\<valueLow\>
-
 										\<type\>FWP_UINT32\</type\>
-
 										\<uint32\>0.0.0.0\</uint32\>
-
 									\</valueLow\>
-
 									\<valueHigh\>
-
 										\<type\>FWP_UINT32\</type\>
-
 										\<uint32\>255.255.255.255\</uint32\>
-
 									\</valueHigh\>
-
 								\</rangeValue\>
-
 							\</conditionValue\>
-
 						\</item\>
-
 						\<item\>
-
 							\<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
-
 							\<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 							\<conditionValue\>
-
 								\<type\>FWP_UINT32\</type\>
-
 								\<uint32\>1\</uint32\>
-
 							\</conditionValue\>
-
 						\</item\>
-
 						\<item\>
-
 							\<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
-
 							\<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 							\<conditionValue\>
-
 								\<type\>FWP_UINT32\</type\>
-
 								\<uint32\>1\</uint32\>
-
 							\</conditionValue\>
-
 						\</item\>
-
 						\<item\>
-
 							\<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
-
 							\<matchType\>FWP_MATCH_EQUAL\</matchType\>
-
 							\<conditionValue\>
-
 								\<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
-
 								\<sd\>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
-
 							\</conditionValue\>
-
 						\</item\>
-
 					\</filterCondition\>
-
 					\<action\>
-
 						\<type\>FWP_ACTION_PERMIT\</type\>
-
 						\<filterType/\>
-
 					\</action\>
-
 					\<rawContext\>0\</rawContext\>
-
 					\<reserved/\>
-
 					\<filterId\>208757\</filterId\>
-
 					\<effectiveWeight\>
-
 						\<type\>FWP_UINT64\</type\>
-
 						\<uint64\>412316868544\</uint64\>
-
 					\</effectiveWeight\>
-
 				\</item\>
-
-\*The capabilities field in a netEvent was added to the traces in the Windows 10
+```
+The capabilities field in a netEvent was added to the traces in the Windows 10
 May 2019 Update

From 8b2e9e237b9759ffa14b7df3cd3ab8dd1c0c2e08 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Wed, 12 Aug 2020 20:58:58 -0700
Subject: [PATCH 09/38] update

---
 windows/security/threat-protection/windows-firewall/TOC.md | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/TOC.md b/windows/security/threat-protection/windows-firewall/TOC.md
index 791aa26a20..69bd3c156c 100644
--- a/windows/security/threat-protection/windows-firewall/TOC.md
+++ b/windows/security/threat-protection/windows-firewall/TOC.md
@@ -71,17 +71,12 @@
 
 
 
-
 ## [Best practices]()
 ### [Securing IPsec](securing-end-to-end-ipsec-connections-by-using-ikev2.md)
 ### [PowerShell](windows-firewall-with-advanced-security-administration-with-windows-powershell.md)
 ### [Isolating Microsoft Store Apps on Your Network](isolating-apps-on-your-network.md)
 
 
-
-
-
-
 ## [How-to]()
 ### [Procedures Used in This Guide](procedures-used-in-this-guide.md)
 #### [Add Production Devices to the Membership Group for a Zone](add-production-devices-to-the-membership-group-for-a-zone.md)

From ae4db0dc4a240e2f2fc0a57dbea10d49b0fcf769 Mon Sep 17 00:00:00 2001
From: schmurky <maccruz@microsoft.com>
Date: Thu, 13 Aug 2020 12:47:29 +0800
Subject: [PATCH 10/38] Updated TOC

---
 .../threat-protection/windows-firewall/TOC.md | 120 +++++++++---------
 1 file changed, 57 insertions(+), 63 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/TOC.md b/windows/security/threat-protection/windows-firewall/TOC.md
index 69bd3c156c..17d730be02 100644
--- a/windows/security/threat-protection/windows-firewall/TOC.md
+++ b/windows/security/threat-protection/windows-firewall/TOC.md
@@ -5,41 +5,36 @@
 ### [Design Guide](windows-firewall-with-advanced-security-design-guide.md)
 
 ### [Design Process](understanding-the-windows-firewall-with-advanced-security-design-process.md)
-### [Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)
+
+### [Deployment Goals]()
+
+#### [Identify deployment goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)
 #### [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md)
 #### [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md)
 #### [Require Encryption](require-encryption-when-accessing-sensitive-network-resources.md)
 #### [Restrict Access](restrict-access-to-only-specified-users-or-devices.md)
 
-### [Mapping Goals to a Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)
+### [Deployment designs]()
+
+#### [Mapping Goals to a Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)
 #### [Basic Design](basic-firewall-policy-design.md)
 #### [Domain Isolation Design](domain-isolation-policy-design.md)
 #### [Server Isolation Design](server-isolation-policy-design.md)
 #### [Certificate-based Isolation Design](certificate-based-isolation-policy-design.md)
 
-### [Evaluating Design Examples](evaluating-windows-firewall-with-advanced-security-design-examples.md)
-#### [Basic Design Example](firewall-policy-design-example.md)
-#### [Domain Isolation Design Example](domain-isolation-policy-design-example.md)
-#### [Server Isolation Design Example](server-isolation-policy-design-example.md)
-#### [Certificate-based Isolation Design Example](certificate-based-isolation-policy-design-example.md)
+### [Design plans]()
 
-### [Designing a Strategy](designing-a-windows-firewall-with-advanced-security-strategy.md)
-
-#### [Gathering the Info You Need](gathering-the-information-you-need.md)
-##### [Network](gathering-information-about-your-current-network-infrastructure.md)
-##### [Active Directory](gathering-information-about-your-active-directory-deployment.md)
-##### [Computers](gathering-information-about-your-devices.md)
-##### [Other Relevant Information](gathering-other-relevant-information.md)
-#### [Determining the Trusted State of Your Computers](determining-the-trusted-state-of-your-devices.md)
-
-### [Planning Your Design](planning-your-windows-firewall-with-advanced-security-design.md)
+#### [Planning Your Design](planning-your-windows-firewall-with-advanced-security-design.md)
 #### [Planning Settings for a Basic Firewall Policy](planning-settings-for-a-basic-firewall-policy.md)
 
-#### [Planning Domain Isolation Zones](planning-domain-isolation-zones.md)
-##### [Exemption List](exemption-list.md)
-##### [Isolated Domain](isolated-domain.md)
-##### [Boundary Zone](boundary-zone.md)
-##### [Encryption Zone](encryption-zone.md)
+##### [Planning Domain Isolation Zones]()
+
+###### [Domain Isolation Zones](planning-domain-isolation-zones.md)
+###### [Exemption List](exemption-list.md)
+###### [Isolated Domain](isolated-domain.md)
+###### [Boundary Zone](boundary-zone.md)
+###### [Encryption Zone](encryption-zone.md)
+
 #### [Planning Server Isolation Zones](planning-server-isolation-zones.md)
 
 #### [Planning Certificate-based Authentication](planning-certificate-based-authentication.md)
@@ -65,7 +60,7 @@
 
 
 ## [Deployment guide]()
-### [Deployment Guide](windows-firewall-with-advanced-security-deployment-guide.md)
+
 #### [Planning to Deploy](planning-to-deploy-windows-firewall-with-advanced-security.md)
 #### [Implementing Your Plan](implementing-your-windows-firewall-with-advanced-security-design-plan.md)
 
@@ -78,46 +73,45 @@
 
 
 ## [How-to]()
-### [Procedures Used in This Guide](procedures-used-in-this-guide.md)
-#### [Add Production Devices to the Membership Group for a Zone](add-production-devices-to-the-membership-group-for-a-zone.md)
-#### [Add Test Devices to the Membership Group for a Zone](add-test-devices-to-the-membership-group-for-a-zone.md)
-#### [Assign Security Group Filters to the GPO](assign-security-group-filters-to-the-gpo.md)
-#### [Change Rules from Request to Require Mode](change-rules-from-request-to-require-mode.md)
-#### [Configure Authentication Methods](configure-authentication-methods.md)
-#### [Configure Data Protection (Quick Mode) Settings](configure-data-protection-quick-mode-settings.md)
-#### [Configure Group Policy to Autoenroll and Deploy Certificates](configure-group-policy-to-autoenroll-and-deploy-certificates.md)
-#### [Configure Key Exchange (Main Mode) Settings](configure-key-exchange-main-mode-settings.md)
-#### [Configure the Rules to Require Encryption](configure-the-rules-to-require-encryption.md)
-#### [Configure the Windows Firewall Log](configure-the-windows-firewall-log.md)
-#### [Configure the Workstation Authentication Certificate Template](configure-the-workstation-authentication-certificate-template.md)
-#### [Configure Windows Firewall to Suppress Notifications When a Program Is Blocked](configure-windows-firewall-to-suppress-notifications-when-a-program-is-blocked.md)
-#### [Confirm That Certificates Are Deployed Correctly](confirm-that-certificates-are-deployed-correctly.md)
-#### [Copy a GPO to Create a New GPO](copy-a-gpo-to-create-a-new-gpo.md)
-#### [Create a Group Account in Active Directory](create-a-group-account-in-active-directory.md)
-#### [Create a Group Policy Object](create-a-group-policy-object.md)
-#### [Create an Authentication Exemption List Rule](create-an-authentication-exemption-list-rule.md)
-#### [Create an Authentication Request Rule](create-an-authentication-request-rule.md)
-#### [Create an Inbound ICMP Rule](create-an-inbound-icmp-rule.md)
-#### [Create an Inbound Port Rule](create-an-inbound-port-rule.md)
-#### [Create an Inbound Program or Service Rule](create-an-inbound-program-or-service-rule.md)
-#### [Create an Outbound Port Rule](create-an-outbound-port-rule.md)
-#### [Create an Outbound Program or Service Rule](create-an-outbound-program-or-service-rule.md)
-#### [Create Inbound Rules to Support RPC](create-inbound-rules-to-support-rpc.md)
-#### [Create WMI Filters for the GPO](create-wmi-filters-for-the-gpo.md)
-#### [Create Windows Firewall rules in Intune](create-windows-firewall-rules-in-intune.md)
-#### [Enable Predefined Inbound Rules](enable-predefined-inbound-rules.md)
-#### [Enable Predefined Outbound Rules](enable-predefined-outbound-rules.md)
-#### [Exempt ICMP from Authentication](exempt-icmp-from-authentication.md)
-#### [Link the GPO to the Domain](link-the-gpo-to-the-domain.md)
-#### [Modify GPO Filters](modify-gpo-filters-to-apply-to-a-different-zone-or-version-of-windows.md)
-#### [Open IP Security Policies](open-the-group-policy-management-console-to-ip-security-policies.md)
-#### [Open Group Policy](open-the-group-policy-management-console-to-windows-firewall.md)
-#### [Open Group Policy](open-the-group-policy-management-console-to-windows-firewall-with-advanced-security.md)
-#### [Open Windows Firewall](open-windows-firewall-with-advanced-security.md)
-#### [Restrict Server Access](restrict-server-access-to-members-of-a-group-only.md)
-#### [Enable Windows Firewall](turn-on-windows-firewall-and-configure-default-behavior.md)
-#### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
-#### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
+### [Add Production Devices to the Membership Group for a Zone](add-production-devices-to-the-membership-group-for-a-zone.md)
+### [Add Test Devices to the Membership Group for a Zone](add-test-devices-to-the-membership-group-for-a-zone.md)
+### [Assign Security Group Filters to the GPO](assign-security-group-filters-to-the-gpo.md)
+### [Change Rules from Request to Require Mode](change-rules-from-request-to-require-mode.md)
+### [Configure Authentication Methods](configure-authentication-methods.md)
+### [Configure Data Protection (Quick Mode) Settings](configure-data-protection-quick-mode-settings.md)
+### [Configure Group Policy to Autoenroll and Deploy Certificates](configure-group-policy-to-autoenroll-and-deploy-certificates.md)
+### [Configure Key Exchange (Main Mode) Settings](configure-key-exchange-main-mode-settings.md)
+### [Configure the Rules to Require Encryption](configure-the-rules-to-require-encryption.md)
+### [Configure the Windows Firewall Log](configure-the-windows-firewall-log.md)
+### [Configure the Workstation Authentication Certificate Template](configure-the-workstation-authentication-certificate-template.md)
+### [Configure Windows Firewall to Suppress Notifications When a Program Is Blocked](configure-windows-firewall-to-suppress-notifications-when-a-program-is-blocked.md)
+### [Confirm That Certificates Are Deployed Correctly](confirm-that-certificates-are-deployed-correctly.md)
+### [Copy a GPO to Create a New GPO](copy-a-gpo-to-create-a-new-gpo.md)
+### [Create a Group Account in Active Directory](create-a-group-account-in-active-directory.md)
+### [Create a Group Policy Object](create-a-group-policy-object.md)
+### [Create an Authentication Exemption List Rule](create-an-authentication-exemption-list-rule.md)
+### [Create an Authentication Request Rule](create-an-authentication-request-rule.md)
+### [Create an Inbound ICMP Rule](create-an-inbound-icmp-rule.md)
+### [Create an Inbound Port Rule](create-an-inbound-port-rule.md)
+### [Create an Inbound Program or Service Rule](create-an-inbound-program-or-service-rule.md)
+### [Create an Outbound Port Rule](create-an-outbound-port-rule.md)
+### [Create an Outbound Program or Service Rule](create-an-outbound-program-or-service-rule.md)
+### [Create Inbound Rules to Support RPC](create-inbound-rules-to-support-rpc.md)
+### [Create WMI Filters for the GPO](create-wmi-filters-for-the-gpo.md)
+### [Create Windows Firewall rules in Intune](create-windows-firewall-rules-in-intune.md)
+### [Enable Predefined Inbound Rules](enable-predefined-inbound-rules.md)
+### [Enable Predefined Outbound Rules](enable-predefined-outbound-rules.md)
+### [Exempt ICMP from Authentication](exempt-icmp-from-authentication.md)
+### [Link the GPO to the Domain](link-the-gpo-to-the-domain.md)
+### [Modify GPO Filters](modify-gpo-filters-to-apply-to-a-different-zone-or-version-of-windows.md)
+### [Open IP Security Policies](open-the-group-policy-management-console-to-ip-security-policies.md)
+### [Open Group Policy](open-the-group-policy-management-console-to-windows-firewall.md)
+### [Open Group Policy](open-the-group-policy-management-console-to-windows-firewall-with-advanced-security.md)
+### [Open Windows Firewall](open-windows-firewall-with-advanced-security.md)
+### [Restrict Server Access](restrict-server-access-to-members-of-a-group-only.md)
+### [Enable Windows Firewall](turn-on-windows-firewall-and-configure-default-behavior.md)
+### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
+### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
 
 
 

From e8ad1713f727f4c34790d78dd11b12b9f22a4f42 Mon Sep 17 00:00:00 2001
From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com>
Date: Thu, 13 Aug 2020 10:03:26 +0500
Subject: [PATCH 11/38] Update dg-readiness-tool.md

---
 .../identity-protection/credential-guard/dg-readiness-tool.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/identity-protection/credential-guard/dg-readiness-tool.md b/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
index ae96f09ed1..e609c9469d 100644
--- a/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
+++ b/windows/security/identity-protection/credential-guard/dg-readiness-tool.md
@@ -657,7 +657,7 @@ function PrintHardwareReq
 {
     LogAndConsole "###########################################################################"
     LogAndConsole "OS and Hardware requirements for enabling Device Guard and Credential Guard"
-    LogAndConsole " 1. OS SKUs: Available only on these OS Skus - Enterprise, Server, Education, Enterprise IoT, Pro, and Home"
+    LogAndConsole " 1. OS SKUs: Available only on these OS Skus - Enterprise, Server, Education and Enterprise IoT"
     LogAndConsole " 2. Hardware: Recent hardware that supports virtualization extension with SLAT"
     LogAndConsole "To learn more please visit: https://aka.ms/dgwhcr"
     LogAndConsole "########################################################################### `n"
@@ -735,7 +735,7 @@ function CheckOSSKU
     $osname = $((gwmi win32_operatingsystem).Name).ToLower()
     $_SKUSupported = 0
     Log "OSNAME:$osname"
-    $SKUarray = @("Enterprise", "Education", "IoT", "Windows Server", "Pro", "Home")
+    $SKUarray = @("Enterprise", "Education", "IoT", "Windows Server")
     $HLKAllowed = @("microsoft windows 10 pro")
     foreach ($SKUent in $SKUarray)
     {

From 6c6bb06926cb69a77e32d97bd6bc5e3f41302084 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Thu, 13 Aug 2020 13:12:40 -0700
Subject: [PATCH 12/38] Update TOC.md

---
 .../security/threat-protection/windows-firewall/TOC.md   | 9 ---------
 1 file changed, 9 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/TOC.md b/windows/security/threat-protection/windows-firewall/TOC.md
index 17d730be02..00296d4b2d 100644
--- a/windows/security/threat-protection/windows-firewall/TOC.md
+++ b/windows/security/threat-protection/windows-firewall/TOC.md
@@ -7,7 +7,6 @@
 ### [Design Process](understanding-the-windows-firewall-with-advanced-security-design-process.md)
 
 ### [Deployment Goals]()
-
 #### [Identify deployment goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)
 #### [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md)
 #### [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md)
@@ -15,7 +14,6 @@
 #### [Restrict Access](restrict-access-to-only-specified-users-or-devices.md)
 
 ### [Deployment designs]()
-
 #### [Mapping Goals to a Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)
 #### [Basic Design](basic-firewall-policy-design.md)
 #### [Domain Isolation Design](domain-isolation-policy-design.md)
@@ -23,12 +21,9 @@
 #### [Certificate-based Isolation Design](certificate-based-isolation-policy-design.md)
 
 ### [Design plans]()
-
 #### [Planning Your Design](planning-your-windows-firewall-with-advanced-security-design.md)
 #### [Planning Settings for a Basic Firewall Policy](planning-settings-for-a-basic-firewall-policy.md)
-
 ##### [Planning Domain Isolation Zones]()
-
 ###### [Domain Isolation Zones](planning-domain-isolation-zones.md)
 ###### [Exemption List](exemption-list.md)
 ###### [Isolated Domain](isolated-domain.md)
@@ -60,7 +55,6 @@
 
 
 ## [Deployment guide]()
-
 #### [Planning to Deploy](planning-to-deploy-windows-firewall-with-advanced-security.md)
 #### [Implementing Your Plan](implementing-your-windows-firewall-with-advanced-security-design-plan.md)
 
@@ -113,9 +107,6 @@
 ### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
 ### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
 
-
-
-
 ## [References]()
 ### [Checklist: Creating Group Policy Objects](checklist-creating-group-policy-objects.md)
 ### [Checklist: Implementing a Basic Firewall Policy Design](checklist-implementing-a-basic-firewall-policy-design.md)

From 58cadb1af5084f78fcf02dea9cd36c8d1b989fb8 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Thu, 13 Aug 2020 13:16:19 -0700
Subject: [PATCH 13/38] fix lines

---
 windows/security/threat-protection/windows-firewall/TOC.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/TOC.md b/windows/security/threat-protection/windows-firewall/TOC.md
index 00296d4b2d..7861f11250 100644
--- a/windows/security/threat-protection/windows-firewall/TOC.md
+++ b/windows/security/threat-protection/windows-firewall/TOC.md
@@ -55,8 +55,8 @@
 
 
 ## [Deployment guide]()
-#### [Planning to Deploy](planning-to-deploy-windows-firewall-with-advanced-security.md)
-#### [Implementing Your Plan](implementing-your-windows-firewall-with-advanced-security-design-plan.md)
+### [Planning to Deploy](planning-to-deploy-windows-firewall-with-advanced-security.md)
+### [Implementing Your Plan](implementing-your-windows-firewall-with-advanced-security-design-plan.md)
 
 
 

From cef561ea53b63153a87c18d7bb65c9810df0cc74 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 13 Aug 2020 16:23:35 -0700
Subject: [PATCH 14/38] more fixin

---
 .../troubleshooting-uwp-firewall.md           | 210 +++++++++---------
 1 file changed, 100 insertions(+), 110 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
index fc7c29c60d..bc17fd0a75 100644
--- a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
@@ -19,174 +19,164 @@ ms.topic: troubleshooting
 This document is intended to help network admins, support engineers, and developers to
 investigate UWP app network connectivity issues.
 
-# Introduction
+This document guides you through steps to debug  Universal Windows Platform (UWP) app network connectivity issues by providing practical examples.
 
-This document guides you through steps to debug different Universal Windows Platform (UWP) app network connectivity issues by providing practical case examples.
+## Typical causes of connectivity issues
 
-UWP app network connectivity issues typically stem from one of the following causes:
+UWP app network connectivity issues are typically caused by: 
 
-1. The UWP app was not permitted to receive loopback traffic (this must be configured as, by default, a UWP app is not allowed to receive loopback traffic).
+1. The UWP app was not permitted to receive loopback traffic. This must be configured. By default, UWP apps are not allowed to receive loopback traffic.
 2. The UWP app is missing the proper capability tokens.
-3. The private range is configured incorrectly (i.e. set incorrectly through GP/MDM policies, etc.)
+3. The private range is configured incorrectly. For example, the private ranges is set incorrectly through GP/MDM policies, etc.
 
-To understand these causes more thoroughly, there are several concepts that should be reviewed.
+To understand these causes more thoroughly, there are several concepts to review.
 
-The traffic of network packets (e.g. what's permitted and what’s not) on Windows is ultimately determined by the Windows Filtering Platform (WFP). When a UWP app
+The traffic of network packets (what's permitted and what’s not) on Windows is determined by the Windows Filtering Platform (WFP). When a UWP app
 or the private range is configured incorrectly, it affects how the UWP app’s network traffic will be processed by WFP.
 
-When a packet is processed by WFP, the characteristics of that packet must explicitly match all the conditions of a filter to either be permitted or dropped to its target address. Connectivity issues typically happen when the packet does not match the filter conditions of any filters, leading the packet to be dropped by a default block filter. The presence of the default block
-filters ensures network isolation for UWP applications. Specifically, it guarantees a network drop for a packet that does not have the correct capabilities for the resource it is trying to reach, ensuring the application’s granular access to each resource type and preventing the application from “escaping” its environment.
+When a packet is processed by WFP, the characteristics of that packet must explicitly match all the conditions of a filter to either be permitted or dropped to its target address. Connectivity issues typically happen when the packet does not match any of the filter conditions, leading the packet to be dropped by a default block filter. The presence of the default block
+filters ensures network isolation for UWP applications. Specifically, it guarantees a network drop for a packet that does not have the correct capabilities for the resource it is trying to reach. This ensures the application’s granular access to each resource type and preventing the application from escaping its environment.
 
 For more information on the filter arbitration algorithm and network isolation,
-please read [Filter
+see [Filter
 Arbitration](https://docs.microsoft.com/en-us/windows/win32/fwp/filter-arbitration)
 and
 [Isolation](https://docs.microsoft.com/en-us/windows/win32/secauthz/appcontainer-isolation).
 
-The next sections will cover debugging case examples for loopback and
-non-loopback UWP app network connectivity issues.
+The following sections cover debugging case examples for loopback and non-loopback UWP app network connectivity issues.
 
 > [!NOTE] 
-> As improvements to debugging and diagnostics around the Windows Filtering Platform are made, the trace examples in this document may not exactly match the
-traces collected on an older Windows build.
+> As improvements to debugging and diagnostics in the Windows Filtering Platform are made, the trace examples in this document may not exactly match the
+traces collected on previous releases of Windows.
 
 # Debugging UWP App Loopback scenarios
 
-If you have a scenario where you are establishing a TCP/IP connection between two processes on the same host where one of them is a UWP app, you must enable loopback.
+If you need to establis a TCP/IP connection between two processes on the same host where one of them is a UWP app, you must enable loopback.
 
-To enable loopback for client outbound connections, run the following in a command prompt:
+To enable loopback for client outbound connections, run the following at a command prompt:
 
-`CheckNetIsolation.exe LoopbackExempt -a -n=\<AppContainer or Package Family\>`
+```dos
+CheckNetIsolation.exe LoopbackExempt -a -n=\<AppContainer or Package Family\>
+```
 
-To enable loopback for server inbound connections, please run the following in a
+To enable loopback for server inbound connections,  run the following at a
 command prompt:
+```dos
+CheckNetIsolation.exe LoopbackExempt -is -n=\<AppContainer or Package Family\>
+```
+You can ensure loopback is enabled by checking the appx manifests of both the sender and receiver.
 
-`CheckNetIsolation.exe LoopbackExempt -is -n=\<AppContainer or Package Family\>`
-
-You can ensure loopback is enabled by checking the appx manifests of both the
-sender and receiver.
-
-For more information about loopback scenarios, please read [Communicating with
+For more information about loopback scenarios, see [Communicating with
 localhost
 (loopback)](https://docs.microsoft.com/en-us/windows/iot-core/develop-your-app/loopback)
 
 # Debugging Live Drops
 
-If the issue happened recently, but you find you are not able to reproduce the
-issue, go to Debugging Past Drops for the appropriate trace commands.
+If the issue happened recently, but you find you are not able to reproduce the issue, go to Debugging Past Drops for the appropriate trace commands.
 
-If you can consistently reproduce the issue, then you can run the following in
-an admin command prompt to gather a fresh trace:
+If you can consistently reproduce the issue, then you can run the following in an admin command prompt to gather a fresh trace:
 
-```
+```DOS
 Netsh wfp capture start keywords=19
 \<Run UWP app\>
 Netsh wfp capture stop
 ```
 
-The above commands will generate a wfpdiag.cab. Inside the .cab exists a
-wfpdiag.xml, which contains any allow or drop netEvents and filters that existed
-during that repro. Without “keywords=19”, the trace will only collect drop
-netEvents.
+These commands generate a wfpdiag.cab. Inside the .cab exists a wfpdiag.xml, which contains any allow or drop netEvents and filters that existed during that repro. Without “keywords=19”, the trace will only collect drop netEvents.
 
 Inside the wfpdiag.xml, search for netEvents which have
-FWPM_NET_EVENT_TYPE_CLASSIFY_DROP as the netEvent type. To find the relevant
-drop events, search for the drop events with matching destination IP address,
+FWPM_NET_EVENT_TYPE_CLASSIFY_DROP as the netEvent type. To find the relevant drop events, search for the drop events with matching destination IP address,
 package SID, or application ID name. The characters in the application ID name
 will be separated by periods:
-```
+
+```XML
 (ex) 					
 
-\<asString\>
-
+<asString\>
 \\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.w.i.n.d.o.w.s.\\.s.y.s.t.e.m.3.2.\\.s.v.c.h.o.s.t...e.x.e...
 
 \</asString\>
 ```
-The netEvent will have more information about the packet that was dropped
-including information about its capabilities, the filter that dropped the
-packet, and much more.
+
+The netEvent will have more information about the packet that was dropped including information about its capabilities, the filter that dropped the packet, and much more.
 
 ## Case 1: UWP app connects to Internet target address with all capabilities
 
 In this example, the UWP app successfully connects to bing.com
 [2620:1ec:c11::200].
 
-A packet from a UWP app needs the correct networking capability token for the
-resource it is trying to reach.
+A packet from a UWP app needs the correct networking capability token for the resource it is trying to reach.
 
-In this scenario, the app could successfully send a packet to the Internet
-target because it had an Internet capability token.
+In this scenario, the app could successfully send a packet to the Internet target because it had an Internet capability token.
 
-The following shows the allow netEvent of the app connecting to the target IP.
-The netEvent contains information about the packet including its local address,
+The following shows the allow netEvent of the app connecting to the target IP. The netEvent contains information about the packet including its local address,
 remote address, capabilities, etc.
 
 **Classify Allow netEvent, Wfpdiag-Case-1.xml**
 ```xml
-\<netEvent\>
-\<header\>
->   \<timeStamp\>2020-05-21T17:25:59.070Z\</timeStamp\>
->   \<flags numItems="9"\>
->   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>	
->   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
->   \</flags\>
->   \<ipVersion\>FWP_IP_VERSION_V6\</ipVersion\>
->   \<ipProtocol\>6\</ipProtocol\>				
->   \<localAddrV6.byteArray16\>2001:4898:30:3:256c:e5ba:12f3:beb1\</localAddrV6.byteArray16\>	\<remoteAddrV6.byteArray16\>2620:1ec:c11::200\</remoteAddrV6.byteArray16\>
-\<localPort\>52127\</localPort\>
-\<remotePort\>443\</remotePort\>
-\<scopeId\>0\</scopeId\>
-\<appId\>				
->   \<data\>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\</data\>
->   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
->   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.0...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
-\</appId\>
-\<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
-\<addressFamily\>FWP_AF_INET6\</addressFamily\>
-\<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
-\<enterpriseId/\>
-\<policyFlags\>0\</policyFlags\>
-\<effectiveName/\>
-\</header\>
-\<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_ALLOW\</type\>
-\<classifyAllow\>
->   \<filterId\>125918\</filterId\>
->   \<layerId\>50\</layerId\>
->   \<reauthReason\>0\</reauthReason\>
->   \<originalProfile\>1\</originalProfile\>
->   \<currentProfile\>1\</currentProfile\>
-\</classifyAllow\>
-\<internalFields\>
-\<internalFlags/\>
-\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-\<capabilities numItems="3"\>				
->   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>			\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
->   \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
-\</capabilities\>
-\<fqbnVersion\>0\</fqbnVersion\>
-\<fqbnName/\>
-\<terminatingFiltersInfo numItems="2"\>
->   \<item\>
-		\<filterId\>125918\</filterId\>					
->   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-		\<actionType\>FWP_ACTION_PERMIT\</actionType\>
->   \</item\>
->   \<item\>
-		\<filterId\>121167\</filterId\>
-		\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-		\<actionType\>FWP_ACTION_PERMIT\</actionType\>
-    \</item\>
-\</terminatingFiltersInfo\>
-\</internalFields\>
-\</netEvent\>
+<netEvent\>
+<header\>
+    <timeStamp\>2020-05-21T17:25:59.070Z\</timeStamp\>
+    <flags numItems="9"\>
+    <item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
+    <item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
+    <item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
+    <item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
+    <item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
+    <item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
+    <item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>	
+    <item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
+    <item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
+    </flags\>
+    <ipVersion\>FWP_IP_VERSION_V6\</ipVersion\>
+    <ipProtocol\>6\</ipProtocol\>				
+    <localAddrV6.byteArray16\>2001:4898:30:3:256c:e5ba:12f3:beb1\</localAddrV6.byteArray16\>	\<remoteAddrV6.byteArray16\>2620:1ec:c11::200\</remoteAddrV6.byteArray16\>
+<localPort\>52127\</localPort\>
+<remotePort\>443\</remotePort\>
+<scopeId\>0\</scopeId\>
+<appId\>				
+    <data\>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\</data\>
+    <asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+       .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.0...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
+</appId\>
+<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
+<addressFamily\>FWP_AF_INET6\</addressFamily\>
+<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
+<enterpriseId/\>
+<policyFlags\>0\</policyFlags\>
+<effectiveName/\>
+</header\>
+<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_ALLOW\</type\>
+<classifyAllow\>
+    <filterId\>125918\</filterId\>
+    <layerId\>50\</layerId\>
+    <reauthReason\>0\</reauthReason\>
+    <originalProfile\>1\</originalProfile\>
+    <currentProfile\>1\</currentProfile\>
+</classifyAllow\>
+<internalFields\>
+<internalFlags/\>
+<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
+<capabilities numItems="3"\>				
+    <item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>			<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
+    <item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
+</capabilities\>
+<fqbnVersion\>0\</fqbnVersion\>
+<fqbnName/\>
+<terminatingFiltersInfo numItems="2"\>
+    <item\>
+		<filterId\>125918\</filterId\>					
+    <subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
+		<actionType\>FWP_ACTION_PERMIT\</actionType\>
+    </item\>
+    <item\>
+		<filterId\>121167\</filterId\>
+		<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
+		<actionType\>FWP_ACTION_PERMIT\</actionType\>
+    </item\>
+</terminatingFiltersInfo\>
+</internalFields\>
+</netEvent\>
 ```
 
 The following is the filter that permitted the packet to be sent to the target

From 9aba80f3de8d2ec83e443b30afe63184a793c404 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 13 Aug 2020 18:09:28 -0700
Subject: [PATCH 15/38] so many

---
 .../troubleshooting-uwp-firewall.md           | 2124 ++++++++---------
 1 file changed, 1060 insertions(+), 1064 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
index bc17fd0a75..fd79a67511 100644
--- a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
@@ -56,13 +56,13 @@ If you need to establis a TCP/IP connection between two processes on the same ho
 To enable loopback for client outbound connections, run the following at a command prompt:
 
 ```dos
-CheckNetIsolation.exe LoopbackExempt -a -n=\<AppContainer or Package Family\>
+CheckNetIsolation.exe LoopbackExempt -a -n=<AppContainer or Package Family>
 ```
 
 To enable loopback for server inbound connections,  run the following at a
 command prompt:
 ```dos
-CheckNetIsolation.exe LoopbackExempt -is -n=\<AppContainer or Package Family\>
+CheckNetIsolation.exe LoopbackExempt -is -n=<AppContainer or Package Family>
 ```
 You can ensure loopback is enabled by checking the appx manifests of both the sender and receiver.
 
@@ -78,7 +78,7 @@ If you can consistently reproduce the issue, then you can run the following in a
 
 ```DOS
 Netsh wfp capture start keywords=19
-\<Run UWP app\>
+<Run UWP app>
 Netsh wfp capture stop
 ```
 
@@ -92,10 +92,10 @@ will be separated by periods:
 ```XML
 (ex) 					
 
-<asString\>
+<asString>
 \\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.w.i.n.d.o.w.s.\\.s.y.s.t.e.m.3.2.\\.s.v.c.h.o.s.t...e.x.e...
 
-\</asString\>
+</asString>
 ```
 
 The netEvent will have more information about the packet that was dropped including information about its capabilities, the filter that dropped the packet, and much more.
@@ -114,187 +114,186 @@ remote address, capabilities, etc.
 
 **Classify Allow netEvent, Wfpdiag-Case-1.xml**
 ```xml
-<netEvent\>
-<header\>
-    <timeStamp\>2020-05-21T17:25:59.070Z\</timeStamp\>
-    <flags numItems="9"\>
-    <item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
-    <item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
-    <item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
-    <item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
-    <item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
-    <item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
-    <item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>	
-    <item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
-    <item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
-    </flags\>
-    <ipVersion\>FWP_IP_VERSION_V6\</ipVersion\>
-    <ipProtocol\>6\</ipProtocol\>				
-    <localAddrV6.byteArray16\>2001:4898:30:3:256c:e5ba:12f3:beb1\</localAddrV6.byteArray16\>	\<remoteAddrV6.byteArray16\>2620:1ec:c11::200\</remoteAddrV6.byteArray16\>
-<localPort\>52127\</localPort\>
-<remotePort\>443\</remotePort\>
-<scopeId\>0\</scopeId\>
-<appId\>				
-    <data\>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\</data\>
-    <asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
-       .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.0...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
-</appId\>
-<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
-<addressFamily\>FWP_AF_INET6\</addressFamily\>
-<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
-<enterpriseId/\>
-<policyFlags\>0\</policyFlags\>
-<effectiveName/\>
-</header\>
-<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_ALLOW\</type\>
-<classifyAllow\>
-    <filterId\>125918\</filterId\>
-    <layerId\>50\</layerId\>
-    <reauthReason\>0\</reauthReason\>
-    <originalProfile\>1\</originalProfile\>
-    <currentProfile\>1\</currentProfile\>
-</classifyAllow\>
-<internalFields\>
-<internalFlags/\>
-<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-<capabilities numItems="3"\>				
-    <item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>			<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
-    <item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
-</capabilities\>
-<fqbnVersion\>0\</fqbnVersion\>
-<fqbnName/\>
-<terminatingFiltersInfo numItems="2"\>
-    <item\>
-		<filterId\>125918\</filterId\>					
-    <subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-		<actionType\>FWP_ACTION_PERMIT\</actionType\>
-    </item\>
-    <item\>
-		<filterId\>121167\</filterId\>
-		<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-		<actionType\>FWP_ACTION_PERMIT\</actionType\>
-    </item\>
-</terminatingFiltersInfo\>
-</internalFields\>
-</netEvent\>
+<netEvent>
+    <header>
+    <timeStamp>2020-05-21T17:25:59.070Z</timeStamp>
+    <flags numItems="9">
+        <item>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET</item>
+        <item>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET</item>
+        <item>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET</item>
+        <item>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET</item>
+        <item>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET</item>
+        <item>FWPM_NET_EVENT_FLAG_APP_ID_SET</item>
+        <item>FWPM_NET_EVENT_FLAG_USER_ID_SET</item>	
+        <item>FWPM_NET_EVENT_FLAG_IP_VERSION_SET</item>
+        <item>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET</item>
+    </flags>
+    <ipVersion>FWP_IP_VERSION_V6</ipVersion>
+    <ipProtocol>6</ipProtocol>				
+    <localAddrV6.byteArray16>2001:4898:30:3:256c:e5ba:12f3:beb1</localAddrV6.byteArray16>	
+    <remoteAddrV6.byteArray16>2620:1ec:c11::200</remoteAddrV6.byteArray16>
+<localPort>52127</localPort>
+<remotePort>443</remotePort>
+<scopeId>0</scopeId>
+<appId>				
+    <data>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</data>
+    <asString>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+       .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.0...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...</asString>
+</appId>
+<userId>S-1-5-21-2993214446-1947230185-131795049-1000</userId>
+<addressFamily>FWP_AF_INET6</addressFamily>
+<packageSid>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936</packageSid>
+<enterpriseId/>
+<policyFlags>0</policyFlags>
+<effectiveName/>
+</header>
+<type>FWPM_NET_EVENT_TYPE_CLASSIFY_ALLOW</type>
+<classifyAllow>
+    <filterId>125918</filterId>
+    <layerId>50</layerId>
+    <reauthReason>0</reauthReason>
+    <originalProfile>1</originalProfile>
+    <currentProfile>1</currentProfile>
+</classifyAllow>
+<internalFields>
+<internalFlags/>
+<remoteAddrBitmap>0000000000000000</remoteAddrBitmap>
+<capabilities numItems="3">				
+    <item>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT</item>
+    <item>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER</item>
+    <item>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK</item>
+</capabilities>
+<fqbnVersion>0</fqbnVersion>
+<fqbnName/>
+<terminatingFiltersInfo numItems="2">
+    <item>
+        <filterId>125918</filterId>
+        <subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH</subLayer>
+        <actionType>FWP_ACTION_PERMIT</actionType>
+    </item>
+    <item>
+		<filterId>121167</filterId>
+		<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF</subLayer>
+		<actionType>FWP_ACTION_PERMIT</actionType>
+    </item>
+</terminatingFiltersInfo>
+</internalFields>
+</netEvent>
 ```
 
 The following is the filter that permitted the packet to be sent to the target
-address according to the terminatingFiltersInfo in the netEvent. This packet was
-allowed by Filter \#125918 which is from the InternetClient Default Rule.
+address according to the **terminatingFiltersInfo** in the **netEvent**. This packet was
+allowed by Filter #125918, from the InternetClient Default Rule.
 
-**InternetClient Default Rule Filter \#125918, Wfpdiag-Case-1.xml**
+**InternetClient Default Rule Filter #125918, Wfpdiag-Case-1.xml**
 ```xml
-\<item\>
->   \<filterKey\>{3389708e-f7ae-4ebc-a61a-f659065ab24e}\</filterKey\>
->   \<displayData\>
->   \<name\>InternetClient Default Rule\</name\>
->   \<description\>InternetClient Default Rule\</description\>
->   \</displayData\>
->   \<flags/\>
->   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
->   \<providerData\>
->   \<data\>ad2b000000000000\</data\>
->   \<asString\>.+......\</asString\>
->   \</providerData\>
->   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V6\</layerKey\>
->   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
->   \<weight\>
->   \<type\>FWP_EMPTY\</type\>
->   \</weight\>
->   \<filterCondition numItems="5"\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SID\</type\>
->   \<sid\>S-1-0-0\</sid\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
->   \<matchType\>FWP_MATCH_RANGE\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_RANGE_TYPE\</type\>
->   \<rangeValue\>
->   \<valueLow\>
->   \<type\>FWP_BYTE_ARRAY16_TYPE\</type\>
->   \<byteArray16\>::\</byteArray16\>
->   \</valueLow\>
->   \<valueHigh\>
->   \<type\>FWP_BYTE_ARRAY16_TYPE\</type\>
->   \<byteArray16\>ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff\</byteArray16\>
->   \</valueHigh\>
->   \</rangeValue\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>1\</uint32\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>1\</uint32\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
->   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
->   \</conditionValue\>
->   \</item\>
->   \</filterCondition\>
->   \<action\>
->   \<type\>FWP_ACTION_PERMIT\</type\>
->   \<filterType/\>
->   \</action\>
->   \<rawContext\>0\</rawContext\>
->   \<reserved/\>
->   \<filterId\>125918\</filterId\>
->   \<effectiveWeight\>
->   \<type\>FWP_UINT64\</type\>
->   \<uint64\>103079219136\</uint64\>
->   \</effectiveWeight\>
-\</item\>
+<item>
+    <filterKey>{3389708e-f7ae-4ebc-a61a-f659065ab24e}</filterKey>
+    <displayData>
+    <name>InternetClient Default Rule</name>
+    <description>InternetClient Default Rule</description>
+    </displayData>
+    <flags/>
+    <providerKey>FWPM_PROVIDER_MPSSVC_WSH</providerKey>
+    <providerData>
+    <data>ad2b000000000000</data>
+    <asString>.+......</asString>
+    </providerData>
+    <layerKey>FWPM_LAYER_ALE_AUTH_CONNECT_V6</layerKey>
+    <subLayerKey>FWPM_SUBLAYER_MPSSVC_WSH</subLayerKey	 
+    <weight>
+    <type>FWP_EMPTY</type>
+    </weight>
+    <filterCondition numItems="5">
+    <item>
+    <fieldKey>FWPM_CONDITION_ALE_PACKAGE_ID</fieldKey>
+    <matchType>FWP_MATCH_NOT_EQUAL</matchType>
+    <conditionValue>
+    <type>FWP_SID</type>
+    <sid>S-1-0-0</sid>
+    </conditionValue>
+    </item>
+    <item>
+    <fieldKey>FWPM_CONDITION_IP_REMOTE_ADDRESS</fieldKey>
+ 	<matchType>FWP_MATCH_RANGE</matchType>
+ 	 <conditionValue>
+ 	 <type>FWP_RANGE_TYPE</type>
+ 	 <rangeValue>
+ 	<valueLow>
+    <type>FWP_BYTE_ARRAY16_TYPE</type>
+    <byteArray16>::</byteArray16>
+    </valueLow>
+    <valueHigh>
+    <type>FWP_BYTE_ARRAY16_TYPE</type>
+    <byteArray16>ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff</byteArray16>
+	</valueHigh>
+	</rangeValue>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_ORIGINAL_PROFILE_ID<fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_UINT32</type>
+	<uint32>1</uint32>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_CURRENT_PROFILE_ID<fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_UINT32</type>
+	<uint32>1</uint32>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_ALE_USER_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_SECURITY_DESCRIPTOR_TYPE</type>
+	<sd>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)</sd>
+	</conditionValue>
+	</item>
+	</filterCondition>
+	<action>
+	<type>FWP_ACTION_PERMIT</type>
+	<filterType/>
+	</action>
+	<rawContext>0</rawContext>
+	<reserved/>
+	<filterId>125918</filterId>
+	<effectiveWeight>
+	<type>FWP_UINT64</type>
+	<uint64>103079219136</uint64>
+	</effectiveWeight>
+</item>
 ```
-One condition is
 
 **Capabilities Condition in Filter \#125918, Wfpdiag-Case-1.xml**
 ```xml
-\<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
->   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
->   \</conditionValue\>
-\</item\>
+<item>
+    <fieldKey>FWPM_CONDITION_ALE_USER_ID</fieldKey>
+    <matchType>FWP_MATCH_EQUAL</matchType>
+    <conditionValue>
+    <type>FWP_SECURITY_DESCRIPTOR_TYPE</type>
+    <sd>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)</sd>
+    </conditionValue>
+</item>
 ```
-which is the condition for checking capabilities in this filter.
+This is the condition for checking capabilities in this filter.
 
-The important part of this condition is S-1-15-3-1, which is the capability SID
-for INTERNET_CLIENT privileges.
+The important part of this condition is **S-1-15-3-1**, which is the capability SID
+for **INTERNET_CLIENT** privileges.
 
-From the netEvent’s capabilities section,
-
-Capabilities from netEvent, Wfpdiag-Case-1.xml
+From the **netEvent** capabilities section,
+capabilities from netEvent, Wfpdiag-Case-1.xml.
 ```xml
-\<capabilities numItems="3"\>				
->   **\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>**			\<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
-\<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
-\</capabilities\>
+<capabilities numItems="3">				
+    <item>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT</item>			<item>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER</item>
+    <item>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK</item>
+</capabilities>
 ```
-it shows the packet came from an app with an Internet client token
-(FWP_CAPABILITIES_FLAG_INTERNET_CLIENT) which matches the capability SID in the
+This shows the packet came from an app with an Internet client token (**FWP_CAPABILITIES_FLAG_INTERNET_CLIENT**) which matches the capability SID in the
 filter. All the other conditions are also met for the filter, so the packet is
 allowed.
 
@@ -307,175 +306,173 @@ the packet having all capabilities.
 In this example, the UWP app is unable to connect to bing.com
 [2620:1ec:c11::200].
 
-The following is a drop netEvent that was captured in the traces during this
-repro.
+The following is a drop netEvent that was captured in the trace.
 
 **Classify Drop netEvent, Wfpdiag-Case-2.xml**
 ```xml
-\<netEvent\>
-\<header\>
-\<timeStamp\>2020-03-30T23:53:09.720Z\</timeStamp\>
-\<flags numItems="9"\>
-\<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
-\</flags\>
-\<ipVersion\>FWP_IP_VERSION_V6\</ipVersion\>
-\<ipProtocol\>6\</ipProtocol\>
-\<localAddrV6.byteArray16\>2001:4898:1a:1045:8469:3351:e6e2:543\</localAddrV6.byteArray16\>
-\<remoteAddrV6.byteArray16\>2620:1ec:c11::200\</remoteAddrV6.byteArray16\>
-\<localPort\>63187\</localPort\>
-\<remotePort\>443\</remotePort\>
-\<scopeId\>0\</scopeId\>
-\<appId\>
-\<data\>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\</data\>
-\<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
-.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...4...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
-\</appId\>
-\<userId\>S-1-5-21-2788718703-1626973220-3690764900-1000\</userId\>
-\<addressFamily\>FWP_AF_INET6\</addressFamily\>
-\<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
-\<enterpriseId/\>
-\<policyFlags\>0\</policyFlags\>
-\<effectiveName/\>
-\</header\>
-\<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
-\<classifyDrop\>
-\<filterId\>68893\</filterId\>
-\<layerId\>50\</layerId\>
-\<reauthReason\>0\</reauthReason\>
-\<originalProfile\>1\</originalProfile\>
-\<currentProfile\>1\</currentProfile\>
-\<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
-\<isLoopback\>false\</isLoopback\>
-\<vSwitchId/\>
-\<vSwitchSourcePort\>0\</vSwitchSourcePort\>
-\<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
-\</classifyDrop\>
-\<internalFields\>
-\<internalFlags/\>
-\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-\<capabilities/\>
-\<fqbnVersion\>0\</fqbnVersion\>
-\<fqbnName/\>
-\<terminatingFiltersInfo numItems="2"\>
-\<item\>
-\<filterId\>68893\</filterId\>
-\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-\<actionType\>FWP_ACTION_BLOCK\</actionType\>
-\</item\>
-\<item\>
-\<filterId\>68879\</filterId\>
-\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-\<actionType\>FWP_ACTION_PERMIT\</actionType\>
-\</item\>
-\</terminatingFiltersInfo\>
-\</internalFields\>
-\</netEvent\>
+<netEvent>
+<header>
+<timeStamp>2020-03-30T23:53:09.720Z</timeStamp>
+<flags numItems="9">
+    <item>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET</item>
+    <item>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET</item>
+    <item>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET</item>
+    <item>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET</item>
+    <item>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET</item>
+    <item>FWPM_NET_EVENT_FLAG_APP_ID_SET</item>
+    <item>FWPM_NET_EVENT_FLAG_USER_ID_SET</item>
+    <item>FWPM_NET_EVENT_FLAG_IP_VERSION_SET</item>
+    <item>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET</item>
+</flags>
+<ipVersion>FWP_IP_VERSION_V6</ipVersion>
+<ipProtocol>6</ipProtocol>
+<localAddrV6.byteArray16>2001:4898:1a:1045:8469:3351:e6e2:543</localAddrV6.byteArray16>
+<remoteAddrV6.byteArray16>2620:1ec:c11::200</remoteAddrV6.byteArray16>
+<localPort>63187</localPort>
+<remotePort>443</remotePort>
+<scopeId>0</scopeId>
+<appId>
+<data>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</data>
+<asString>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...4...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...</asString>
+</appId>
+<userId>S-1-5-21-2788718703-1626973220-3690764900-1000</userId>
+<addressFamily>FWP_AF_INET6</addressFamily>
+<packageSid>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936</packageSid>
+<enterpriseId/>
+<policyFlags>0</policyFlags>
+<effectiveName/>
+</header>
+<type>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP</type>
+<classifyDrop>
+<filterId>68893</filterId>
+<layerId>50</layerId>
+<reauthReason>0</reauthReason>
+<originalProfile>1</originalProfile>
+<currentProfile>1</currentProfile>
+<msFwpDirection>MS_FWP_DIRECTION_OUT</msFwpDirection>
+<isLoopback>false</isLoopback>
+<vSwitchId/>
+<vSwitchSourcePort>0</vSwitchSourcePort>
+<vSwitchDestinationPort>0</vSwitchDestinationPort>
+</classifyDrop>
+<internalFields>
+<internalFlags/>
+<remoteAddrBitmap>0000000000000000</remoteAddrBitmap>
+<capabilities/>
+<fqbnVersion>0</fqbnVersion>
+<fqbnName/>
+<terminatingFiltersInfo numItems="2">
+<item>
+<filterId>68893</filterId>
+<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH</subLayer>
+<actionType>FWP_ACTION_BLOCK</actionType>
+</item>
+<item>
+<filterId>68879</filterId>
+<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF</subLayer>
+<actionType>FWP_ACTION_PERMIT</actionType>
+</item>
+</terminatingFiltersInfo>
+</internalFields>
+</netEvent>
 ```
-The first thing that should be checked in the netEvent is the capabilities
-field\*. In this example, the capabilities field is empty, indicating that the
+The first thing that you should check in the **netEvent** is the capabilities
+field. In this example, the capabilities field is empty, indicating that the
 UWP app was not configured with any capability tokens to allow it to connect to
 a network.
 
 **Internal Fields from netEvent, Wfpdiag-Case-2.xml**
 ```xml
-\<internalFields\>
-\<internalFlags/\>
-\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-**\<capabilities/\>**
-\<fqbnVersion\>0\</fqbnVersion\>
-\<fqbnName/\>
-\<terminatingFiltersInfo numItems="2"\>
-\<item\>
-\<filterId\>68893\</filterId\>
-\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-\<actionType\>FWP_ACTION_BLOCK\</actionType\>
-\</item\>
-\<item\>
-\<filterId\>68879\</filterId\>
-\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-\<actionType\>FWP_ACTION_PERMIT\</actionType\>
-\</item\>
-\</terminatingFiltersInfo\>
-\</internalFields\>
+<internalFields>
+<internalFlags/>
+<remoteAddrBitmap>0000000000000000</remoteAddrBitmap>
+<capabilities/>
+<fqbnVersion>0</fqbnVersion>
+<fqbnName/>
+<terminatingFiltersInfo numItems="2">
+<item>
+<filterId>68893</filterId>
+<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH</subLayer>
+<actionType>FWP_ACTION_BLOCK</actionType>
+</item>
+<item>
+<filterId>68879</filterId>
+<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF</subLayer>
+<actionType>FWP_ACTION_PERMIT</actionType>
+</item>
+</terminatingFiltersInfo>
+</internalFields>
 ```
-The netEvent also gives us information about the filter that explicitly dropped
-this packet, like the FilterId, listed under classify drop
+The **netEvent** also shows information about the filter that explicitly dropped this packet, like the **FilterId**, listed under classify drop.
 
 **Classify Drop from netEvent, Wfpdiag-Case-2.xml**
 ```xml
-\<classifyDrop\>
-**\<filterId\>68893\</filterId\>**
-\<layerId\>50\</layerId\>
-\<reauthReason\>0\</reauthReason\>
-\<originalProfile\>1\</originalProfile\>
-\<currentProfile\>1\</currentProfile\>
-\<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
-\<isLoopback\>false\</isLoopback\>
-\<vSwitchId/\>
-\<vSwitchSourcePort\>0\</vSwitchSourcePort\>
-\<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
-\</classifyDrop\>
+<classifyDrop>
+<filterId>68893</filterId>
+<layerId>50</layerId>
+<reauthReason>0</reauthReason>
+<originalProfile>1</originalProfile>
+<currentProfile>1</currentProfile>
+<msFwpDirection>MS_FWP_DIRECTION_OUT</msFwpDirection>
+<isLoopback>false</isLoopback>
+<vSwitchId/>
+<vSwitchSourcePort>0</vSwitchSourcePort>
+<vSwitchDestinationPort>0</vSwitchDestinationPort>
+</classifyDrop>
 ```
-If we search for that filter, \#68893, in Wfpdiag-Case2.xml, we will see that
+If you search for the filter #68893 in Wfpdiag-Case2.xml, you'll see that
 the packet was dropped by a Block Outbound Default Rule filter.
 
-**Block Outbound Default Rule Filter \#68893, Wfpdiag-Case-2.xml**
+**Block Outbound Default Rule Filter #68893, Wfpdiag-Case-2.xml**
 
 ```xml
-\<item\>
->   \<filterKey\>{6d51582f-bcf8-42c4-afc9-e2ce7155c11b}\</filterKey\>
->   \<displayData\>
->   \<name\>**Block Outbound Default Rule**\</name\>
->   \<description\>Block Outbound Default Rule\</description\>
->   \</displayData\>
->   \<flags/\>
->   \<providerKey\>{4b153735-1049-4480-aab4-d1b9bdc03710}\</providerKey\>
->   \<providerData\>
->   \<data\>b001000000000000\</data\>
->   \<asString\>........\</asString\>
->   \</providerData\>
->   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V6\</layerKey\>
->   \<subLayerKey\>{b3cdd441-af90-41ba-a745-7c6008ff2300}\</subLayerKey\>
->   \<weight\>
->   \<type\>FWP_EMPTY\</type\>
->   \</weight\>
->   \<filterCondition numItems="1"\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SID\</type\>
->   \<sid\>S-1-0-0\</sid\>
->   \</conditionValue\>
->   \</item\>
->   \</filterCondition\>
->   \<action\>
->   \<type\>FWP_ACTION_BLOCK\</type\>
->   \<filterType/\>
->   \</action\>
->   \<rawContext\>0\</rawContext\>
->   \<reserved/\>
->   \<filterId\>68893\</filterId\>
->   \<effectiveWeight\>
->   \<type\>FWP_UINT64\</type\>
->   \<uint64\>68719476736\</uint64\>
->   \</effectiveWeight\>
-\</item\>
+<item>
+	<filterKey>{6d51582f-bcf8-42c4-afc9-e2ce7155c11b}</filterKey>
+/t<displayData>
+	<name>**Block Outbound Default Rule**</name>
+	<description>Block Outbound Default Rule</description>
+	</displayData>
+	<flags/>
+	<providerKey>{4b153735-1049-4480-aab4-d1b9bdc03710}</providerKey>
+	<providerData>
+	<data>b001000000000000</data>
+	<asString>........</asString>
+	</providerData>
+	<layerKey>FWPM_LAYER_ALE_AUTH_CONNECT_V6</layerKey>
+	<subLayerKey>{b3cdd441-af90-41ba-a745-7c6008ff2300}</subLayerKey>
+	<weight>
+	<type>FWP_EMPTY</type>
+	</weight>
+	<filterCondition numItems="1">
+	<item>
+	<fieldKey>FWPM_CONDITION_ALE_PACKAGE_ID</fieldKey>
+	<matchType>FWP_MATCH_NOT_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_SID</type>
+	<sid>S-1-0-0</sid>
+	</conditionValue>
+	</item>
+	</filterCondition>
+	<action>
+	<type>FWP_ACTION_BLOCK</type>
+	<filterType/>
+	</action>
+	<rawContext>0</rawContext>
+	<reserved/>
+	<filterId>68893</filterId>
+	<effectiveWeight>
+	<type>FWP_UINT64</type>
+	<uint64>68719476736</uint64>
+	</effectiveWeight>
+</item>
 ```
 
-A packet will reach a default block filter if the packet was unable to match any of the conditions of other filters, and thus not allowed by the other filters in
+A packet will reach a default block filter if the packet was unable to match any of the conditions of other filters, and not allowed by the other filters in
 the same sublayer.
 
 If the packet had the correct capability token,
-FWP_CAPABILITIES_FLAG_INTERNET_CLIENT, it would have matched a condition for a
+**FWP_CAPABILITIES_FLAG_INTERNET_CLIENT**, it would have matched a condition for a
 non-default block filter and would have been permitted to reach bing.com.
 Without the correct capability tokens, the packet will be explicitly dropped by
 a default block outbound filter.
@@ -490,74 +487,74 @@ only has a private network token. Therefore, the packet will be dropped.
 
 **Classify Drop netEvent, Wfpdiag-Case-3.xml**
 ```xml
-\<netEvent\>
-\<header\>
-\<timeStamp\>2020-03-31T16:57:18.570Z\</timeStamp\>
-\<flags numItems="9"\>
-\<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
-\</flags\>
-\<ipVersion\>FWP_IP_VERSION_V6\</ipVersion\>
-\<ipProtocol\>6\</ipProtocol\>
-\<localAddrV6.byteArray16\>2001:4898:1a:1045:9c65:7805:dd4a:cc4b\</localAddrV6.byteArray16\>
-\<remoteAddrV6.byteArray16\>2620:1ec:c11::200\</remoteAddrV6.byteArray16\>
-\<localPort\>64086\</localPort\>
-\<remotePort\>443\</remotePort\>
-\<scopeId\>0\</scopeId\>
-\<appId\>
-\<data\>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\</data\>
-\<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
-.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...5...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
-\</appId\>
-\<userId\>S-1-5-21-2788718703-1626973220-3690764900-1000\</userId\>
-\<addressFamily\>FWP_AF_INET6\</addressFamily\>
-\<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
-\<enterpriseId/\>
-\<policyFlags\>0\</policyFlags\>
-\<effectiveName/\>
-\</header\>
-\<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
-\<classifyDrop\>
-\<filterId\>68893\</filterId\>
-\<layerId\>50\</layerId\>
-\<reauthReason\>0\</reauthReason\>
-\<originalProfile\>1\</originalProfile\>
-\<currentProfile\>1\</currentProfile\>
-\<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
-\<isLoopback\>false\</isLoopback\>
-\<vSwitchId/\>
-\<vSwitchSourcePort\>0\</vSwitchSourcePort\>
-\<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
-\</classifyDrop\>
-\<internalFields\>
-\<internalFlags/\>
-\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-**\<capabilities numItems="1"\>**
-**\<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>**
-**\</capabilities\>**
-\<fqbnVersion\>0\</fqbnVersion\>
-\<fqbnName/\>
-\<terminatingFiltersInfo numItems="2"\>
-\<item\>
-\<filterId\>68893\</filterId\>
-\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-\<actionType\>FWP_ACTION_BLOCK\</actionType\>
-\</item\>
-\<item\>
-\<filterId\>68879\</filterId\>
-\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-\<actionType\>FWP_ACTION_PERMIT\</actionType\>
-\</item\>
-\</terminatingFiltersInfo\>
-\</internalFields\>
-\</netEvent\>
+<netEvent>
+<header>
+<timeStamp>2020-03-31T16:57:18.570Z</timeStamp>
+<flags numItems="9">
+<item>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET</item>
+<item>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET</item>
+<item>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET</item>
+<item>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET</item>
+<item>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET</item>
+<item>FWPM_NET_EVENT_FLAG_APP_ID_SET</item>
+<item>FWPM_NET_EVENT_FLAG_USER_ID_SET</item>
+<item>FWPM_NET_EVENT_FLAG_IP_VERSION_SET</item>
+<item>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET</item>
+</flags>
+<ipVersion>FWP_IP_VERSION_V6</ipVersion>
+<ipProtocol>6</ipProtocol>
+<localAddrV6.byteArray16>2001:4898:1a:1045:9c65:7805:dd4a:cc4b</localAddrV6.byteArray16>
+<remoteAddrV6.byteArray16>2620:1ec:c11::200</remoteAddrV6.byteArray16>
+<localPort>64086</localPort>
+<remotePort>443</remotePort>
+<scopeId>0</scopeId>
+<appId>
+<data>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</data>
+<asString>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...5...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...</asString>
+</appId>
+<userId>S-1-5-21-2788718703-1626973220-3690764900-1000</userId>
+<addressFamily>FWP_AF_INET6</addressFamily>
+<packageSid>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936</packageSid>
+<enterpriseId/>
+<policyFlags>0</policyFlags>
+<effectiveName/>
+</header>
+<type>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP</type>
+<classifyDrop>
+<filterId>68893</filterId>
+<layerId>50</layerId>
+<reauthReason>0</reauthReason>
+<originalProfile>1</originalProfile>
+<currentProfile>1</currentProfile>
+<msFwpDirection>MS_FWP_DIRECTION_OUT</msFwpDirection>
+<isLoopback>false</isLoopback>
+<vSwitchId/>
+<vSwitchSourcePort>0</vSwitchSourcePort>
+<vSwitchDestinationPort>0</vSwitchDestinationPort>
+</classifyDrop>
+<internalFields>
+<internalFlags/>
+<remoteAddrBitmap>0000000000000000</remoteAddrBitmap>
+**<capabilities numItems="1">**
+**<item>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK</item>**
+**</capabilities>**
+<fqbnVersion>0</fqbnVersion>
+<fqbnName/>
+<terminatingFiltersInfo numItems="2">
+<item>
+<filterId>68893</filterId>
+<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH</subLayer>
+<actionType>FWP_ACTION_BLOCK</actionType>
+</item>
+<item>
+<filterId>68879</filterId>
+<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF</subLayer>
+<actionType>FWP_ACTION_PERMIT</actionType>
+</item>
+</terminatingFiltersInfo>
+</internalFields>
+</netEvent>
 ```
 
 ## Case 4: UWP app cannot reach Intranet target address without Private Network capability
@@ -567,75 +564,75 @@ In this example, the UWP app is unable to reach the Intranet target address,
 
 **Classify Drop netEvent, Wfpdiag-Case-4.xml**
 ```xml
-\<netEvent\>
-\<header\>
->   \<timeStamp\>2020-05-22T21:29:28.601Z\</timeStamp\>
->   \<flags numItems="9"\>
->   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
->   \</flags\>
->   \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
->   \<ipProtocol\>6\</ipProtocol\>
->   \<localAddrV4\>10.216.117.17\</localAddrV4\>
->   \<remoteAddrV4\>10.50.50.50\</remoteAddrV4\>
->   \<localPort\>52998\</localPort\>
->   \<remotePort\>53\</remotePort\>
->   \<scopeId\>0\</scopeId\>
->   \<appId\>				
->   \<data\>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\</data\>
->   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
->   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.1...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
->   \</appId\>
->   \<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
->   \<addressFamily\>FWP_AF_INET\</addressFamily\>
->   \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
->   \<enterpriseId/\>
->   \<policyFlags\>0\</policyFlags\>
->   \<effectiveName/\>
-\</header\>
->   \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
->   \<classifyDrop\>
->   \<filterId\>121180\</filterId\>
->   \<layerId\>48\</layerId\>
->   \<reauthReason\>0\</reauthReason\>
->   \<originalProfile\>1\</originalProfile\>
->   \<currentProfile\>1\</currentProfile\>
->   \<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
->   \<isLoopback\>false\</isLoopback\>
->   \<vSwitchId/\>
->   \<vSwitchSourcePort\>0\</vSwitchSourcePort\>
->   \<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
-\</classifyDrop\>
-\<internalFields\>
->   \<internalFlags/\>
->   \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
->   \<capabilities numItems="2"\>
->   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>
->   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
->   \</capabilities\>
->   \<fqbnVersion\>0\</fqbnVersion\>
->   \<fqbnName/\>
->   \<terminatingFiltersInfo numItems="2"\>
->   \<item\>
->   \<filterId\>121180\</filterId\>
->   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
->   \<actionType\>FWP_ACTION_BLOCK\</actionType\>
->   \</item\>
->   \<item\>
->   \<filterId\>121165\</filterId\>
->   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
->   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
->   \</item\>
->   \</terminatingFiltersInfo\>
-\</internalFields\>
-\</netEvent\>
+<netEvent>
+<header>
+	<timeStamp>2020-05-22T21:29:28.601Z</timeStamp>
+	<flags numItems="9">
+	<item>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_APP_ID_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_USER_ID_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_IP_VERSION_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET</item>
+	</flags>
+	<ipVersion>FWP_IP_VERSION_V4</ipVersion>
+	<ipProtocol>6</ipProtocol>
+	<localAddrV4>10.216.117.17</localAddrV4>
+	<remoteAddrV4>10.50.50.50</remoteAddrV4>
+	<localPort>52998</localPort>
+	<remotePort>53</remotePort>
+	<scopeId>0</scopeId>
+	<appId>				
+	<data>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</data>
+	<asString>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+	.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.1...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...</asString>
+	</appId>
+	<userId>S-1-5-21-2993214446-1947230185-131795049-1000</userId>
+	<addressFamily>FWP_AF_INET</addressFamily>
+	<packageSid>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936</packageSid>
+	<enterpriseId/>
+	<policyFlags>0</policyFlags>
+	<effectiveName/>
+</header>
+	<type>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP</type>
+	<classifyDrop>
+	<filterId>121180</filterId>
+	<layerId>48</layerId>
+	<reauthReason>0</reauthReason>
+	<originalProfile>1</originalProfile>
+	<currentProfile>1</currentProfile>
+	<msFwpDirection>MS_FWP_DIRECTION_OUT</msFwpDirection>
+	<isLoopback>false</isLoopback>
+	<vSwitchId/>
+	<vSwitchSourcePort>0</vSwitchSourcePort>
+	<vSwitchDestinationPort>0</vSwitchDestinationPort>
+</classifyDrop>
+<internalFields>
+	<internalFlags/>
+	<remoteAddrBitmap>0000000000000000</remoteAddrBitmap>
+	<capabilities numItems="2">
+	<item>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT</item>
+	<item>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER</item>
+	</capabilities>
+	<fqbnVersion>0</fqbnVersion>
+	<fqbnName/>
+	<terminatingFiltersInfo numItems="2">
+	<item>
+	<filterId>121180</filterId>
+	<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH</subLayer>
+	<actionType>FWP_ACTION_BLOCK</actionType>
+	</item>
+	<item>
+	<filterId>121165</filterId>
+	<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF</subLayer>
+	<actionType>FWP_ACTION_PERMIT</actionType>
+	</item>
+	</terminatingFiltersInfo>
+</internalFields>
+</netEvent>
 ```
 ## Case 5: UWP app cannot reach “Intranet” target address with Private Network capability
 
@@ -644,360 +641,360 @@ In this example, the UWP app is unable to reach the Intranet target address,
 
 **Classify Drop netEvent, Wfpdiag-Case-5.xml**
 ```xml
-\<netEvent\>
->   \<header\>
->   \<timeStamp\>2020-05-22T20:54:53.499Z\</timeStamp\>
->   \<flags numItems="9"\>
->   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
->   \</flags\>
->   \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
->   \<ipProtocol\>6\</ipProtocol\>
->   \<localAddrV4\>10.216.117.17\</localAddrV4\>
->   \<remoteAddrV4\>10.1.1.1\</remoteAddrV4\>
->   \<localPort\>52956\</localPort\>
->   \<remotePort\>53\</remotePort\>
->   \<scopeId\>0\</scopeId\>
->   \<appId\>	
->   \<data\>5c006400650076006900630065005c0068006100720064006400690073006b0076006f006c0075006d00650031005c00700072006f006700720061006d002000660069006c00650073005c00770069006e0064006f007700730061007000700073005c00610066003600390032006200660066002d0036003700370039002d0034003200340066002d0038003700300065002d006600360065003500390063003500300032003300340039005f0031002e0031002e00310033002e0030005f007800360034005f005f00350063003000330037006a0061007200350038003300390072005c0075007700700073006f0063006b006500740063006c00690065006e0074002e006500780065000000\</data\>
->   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
->   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.3...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
->   \</appId\>
->   \<userId\>S-1-5-21-2993214446-1947230185-131795049-1000\</userId\>
->   \<addressFamily\>FWP_AF_INET\</addressFamily\>
->   \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
->   \<enterpriseId/\>
->   \<policyFlags\>0\</policyFlags\>
->   \<effectiveName/\>
-\</header\>
->   \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
->   \<classifyDrop\>
->   \<filterId\>121180\</filterId\>
->   \<layerId\>48\</layerId\>
->   \<reauthReason\>0\</reauthReason\>
->   \<originalProfile\>1\</originalProfile\>
->   \<currentProfile\>1\</currentProfile\>
->   \<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
->   \<isLoopback\>false\</isLoopback\>
->   \<vSwitchId/\>
->   \<vSwitchSourcePort\>0\</vSwitchSourcePort\>
->   \<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
->   \</classifyDrop\>
->   \<internalFields\>
->   \<internalFlags/\>
->   \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
->   \<capabilities numItems="1"\>
->   \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
->   \</capabilities\>
->   \<fqbnVersion\>0\</fqbnVersion\>
->   \<fqbnName/\>
->   \<terminatingFiltersInfo numItems="2"\>
->   \<item\>
->   \<filterId\>121180\</filterId\>
->   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
->   \<actionType\>FWP_ACTION_BLOCK\</actionType\>
->   \</item\>
->   \<item\>
->   \<filterId\>121165\</filterId\>
->   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
->   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
->   \</item\>
->   \</terminatingFiltersInfo\>
->   \</internalFields\>
-\</netEvent\>
+<netEvent>
+	<header>
+	<timeStamp>2020-05-22T20:54:53.499Z</timeStamp>
+	<flags numItems="9">
+	<item>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_APP_ID_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_USER_ID_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_IP_VERSION_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET</item>
+	</flags>
+	<ipVersion>FWP_IP_VERSION_V4</ipVersion>
+	<ipProtocol>6</ipProtocol>
+	<localAddrV4>10.216.117.17</localAddrV4>
+	<remoteAddrV4>10.1.1.1</remoteAddrV4>
+	<localPort>52956</localPort>
+	<remotePort>53</remotePort>
+	<scopeId>0</scopeId>
+	<appId>	
+	<data>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</data>
+	<asString>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+	.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.3...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...</asString>
+	</appId>
+	<userId>S-1-5-21-2993214446-1947230185-131795049-1000</userId>
+	<addressFamily>FWP_AF_INET</addressFamily>
+	<packageSid>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936</packageSid>
+	<enterpriseId/>
+	<policyFlags>0</policyFlags>
+	<effectiveName/>
+</header>
+	<type>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP</type>
+	<classifyDrop>
+	<filterId>121180</filterId>
+	<layerId>48</layerId>
+	<reauthReason>0</reauthReason>
+	<originalProfile>1</originalProfile>
+	<currentProfile>1</currentProfile>
+	<msFwpDirection>MS_FWP_DIRECTION_OUT</msFwpDirection>
+	<isLoopback>false</isLoopback>
+	<vSwitchId/>
+	<vSwitchSourcePort>0</vSwitchSourcePort>
+	<vSwitchDestinationPort>0</vSwitchDestinationPort>
+	</classifyDrop>
+	<internalFields>
+	<internalFlags/>
+	<remoteAddrBitmap>0000000000000000</remoteAddrBitmap>
+	<capabilities numItems="1">
+	<item>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK</item>
+	</capabilities>
+	<fqbnVersion>0</fqbnVersion>
+	<fqbnName/>
+	<terminatingFiltersInfo numItems="2">
+	<item>
+	<filterId>121180</filterId>
+	<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH</subLayer>
+	<actionType>FWP_ACTION_BLOCK</actionType>
+	</item>
+	<item>
+	<filterId>121165</filterId>
+	<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF</subLayer>
+	<actionType>FWP_ACTION_PERMIT</actionType>
+	</item>
+	</terminatingFiltersInfo>
+	</internalFields>
+</netEvent>
 ```
 The following shows the filter that blocked the event:
 
 **Block Outbound Default Rule Filter \#121180, Wfpdiag-Case-5.xml**
 
 ```xml
-\<item\>
->   \<filterKey\>{e62a1a22-c80a-4518-a7f8-e7d1ef3a9ff6}\</filterKey\>
->   \<displayData\>
->   \<name\>Block Outbound Default Rule\</name\>
->   \<description\>Block Outbound Default Rule\</description\>
->   \</displayData\>
->   \<flags/\>
->   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
->   \<providerData\>
->   \<data\>c029000000000000\</data\>
->   \<asString\>.)......\</asString\>
->   \</providerData\>
->   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
->   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
->   \<weight\>
->   \<type\>FWP_EMPTY\</type\>
->   \</weight\>
->   \<filterCondition numItems="1"\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SID\</type\>
->   \<sid\>S-1-0-0\</sid\>
->   \</conditionValue\>
->   \</item\>
->   \</filterCondition\>
->   \<action\>
->   \<type\>FWP_ACTION_BLOCK\</type\>
->   \<filterType/\>
->   \</action\>
->   \<rawContext\>0\</rawContext\>
->   \<reserved/\>
->   \<filterId\>121180\</filterId\>
->   \<effectiveWeight\>
->   \<type\>FWP_UINT64\</type\>
->   \<uint64\>274877906944\</uint64\>
->   \</effectiveWeight\>
-\</item\>
+<item>
+	<filterKey>{e62a1a22-c80a-4518-a7f8-e7d1ef3a9ff6}</filterKey>
+	<displayData>
+	<name>Block Outbound Default Rule</name>
+	<description>Block Outbound Default Rule</description>
+	</displayData>
+	<flags/>
+	<providerKey>FWPM_PROVIDER_MPSSVC_WSH</providerKey>
+	<providerData>
+	<data>c029000000000000</data>
+	<asString>.)......</asString>
+	</providerData>
+	<layerKey>FWPM_LAYER_ALE_AUTH_CONNECT_V4</layerKey>
+	<subLayerKey>FWPM_SUBLAYER_MPSSVC_WSH</subLayerKey>
+	<weight>
+	<type>FWP_EMPTY</type>
+	</weight>
+	<filterCondition numItems="1">
+	<item>
+	<fieldKey>FWPM_CONDITION_ALE_PACKAGE_ID</fieldKey>
+	<matchType>FWP_MATCH_NOT_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_SID</type>
+	<sid>S-1-0-0</sid>
+	</conditionValue>
+	</item>
+	</filterCondition>
+	<action>
+	<type>FWP_ACTION_BLOCK</type>
+	<filterType/>
+	</action>
+	<rawContext>0</rawContext>
+	<reserved/>
+	<filterId>121180</filterId>
+	<effectiveWeight>
+	<type>FWP_UINT64</type>
+	<uint64>274877906944</uint64>
+	</effectiveWeight>
+</item>
 ```
 If the target was in the private range, then it should have been allowed by a
 PrivateNetwork Outbound Default Rule filter.
 
 The following PrivateNetwork Outbound Default Rule filters have conditions for matching Intranet IP addresses. Since the expected Intranet target address,
-10.1.1.1, is not included in these filters it becomes clear that the address isnot in the private range. Check the policies which configure the private range
-on the machine (MDM, GP, etc) and make sure it includes the private targetaddress you wanted to reach.
+10.1.1.1, is not included in these filters it becomes clear that the address is not in the private range. Check the policies that configure the private range
+on the device (MDM, Group Policy, etc) and make sure it includes the private targetaddress you wanted to reach.
 
 **PrivateNetwork Outbound Default Rule Filters, Wfpdiag-Case-5.xml**
 ```xml
-\<item\>
->   \<filterKey\>{fd65507b-e356-4e2f-966f-0c9f9c1c6e78}\</filterKey\>
->   \<displayData\>
->   \<name\>PrivateNetwork Outbound Default Rule\</name\>
->   \<description\>PrivateNetwork Outbound Default Rule\</description\>
->   \</displayData\>
->   \<flags/\>
->   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
->   \<providerData\>
->   \<data\>f22d000000000000\</data\>
->   \<asString\>.-......\</asString\>
->   \</providerData\>
->   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
->   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
->   \<weight\>
->   \<type\>FWP_EMPTY\</type\>
->   \</weight\>
->   \<filterCondition numItems="5"\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SID\</type\>
->   \<sid\>S-1-0-0\</sid\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>1.1.1.1\</uint32\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>1\</uint32\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>1\</uint32\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
->   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
->   \</conditionValue\>
->   \</item\>
->   \</filterCondition\>
->   \<action\>
->   \<type\>FWP_ACTION_PERMIT\</type\>
->   \<filterType/\>
->   \</action\>
->   \<rawContext\>0\</rawContext\>
->   \<reserved/\>
->   \<filterId\>129656\</filterId\>
->   \<effectiveWeight\>
->   \<type\>FWP_UINT64\</type\>
->   \<uint64\>144115600392724416\</uint64\>
->   \</effectiveWeight\>
->   \</item\>
->   \<item\>
->   \<filterKey\>{b11b4f8a-222e-49d6-8d69-02728681d8bc}\</filterKey\>
->   \<displayData\>
->   \<name\>PrivateNetwork Outbound Default Rule\</name\>
->   \<description\>PrivateNetwork Outbound Default Rule\</description\>
->   \</displayData\>
->   \<flags/\>
->   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
->   \<providerData\>
->   \<data\>f22d000000000000\</data\>
->   \<asString\>.-......\</asString\>
->   \</providerData\>
->   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
->   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
->   \<weight\>
->   \<type\>FWP_EMPTY\</type\>
->   \</weight\>
->   \<filterCondition numItems="5"\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SID\</type\>
->   \<sid\>S-1-0-0\</sid\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
->   \<matchType\>FWP_MATCH_RANGE\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_RANGE_TYPE\</type\>
->   \<rangeValue\>
->   \<valueLow\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>172.16.0.0\</uint32\>
->   \</valueLow\>
->   \<valueHigh\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>172.31.255.255\</uint32\>
->   \</valueHigh\>
->   \</rangeValue\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>1\</uint32\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>1\</uint32\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
->   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
->   \</conditionValue\>
->   \</item\>
->   \</filterCondition\>
->   \<action\>
->   \<type\>FWP_ACTION_PERMIT\</type\>
->   \<filterType/\>
->   \</action\>
->   \<rawContext\>0\</rawContext\>
->   \<reserved/\>
->   \<filterId\>129657\</filterId\>
->   \<effectiveWeight\>
->   \<type\>FWP_UINT64\</type\>
->   \<uint64\>36029209335832512\</uint64\>
->   \</effectiveWeight\>
-\</item\>
-\<item\>
->   \<filterKey\>{21cd82bc-6077-4069-94bf-750e5a43ca23}\</filterKey\>
->   \<displayData\>
->   \<name\>PrivateNetwork Outbound Default Rule\</name\>
->   \<description\>PrivateNetwork Outbound Default Rule\</description\>
->   \</displayData\>
->   \<flags/\>
->   \<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
->   \<providerData\>
->   \<data\>f22d000000000000\</data\>
->   \<asString\>.-......\</asString\>
->   \</providerData\>
->   \<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
->   \<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
->   \<weight\>
->   \<type\>FWP_EMPTY\</type\>
->   \</weight\>
->   \<filterCondition numItems="5"\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SID\</type\>
->   \<sid\>S-1-0-0\</sid\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
->   \<matchType\>FWP_MATCH_RANGE\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_RANGE_TYPE\</type\>
->   \<rangeValue\>
->   \<valueLow\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>192.168.0.0\</uint32\>
->   \</valueLow\>
->   \<valueHigh\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>192.168.255.255\</uint32\>
->   \</valueHigh\>
->   \</rangeValue\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>1\</uint32\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_UINT32\</type\>
->   \<uint32\>1\</uint32\>
->   \</conditionValue\>
->   \</item\>
->   \<item\>
->   \<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
->   \<matchType\>FWP_MATCH_EQUAL\</matchType\>
->   \<conditionValue\>
->   \<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
->   \<sd\>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
->   \</conditionValue\>
->   \</item\>
->   \</filterCondition\>
->   \<action\>
->   \<type\>FWP_ACTION_PERMIT\</type\>
->   \<filterType/\>
->   \</action\>
->   \<rawContext\>0\</rawContext\>
->   \<reserved/\>
->   \<filterId\>129658\</filterId\>
->   \<effectiveWeight\>
->   \<type\>FWP_UINT64\</type\>
->   \<uint64\>36029209335832512\</uint64\>
->   \</effectiveWeight\>
-\</item\>
+<item>
+	<filterKey>{fd65507b-e356-4e2f-966f-0c9f9c1c6e78}</filterKey>
+	<displayData>
+	<name>PrivateNetwork Outbound Default Rule</name>
+	<description>PrivateNetwork Outbound Default Rule</description>
+	</displayData>
+	<flags/>
+	<providerKey>FWPM_PROVIDER_MPSSVC_WSH</providerKey>
+	<providerData>
+	<data>f22d000000000000</data>
+	<asString>.-......</asString>
+	</providerData>
+	<layerKey>FWPM_LAYER_ALE_AUTH_CONNECT_V4</layerKey>
+	<subLayerKey>FWPM_SUBLAYER_MPSSVC_WSH</subLayerKey>
+	<weight>
+	<type>FWP_EMPTY</type>
+	</weight>
+	<filterCondition numItems="5">
+	<item>
+	<fieldKey>FWPM_CONDITION_ALE_PACKAGE_ID</fieldKey>
+	<matchType>FWP_MATCH_NOT_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_SID</type>
+	<sid>S-1-0-0</sid>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_IP_REMOTE_ADDRESS</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_UINT32</type>
+	<uint32>1.1.1.1</uint32>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_ORIGINAL_PROFILE_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_UINT32</type>
+	<uint32>1</uint32>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_CURRENT_PROFILE_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_UINT32</type>
+	<uint32>1</uint32>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_ALE_USER_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_SECURITY_DESCRIPTOR_TYPE</type>
+	<sd>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)</sd>
+	</conditionValue>
+	</item>
+	</filterCondition>
+	<action>
+	<type>FWP_ACTION_PERMIT</type>
+	<filterType/>
+	</action>
+	<rawContext>0</rawContext>
+	<reserved/>
+	<filterId>129656</filterId>
+	<effectiveWeight>
+	<type>FWP_UINT64</type>
+	<uint64>144115600392724416</uint64>
+	</effectiveWeight>
+	</item>
+	<item>
+	<filterKey>{b11b4f8a-222e-49d6-8d69-02728681d8bc}</filterKey>
+	<displayData>
+	<name>PrivateNetwork Outbound Default Rule</name>
+	<description>PrivateNetwork Outbound Default Rule</description>
+	</displayData>
+	<flags/>
+	<providerKey>FWPM_PROVIDER_MPSSVC_WSH</providerKey>
+	<providerData>
+	<data>f22d000000000000</data>
+	<asString>.-......</asString>
+	</providerData>
+	<layerKey>FWPM_LAYER_ALE_AUTH_CONNECT_V4</layerKey>
+	<subLayerKey>FWPM_SUBLAYER_MPSSVC_WSH</subLayerKey>
+	<weight>
+	<type>FWP_EMPTY</type>
+	</weight>
+	<filterCondition numItems="5">
+	<item>
+	<fieldKey>FWPM_CONDITION_ALE_PACKAGE_ID</fieldKey>
+	<matchType>FWP_MATCH_NOT_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_SID</type>
+	<sid>S-1-0-0</sid>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_IP_REMOTE_ADDRESS</fieldKey>
+	<matchType>FWP_MATCH_RANGE</matchType>
+	<conditionValue>
+	<type>FWP_RANGE_TYPE</type>
+	<rangeValue>
+	<valueLow>
+	<type>FWP_UINT32</type>
+	<uint32>172.16.0.0</uint32>
+	</valueLow>
+	<valueHigh>
+	<type>FWP_UINT32</type>
+	<uint32>172.31.255.255</uint32>
+	</valueHigh>
+	</rangeValue>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_ORIGINAL_PROFILE_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_UINT32</type>
+	<uint32>1</uint32>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_CURRENT_PROFILE_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_UINT32</type>
+	<uint32>1</uint32>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_ALE_USER_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_SECURITY_DESCRIPTOR_TYPE</type>
+	<sd>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)</sd>
+	</conditionValue>
+	</item>
+	</filterCondition>
+	<action>
+	<type>FWP_ACTION_PERMIT</type>
+	<filterType/>
+	</action>
+	<rawContext>0</rawContext>
+	<reserved/>
+	<filterId>129657</filterId>
+	<effectiveWeight>
+	<type>FWP_UINT64</type>
+	<uint64>36029209335832512</uint64>
+	</effectiveWeight>
+</item>
+<item>
+	<filterKey>{21cd82bc-6077-4069-94bf-750e5a43ca23}</filterKey>
+	<displayData>
+	<name>PrivateNetwork Outbound Default Rule</name>
+	<description>PrivateNetwork Outbound Default Rule</description>
+	</displayData>
+	<flags/>
+	<providerKey>FWPM_PROVIDER_MPSSVC_WSH</providerKey>
+	<providerData>
+	<data>f22d000000000000</data>
+	<asString>.-......</asString>
+	</providerData>
+	<layerKey>FWPM_LAYER_ALE_AUTH_CONNECT_V4</layerKey>
+	<subLayerKey>FWPM_SUBLAYER_MPSSVC_WSH</subLayerKey>
+	<weight>
+	<type>FWP_EMPTY</type>
+	</weight>
+	<filterCondition numItems="5">
+	<item>
+	<fieldKey>FWPM_CONDITION_ALE_PACKAGE_ID</fieldKey>
+	<matchType>FWP_MATCH_NOT_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_SID</type>
+	<sid>S-1-0-0</sid>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_IP_REMOTE_ADDRESS</fieldKey>
+	<matchType>FWP_MATCH_RANGE</matchType>
+	<conditionValue>
+	<type>FWP_RANGE_TYPE</type>
+	<rangeValue>
+	<valueLow>
+	<type>FWP_UINT32</type>
+	<uint32>192.168.0.0</uint32>
+	</valueLow>
+	<valueHigh>
+	<type>FWP_UINT32</type>
+	<uint32>192.168.255.255</uint32>
+	</valueHigh>
+	</rangeValue>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_ORIGINAL_PROFILE_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_UINT32</type>
+	<uint32>1</uint32>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_CURRENT_PROFILE_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_UINT32</type>
+	<uint32>1</uint32>
+	</conditionValue>
+	</item>
+	<item>
+	<fieldKey>FWPM_CONDITION_ALE_USER_ID</fieldKey>
+	<matchType>FWP_MATCH_EQUAL</matchType>
+	<conditionValue>
+	<type>FWP_SECURITY_DESCRIPTOR_TYPE</type>
+	<sd>O:LSD:(A;;CC;;;S-1-15-3-3)(A;;CC;;;WD)(A;;CC;;;AN)</sd>
+	</conditionValue>
+	</item>
+	</filterCondition>
+	<action>
+	<type>FWP_ACTION_PERMIT</type>
+	<filterType/>
+	</action>
+	<rawContext>0</rawContext>
+	<reserved/>
+	<filterId>129658</filterId>
+	<effectiveWeight>
+	<type>FWP_UINT64</type>
+	<uint64>36029209335832512</uint64>
+	</effectiveWeight>
+</item>
 ```
 # Debugging Past Drops 
 
@@ -1007,38 +1004,38 @@ wfpstate.xml. Once nettrace.etl is converted, nettrace.txt will have the
 netEvents of the reproduced event, and wfpstate.xml will contain the filters
 that were present on the machine at the time.
 
-If you **do not** have a live repro or traces already collected, you can still
+If you do not have a live repro or traces already collected, you can still
 collect traces after the UWP network connectivity issue has happened by running
-these commands in an Admin command prompt
+these commands in an admin command prompt
 
 ```xml
->   \<Run UWP app\>
->   Netsh wfp show netevents
->   Netsh wfp show state
+	<Run UWP app>
+	Netsh wfp show netevents
+	Netsh wfp show state
 ```
 
-“Netsh wfp show netevents” will generate netevents.xml, which contains the past
-net events. “Netsh wfp show state” will generate wfpstate.xml, which contains
+**Netsh wfp show netevents** creates netevents.xml, which contains the past
+net events. **Netsh wfp show state** creates wfpstate.xml, which contains
 the current filters present on the machine.
 
 Unfortunately, collecting traces after the UWP network connectivity issue is not
 always reliable.
 
-NetEvents on the machine are stored in a buffer. Once that buffer has reached
-max capacity, the buffer will overwrite older net events. Due to the buffer
+NetEvents on the device are stored in a buffer. Once that buffer has reached
+maximum capacity, the buffer will overwrite older net events. Due to the buffer
 overwrite, it is possible that the collected netevents.xml will not contain the
-net event associated with the UWP network connectivity issue if it was
-overwritten. Additionally, filters on the machine can get deleted and re-added
-with different filterIds due to miscellaneous events on the machine. Because of
-this, a filterId from “netsh wfp show netevents” may not necessarily match any
-filter in “netsh wfp show state” because that filterId may be outdated.
+net event associated with the UWP network connectivity issue. It could have been ov
+overwritten. Additionally, filters on the device can get deleted and re-added
+with different filterIds due to miscellaneous events on the device. Because of
+this, a **filterId** from **netsh wfp show netevents** may not necessarily match any
+filter in **netsh wfp show state** because that **filterId** may be outdated.
 
-If you can reproduce the UWP network connectivity issue consistently, we would
+If you can reproduce the UWP network connectivity issue consistently, we 
 recommend using the commands from Debugging Live Drops instead.
 
 Additionally, you can still follow the examples from Debugging Live Drops
 section using the trace commands in this section, even if you do not have a live
-repro. The netEvents and filters are stored in one file in Debugging Live Drops
+repro. The **netEvents** and filters are stored in one file in Debugging Live Drops
 as opposed to two separate files in the following Debugging Past Drops examples.
 
 ## Case 7: Debugging Past Drop - UWP app cannot reach Internet target address and has no capabilities
@@ -1048,72 +1045,72 @@ In this example, the UWP app is unable to connect to bing.com.
 Classify Drop Net Event, NetEvents-Case-7.xml
 
 ```xml
-\<item\>
-\<header\>
-\<timeStamp\>2020-05-04T22:04:07.039Z\</timeStamp\>
-\<flags numItems="9"\>
-\<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
-\<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
-\</flags\>
-\<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
-\<ipProtocol\>6\</ipProtocol\>
-\<localAddrV4\>10.195.36.30\</localAddrV4\>
-\<remoteAddrV4\>204.79.197.200\</remoteAddrV4\>
-\<localPort\>57062\</localPort\>
-\<remotePort\>443\</remotePort\>
-\<scopeId\>0\</scopeId\>
-\<appId\>
-\<data\>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\</data\>
-\<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
-.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.2...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
-\</appId\>
-\<userId\>S-1-5-21-1578316205-4060061518-881547182-1000\</userId\>
-\<addressFamily\>FWP_AF_INET\</addressFamily\>
-\<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
-\<enterpriseId/\>
-\<policyFlags\>0\</policyFlags\>
-\<effectiveName/\>
-\</header\>
-\<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP\</type\>
-\<classifyDrop\>
-\<filterId\>206064\</filterId\>
-\<layerId\>48\</layerId\>
-\<reauthReason\>0\</reauthReason\>
-\<originalProfile\>1\</originalProfile\>
-\<currentProfile\>1\</currentProfile\>
-\<msFwpDirection\>MS_FWP_DIRECTION_OUT\</msFwpDirection\>
-\<isLoopback\>false\</isLoopback\>
-\<vSwitchId/\>
-\<vSwitchSourcePort\>0\</vSwitchSourcePort\>
-\<vSwitchDestinationPort\>0\</vSwitchDestinationPort\>
-\</classifyDrop\>
-\<internalFields\>
-\<internalFlags/\>
-\<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
-\<capabilities/\>
-\<fqbnVersion\>0\</fqbnVersion\>
-\<fqbnName/\>
-\<terminatingFiltersInfo numItems="2"\>
-\<item\>
-\<filterId\>206064\</filterId\>
-\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
-\<actionType\>FWP_ACTION_BLOCK\</actionType\>
-\</item\>
-\<item\>
-\<filterId\>206049\</filterId\>
-\<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
-\<actionType\>FWP_ACTION_PERMIT\</actionType\>
-\</item\>
-\</terminatingFiltersInfo\>
-\</internalFields\>
-\</item\>
+<item>
+<header>
+<timeStamp>2020-05-04T22:04:07.039Z</timeStamp>
+<flags numItems="9">
+<item>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET</item>
+<item>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET</item>
+<item>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET</item>
+<item>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET</item>
+<item>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET</item>
+<item>FWPM_NET_EVENT_FLAG_APP_ID_SET</item>
+<item>FWPM_NET_EVENT_FLAG_USER_ID_SET</item>
+<item>FWPM_NET_EVENT_FLAG_IP_VERSION_SET</item>
+<item>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET</item>
+</flags>
+<ipVersion>FWP_IP_VERSION_V4</ipVersion>
+<ipProtocol>6</ipProtocol>
+<localAddrV4>10.195.36.30</localAddrV4>
+<remoteAddrV4>204.79.197.200</remoteAddrV4>
+<localPort>57062</localPort>
+<remotePort>443</remotePort>
+<scopeId>0</scopeId>
+<appId>
+<data>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</data>
+<asString>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.2...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...</asString>
+</appId>
+<userId>S-1-5-21-1578316205-4060061518-881547182-1000</userId>
+<addressFamily>FWP_AF_INET</addressFamily>
+<packageSid>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936</packageSid>
+<enterpriseId/>
+<policyFlags>0</policyFlags>
+<effectiveName/>
+</header>
+<type>FWPM_NET_EVENT_TYPE_CLASSIFY_DROP</type>
+<classifyDrop>
+<filterId>206064</filterId>
+<layerId>48</layerId>
+<reauthReason>0</reauthReason>
+<originalProfile>1</originalProfile>
+<currentProfile>1</currentProfile>
+<msFwpDirection>MS_FWP_DIRECTION_OUT</msFwpDirection>
+<isLoopback>false</isLoopback>
+<vSwitchId/>
+<vSwitchSourcePort>0</vSwitchSourcePort>
+<vSwitchDestinationPort>0</vSwitchDestinationPort>
+</classifyDrop>
+<internalFields>
+<internalFlags/>
+<remoteAddrBitmap>0000000000000000</remoteAddrBitmap>
+<capabilities/>
+<fqbnVersion>0</fqbnVersion>
+<fqbnName/>
+<terminatingFiltersInfo numItems="2">
+<item>
+<filterId>206064</filterId>
+<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH</subLayer>
+<actionType>FWP_ACTION_BLOCK</actionType>
+</item>
+<item>
+<filterId>206049</filterId>
+<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF</subLayer>
+<actionType>FWP_ACTION_PERMIT</actionType>
+</item>
+</terminatingFiltersInfo>
+</internalFields>
+</item>
 ```
 
 The Internal fields lists no active capabilities, and the packet is dropped at
@@ -1127,45 +1124,45 @@ Security Descriptor doesn’t match.
 **Block Outbound Default Rule Filter \#206064, FilterState-Case-7.xml**
 
 ```xml
-\<item\>
-\<filterKey\>{f138d1ad-9293-478f-8519-c3368e796711}\</filterKey\>
-\<displayData\>
-\<name\>Block Outbound Default Rule\</name\>
-\<description\>Block Outbound Default Rule\</description\>
-\</displayData\>
-\<flags/\>
-\<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
-\<providerData\>
-\<data\>2e65000000000000\</data\>
-\<asString\>.e......\</asString\>
-\</providerData\>
-\<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
-\<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
-\<weight\>
-\<type\>FWP_EMPTY\</type\>
-\</weight\>
-\<filterCondition numItems="1"\>
-\<item\>
-\<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
-\<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
-\<conditionValue\>
-\<type\>FWP_SID\</type\>
-\<sid\>S-1-0-0\</sid\>
-\</conditionValue\>
-\</item\>
-\</filterCondition\>
-\<action\>
-\<type\>FWP_ACTION_BLOCK\</type\>
-\<filterType/\>
-\</action\>
-\<rawContext\>0\</rawContext\>
-\<reserved/\>
-\<filterId\>206064\</filterId\>
-\<effectiveWeight\>
-\<type\>FWP_UINT64\</type\>
-\<uint64\>274877906944\</uint64\>
-\</effectiveWeight\>
-\</item\>
+<item>
+<filterKey>{f138d1ad-9293-478f-8519-c3368e796711}</filterKey>
+<displayData>
+<name>Block Outbound Default Rule</name>
+<description>Block Outbound Default Rule</description>
+</displayData>
+<flags/>
+<providerKey>FWPM_PROVIDER_MPSSVC_WSH</providerKey>
+<providerData>
+<data>2e65000000000000</data>
+<asString>.e......</asString>
+</providerData>
+<layerKey>FWPM_LAYER_ALE_AUTH_CONNECT_V4</layerKey>
+<subLayerKey>FWPM_SUBLAYER_MPSSVC_WSH</subLayerKey>
+<weight>
+<type>FWP_EMPTY</type>
+</weight>
+<filterCondition numItems="1">
+<item>
+<fieldKey>FWPM_CONDITION_ALE_PACKAGE_ID</fieldKey>
+<matchType>FWP_MATCH_NOT_EQUAL</matchType>
+<conditionValue>
+<type>FWP_SID</type>
+<sid>S-1-0-0</sid>
+</conditionValue>
+</item>
+</filterCondition>
+<action>
+<type>FWP_ACTION_BLOCK</type>
+<filterType/>
+</action>
+<rawContext>0</rawContext>
+<reserved/>
+<filterId>206064</filterId>
+<effectiveWeight>
+<type>FWP_UINT64</type>
+<uint64>274877906944</uint64>
+</effectiveWeight>
+</item>
 ```
 ## Case 8: Debugging Past Drop - UWP app connects to Internet target address with all capabilities
 
@@ -1174,159 +1171,158 @@ In this example, the UWP app successfully connects to bing.com [204.79.197.200].
 **Classify Allow Net Event, NetEvents-Case-8.xml**
 
 ```xml
-\<item\>
->   \<header\>
->   \<timeStamp\>2020-05-04T18:49:55.101Z\</timeStamp\>
->   \<flags numItems="9"\>
->   \<item\>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_APP_ID_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_USER_ID_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_IP_VERSION_SET\</item\>
->   \<item\>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET\</item\>
->   \</flags\>
->   \<ipVersion\>FWP_IP_VERSION_V4\</ipVersion\>
->   \<ipProtocol\>6\</ipProtocol\>
->   \<localAddrV4\>10.195.36.30\</localAddrV4\>
->   \<remoteAddrV4\>204.79.197.200\</remoteAddrV4\>
->   \<localPort\>61673\</localPort\>
->   \<remotePort\>443\</remotePort\>
->   \<scopeId\>0\</scopeId\>
->   \<appId\>
->   \<data\>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\</data\>
->   \<asString\>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
->   .f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.0...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...\</asString\>
->   \</appId\>
->   \<userId\>S-1-5-21-1578316205-4060061518-881547182-1000\</userId\>
->   \<addressFamily\>FWP_AF_INET\</addressFamily\>
->   \<packageSid\>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936\</packageSid\>
->   \<enterpriseId/\>
->   \<policyFlags\>0\</policyFlags\>
->   \<effectiveName/\>
->   \</header\>
->   \<type\>FWPM_NET_EVENT_TYPE_CLASSIFY_ALLOW\</type\>
->   \<classifyAllow\>
->   \<filterId\>208757\</filterId\>
->   \<layerId\>48\</layerId\>
->   \<reauthReason\>0\</reauthReason\>
->   \<originalProfile\>1\</originalProfile\>
->   \<currentProfile\>1\</currentProfile\>
->   \</classifyAllow\>
->   \<internalFields\>
->   \<internalFlags/\>
->   \<remoteAddrBitmap\>0000000000000000\</remoteAddrBitmap\>
->   \<capabilities numItems="3"\>
->   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT\</item\>
->   \<item\>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER\</item\>
->   \<item\>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK\</item\>
->   \</capabilities\>
->   \<fqbnVersion\>0\</fqbnVersion\>
->   \<fqbnName/\>
->   \<terminatingFiltersInfo numItems="2"\>
->   \<item\>
->   \<filterId\>208757\</filterId\>
->   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH\</subLayer\>
->   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
->   \</item\>
->   \<item\>
->   \<filterId\>206049\</filterId\>
->   \<subLayer\>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF\</subLayer\>
->   \<actionType\>FWP_ACTION_PERMIT\</actionType\>
->   \</item\>
->   \</terminatingFiltersInfo\>
->   \</internalFields\>
-\</item\>
+<item>
+	<header>
+	<timeStamp>2020-05-04T18:49:55.101Z</timeStamp>
+	<flags numItems="9">
+	<item>FWPM_NET_EVENT_FLAG_IP_PROTOCOL_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_LOCAL_ADDR_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_REMOTE_ADDR_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_LOCAL_PORT_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_REMOTE_PORT_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_APP_ID_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_USER_ID_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_IP_VERSION_SET</item>
+	<item>FWPM_NET_EVENT_FLAG_PACKAGE_ID_SET</item>
+	</flags>
+	<ipVersion>FWP_IP_VERSION_V4</ipVersion>
+	<ipProtocol>6</ipProtocol>
+	<localAddrV4>10.195.36.30</localAddrV4>
+	<remoteAddrV4>204.79.197.200</remoteAddrV4>
+	<localPort>61673</localPort>
+	<remotePort>443</remotePort>
+	<scopeId>0</scopeId>
+	<appId>
+	<data>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</data>
+	<asString>\\.d.e.v.i.c.e.\\.h.a.r.d.d.i.s.k.v.o.l.u.m.e.1.\\.p.r.o.g.r.a.m.
+	.f.i.l.e.s.\\.w.i.n.d.o.w.s.a.p.p.s.\\.a.f.6.9.2.b.f.f.-.6.7.7.9.-.4.2.4.f.-.8.7.0.e.-.f.6.e.5.9.c.5.0.2.3.4.9._.1...1...1.0...0._.x.6.4._._.5.c.0.3.7.j.a.r.5.8.3.9.r.\\.u.w.p.s.o.c.k.e.t.c.l.i.e.n.t...e.x.e...</asString>
+	</appId>
+	<userId>S-1-5-21-1578316205-4060061518-881547182-1000</userId>
+	<addressFamily>FWP_AF_INET</addressFamily>
+	<packageSid>S-1-15-2-4163697451-3176919390-1155390458-2883473650-3020241727-522149888-4067122936</packageSid>
+	<enterpriseId/>
+	<policyFlags>0</policyFlags>
+	<effectiveName/>
+	</header>
+	<type>FWPM_NET_EVENT_TYPE_CLASSIFY_ALLOW</type>
+	<classifyAllow>
+	<filterId>208757</filterId>
+	<layerId>48</layerId>
+	<reauthReason>0</reauthReason>
+	<originalProfile>1</originalProfile>
+	<currentProfile>1</currentProfile>
+	</classifyAllow>
+	<internalFields>
+	<internalFlags/>
+	<remoteAddrBitmap>0000000000000000</remoteAddrBitmap>
+	<capabilities numItems="3">
+	<item>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT</item>
+	<item>FWP_CAPABILITIES_FLAG_INTERNET_CLIENT_SERVER</item>
+	<item>FWP_CAPABILITIES_FLAG_PRIVATE_NETWORK</item>
+	</capabilities>
+	<fqbnVersion>0</fqbnVersion>
+	<fqbnName/>
+	<terminatingFiltersInfo numItems="2">
+	<item>
+	<filterId>208757</filterId>
+	<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WSH</subLayer>
+	<actionType>FWP_ACTION_PERMIT</actionType>
+	</item>
+	<item>
+	<filterId>206049</filterId>
+	<subLayer>FWPP_SUBLAYER_INTERNAL_FIREWALL_WF</subLayer>
+	<actionType>FWP_ACTION_PERMIT</actionType>
+	</item>
+	</terminatingFiltersInfo>
+	</internalFields>
+</item>
 ```
-Important things to note: all capabilities are enabled and the resulting filter
-determining the flow of the packet is 208757.
+All capabilities are enabled and the resulting filter determining the flow of the packet is 208757.
 
 The filter stated above with action permit:
 
 **InternetClient Default Rule Filter \#208757, FilterState-Case-8.xml**
 ```xml
-\<item\>
-	\<filterKey\>{e0f6f24e-1f0a-4f1a-bdd8-b9277c144fb5}\</filterKey\>
-	\<displayData\>
-	\<name\>InternetClient Default Rule\</name\>
-		\<description\>InternetClient Default Rule\</description\>
-					\</displayData\>
-					\<flags/\>
-					\<providerKey\>FWPM_PROVIDER_MPSSVC_WSH\</providerKey\>
-					\<providerData\>
-						\<data\>e167000000000000\</data\>
-						\<asString\>.g......\</asString\>
-					\</providerData\>
-					\<layerKey\>FWPM_LAYER_ALE_AUTH_CONNECT_V4\</layerKey\>
-					\<subLayerKey\>FWPM_SUBLAYER_MPSSVC_WSH\</subLayerKey\>
-					\<weight\>
-						\<type\>FWP_EMPTY\</type\>
-					\</weight\>
-					\<filterCondition numItems="5"\>
-						\<item\>
-							\<fieldKey\>FWPM_CONDITION_ALE_PACKAGE_ID\</fieldKey\>
-							\<matchType\>FWP_MATCH_NOT_EQUAL\</matchType\>
-							\<conditionValue\>
-								\<type\>FWP_SID\</type\>
-								\<sid\>S-1-0-0\</sid\>
-							\</conditionValue\>
-						\</item\>
-						\<item\>
-							\<fieldKey\>FWPM_CONDITION_IP_REMOTE_ADDRESS\</fieldKey\>
-							\<matchType\>FWP_MATCH_RANGE\</matchType\>
-							\<conditionValue\>
-								\<type\>FWP_RANGE_TYPE\</type\>
-								\<rangeValue\>
-									\<valueLow\>
-										\<type\>FWP_UINT32\</type\>
-										\<uint32\>0.0.0.0\</uint32\>
-									\</valueLow\>
-									\<valueHigh\>
-										\<type\>FWP_UINT32\</type\>
-										\<uint32\>255.255.255.255\</uint32\>
-									\</valueHigh\>
-								\</rangeValue\>
-							\</conditionValue\>
-						\</item\>
-						\<item\>
-							\<fieldKey\>FWPM_CONDITION_ORIGINAL_PROFILE_ID\</fieldKey\>
-							\<matchType\>FWP_MATCH_EQUAL\</matchType\>
-							\<conditionValue\>
-								\<type\>FWP_UINT32\</type\>
-								\<uint32\>1\</uint32\>
-							\</conditionValue\>
-						\</item\>
-						\<item\>
-							\<fieldKey\>FWPM_CONDITION_CURRENT_PROFILE_ID\</fieldKey\>
-							\<matchType\>FWP_MATCH_EQUAL\</matchType\>
-							\<conditionValue\>
-								\<type\>FWP_UINT32\</type\>
-								\<uint32\>1\</uint32\>
-							\</conditionValue\>
-						\</item\>
-						\<item\>
-							\<fieldKey\>FWPM_CONDITION_ALE_USER_ID\</fieldKey\>
-							\<matchType\>FWP_MATCH_EQUAL\</matchType\>
-							\<conditionValue\>
-								\<type\>FWP_SECURITY_DESCRIPTOR_TYPE\</type\>
-								\<sd\>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)\</sd\>
-							\</conditionValue\>
-						\</item\>
-					\</filterCondition\>
-					\<action\>
-						\<type\>FWP_ACTION_PERMIT\</type\>
-						\<filterType/\>
-					\</action\>
-					\<rawContext\>0\</rawContext\>
-					\<reserved/\>
-					\<filterId\>208757\</filterId\>
-					\<effectiveWeight\>
-						\<type\>FWP_UINT64\</type\>
-						\<uint64\>412316868544\</uint64\>
-					\</effectiveWeight\>
-				\</item\>
+<item>
+	<filterKey>{e0f6f24e-1f0a-4f1a-bdd8-b9277c144fb5}</filterKey>
+	<displayData>
+	<name>InternetClient Default Rule</name>
+		<description>InternetClient Default Rule</description>
+					</displayData>
+					<flags/>
+					<providerKey>FWPM_PROVIDER_MPSSVC_WSH</providerKey>
+					<providerData>
+						<data>e167000000000000</data>
+						<asString>.g......</asString>
+					</providerData>
+					<layerKey>FWPM_LAYER_ALE_AUTH_CONNECT_V4</layerKey>
+					<subLayerKey>FWPM_SUBLAYER_MPSSVC_WSH</subLayerKey>
+					<weight>
+						<type>FWP_EMPTY</type>
+					</weight>
+					<filterCondition numItems="5">
+						<item>
+							<fieldKey>FWPM_CONDITION_ALE_PACKAGE_ID</fieldKey>
+							<matchType>FWP_MATCH_NOT_EQUAL</matchType>
+							<conditionValue>
+								<type>FWP_SID</type>
+								<sid>S-1-0-0</sid>
+							</conditionValue>
+						</item>
+						<item>
+							<fieldKey>FWPM_CONDITION_IP_REMOTE_ADDRESS</fieldKey>
+							<matchType>FWP_MATCH_RANGE</matchType>
+							<conditionValue>
+								<type>FWP_RANGE_TYPE</type>
+								<rangeValue>
+									<valueLow>
+										<type>FWP_UINT32</type>
+										<uint32>0.0.0.0</uint32>
+									</valueLow>
+									<valueHigh>
+										<type>FWP_UINT32</type>
+										<uint32>255.255.255.255</uint32>
+									</valueHigh>
+								</rangeValue>
+							</conditionValue>
+						</item>
+						<item>
+							<fieldKey>FWPM_CONDITION_ORIGINAL_PROFILE_ID</fieldKey>
+							<matchType>FWP_MATCH_EQUAL</matchType>
+							<conditionValue>
+								<type>FWP_UINT32</type>
+								<uint32>1</uint32>
+							</conditionValue>
+						</item>
+						<item>
+							<fieldKey>FWPM_CONDITION_CURRENT_PROFILE_ID</fieldKey>
+							<matchType>FWP_MATCH_EQUAL</matchType>
+							<conditionValue>
+								<type>FWP_UINT32</type>
+								<uint32>1</uint32>
+							</conditionValue>
+						</item>
+						<item>
+							<fieldKey>FWPM_CONDITION_ALE_USER_ID</fieldKey>
+							<matchType>FWP_MATCH_EQUAL</matchType>
+							<conditionValue>
+								<type>FWP_SECURITY_DESCRIPTOR_TYPE</type>
+								<sd>O:LSD:(A;;CC;;;S-1-15-3-1)(A;;CC;;;WD)(A;;CC;;;AN)</sd>
+							</conditionValue>
+						</item>
+					</filterCondition>
+					<action>
+						<type>FWP_ACTION_PERMIT</type>
+						<filterType/>
+					</action>
+					<rawContext>0</rawContext>
+					<reserved/>
+					<filterId>208757</filterId>
+					<effectiveWeight>
+						<type>FWP_UINT64</type>
+						<uint64>412316868544</uint64>
+					</effectiveWeight>
+				</item>
 ```
 The capabilities field in a netEvent was added to the traces in the Windows 10
-May 2019 Update
+May 2019 Update.

From 4fc5bf0a7578056c563da078292ac7791fe903f8 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 13 Aug 2020 18:19:38 -0700
Subject: [PATCH 16/38] fixing H1s

---
 .../windows-firewall/troubleshooting-uwp-firewall.md | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
index fd79a67511..1ea6cce448 100644
--- a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
@@ -39,9 +39,9 @@ filters ensures network isolation for UWP applications. Specifically, it guarant
 
 For more information on the filter arbitration algorithm and network isolation,
 see [Filter
-Arbitration](https://docs.microsoft.com/en-us/windows/win32/fwp/filter-arbitration)
+Arbitration](https://docs.microsoft.com/windows/win32/fwp/filter-arbitration)
 and
-[Isolation](https://docs.microsoft.com/en-us/windows/win32/secauthz/appcontainer-isolation).
+[Isolation](https://docs.microsoft.com/windows/win32/secauthz/appcontainer-isolation).
 
 The following sections cover debugging case examples for loopback and non-loopback UWP app network connectivity issues.
 
@@ -49,7 +49,7 @@ The following sections cover debugging case examples for loopback and non-loopba
 > As improvements to debugging and diagnostics in the Windows Filtering Platform are made, the trace examples in this document may not exactly match the
 traces collected on previous releases of Windows.
 
-# Debugging UWP App Loopback scenarios
+## Debugging UWP App Loopback scenarios
 
 If you need to establis a TCP/IP connection between two processes on the same host where one of them is a UWP app, you must enable loopback.
 
@@ -68,9 +68,9 @@ You can ensure loopback is enabled by checking the appx manifests of both the se
 
 For more information about loopback scenarios, see [Communicating with
 localhost
-(loopback)](https://docs.microsoft.com/en-us/windows/iot-core/develop-your-app/loopback)
+(loopback)](https://docs.microsoft.com/windows/iot-core/develop-your-app/loopback)
 
-# Debugging Live Drops
+## Debugging Live Drops
 
 If the issue happened recently, but you find you are not able to reproduce the issue, go to Debugging Past Drops for the appropriate trace commands.
 
@@ -996,7 +996,7 @@ on the device (MDM, Group Policy, etc) and make sure it includes the private tar
 	</effectiveWeight>
 </item>
 ```
-# Debugging Past Drops 
+## Debugging Past Drops 
 
 If you are debugging a network drop from the past or from a remote machine, you
 may have traces already collected from Feedback Hub, such as nettrace.etl and

From ee0509798aa1fd5162d5f1967ff8503fe3515d6f Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 14 Aug 2020 12:32:45 -0700
Subject: [PATCH 17/38] update toc add back topics

---
 .../threat-protection/windows-firewall/TOC.md | 104 ++++++++++++------
 .../firewall-policy-design-example.md         |   4 +-
 ...wall-with-advanced-security-design-plan.md |   2 +-
 ...with-advanced-security-deployment-guide.md |  12 +-
 ...windows-firewall-with-advanced-security.md |  19 ++--
 5 files changed, 84 insertions(+), 57 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/TOC.md b/windows/security/threat-protection/windows-firewall/TOC.md
index 7861f11250..038232e7da 100644
--- a/windows/security/threat-protection/windows-firewall/TOC.md
+++ b/windows/security/threat-protection/windows-firewall/TOC.md
@@ -1,38 +1,51 @@
 # [Windows Firewall with Advanced Security](windows-firewall-with-advanced-security.md)
 
-## [Plan/Design]()
+## [Plan deployment]()
 
-### [Design Guide](windows-firewall-with-advanced-security-design-guide.md)
+### [Design guide](windows-firewall-with-advanced-security-design-guide.md)
 
-### [Design Process](understanding-the-windows-firewall-with-advanced-security-design-process.md)
+### [Design process](understanding-the-windows-firewall-with-advanced-security-design-process.md)
 
-### [Deployment Goals]()
-#### [Identify deployment goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)
+### [Implementation goals]()
+#### [Identify implementation goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)
 #### [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md)
 #### [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md)
 #### [Require Encryption](require-encryption-when-accessing-sensitive-network-resources.md)
 #### [Restrict Access](restrict-access-to-only-specified-users-or-devices.md)
 
-### [Deployment designs]()
-#### [Mapping Goals to a Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)
-#### [Basic Design](basic-firewall-policy-design.md)
-#### [Domain Isolation Design](domain-isolation-policy-design.md)
-#### [Server Isolation Design](server-isolation-policy-design.md)
-#### [Certificate-based Isolation Design](certificate-based-isolation-policy-design.md)
+### [Implementation designs]()
+#### [Mapping goals to a design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)
 
-### [Design plans]()
-#### [Planning Your Design](planning-your-windows-firewall-with-advanced-security-design.md)
-#### [Planning Settings for a Basic Firewall Policy](planning-settings-for-a-basic-firewall-policy.md)
-##### [Planning Domain Isolation Zones]()
-###### [Domain Isolation Zones](planning-domain-isolation-zones.md)
-###### [Exemption List](exemption-list.md)
-###### [Isolated Domain](isolated-domain.md)
-###### [Boundary Zone](boundary-zone.md)
-###### [Encryption Zone](encryption-zone.md)
+#### [Basic design](basic-firewall-policy-design.md)
+##### [Basic Design Example](firewall-policy-design-example.md)
 
-#### [Planning Server Isolation Zones](planning-server-isolation-zones.md)
 
-#### [Planning Certificate-based Authentication](planning-certificate-based-authentication.md)
+#### [Domain isolation design](domain-isolation-policy-design.md)
+##### [Domain Isolation Design Example](domain-isolation-policy-design-example.md)
+
+
+#### [Server isolation design](server-isolation-policy-design.md)
+##### [Server Isolation Design Example](server-isolation-policy-design-example.md)
+
+
+#### [Certificate-based isolation design](certificate-based-isolation-policy-design.md)
+##### [Certificate-based Isolation Design Example](certificate-based-isolation-policy-design-example.md)
+
+### [Design planning]()
+#### [Planning your design](planning-your-windows-firewall-with-advanced-security-design.md)
+
+#### [Planning settings for a basic firewall policy](planning-settings-for-a-basic-firewall-policy.md)
+
+#### [Planning domain isolation zones]()
+##### [Domain isolation zones](planning-domain-isolation-zones.md)
+##### [Exemption list](exemption-list.md)
+##### [Isolated domain](isolated-domain.md)
+##### [Boundary zone](boundary-zone.md)
+##### [Encryption zone](encryption-zone.md)
+
+#### [Planning server isolation zones](planning-server-isolation-zones.md)
+
+#### [Planning certificate-based authentication](planning-certificate-based-authentication.md)
 ##### [Documenting the Zones](documenting-the-zones.md)
 
 ##### [Planning Group Policy Deployment for Your Isolation Zones](planning-group-policy-deployment-for-your-isolation-zones.md)
@@ -54,9 +67,31 @@
 ###### [Planning GPO Deployment](planning-gpo-deployment.md)
 
 
+### [Planning to deploy](planning-to-deploy-windows-firewall-with-advanced-security.md)
+
+
 ## [Deployment guide]()
-### [Planning to Deploy](planning-to-deploy-windows-firewall-with-advanced-security.md)
-### [Implementing Your Plan](implementing-your-windows-firewall-with-advanced-security-design-plan.md)
+### [Deployment overview](windows-firewall-with-advanced-security-deployment-guide.md)
+
+### [Implementing your plan](implementing-your-windows-firewall-with-advanced-security-design-plan.md)
+
+### [Basic firewall deployment]()
+#### [Checklist: Implementing a basic firewall policy design](checklist-implementing-a-basic-firewall-policy-design.md)
+
+
+
+### [Domain isolation deployment]()
+#### [Checklist: Implementing a Domain Isolation Policy Design](checklist-implementing-a-domain-isolation-policy-design.md)
+
+
+
+### [Server isolation deployment]()
+#### [Checklist: Implementing a Standalone Server Isolation Policy Design](checklist-implementing-a-standalone-server-isolation-policy-design.md)
+
+
+
+### [Certificate-based authentication]()
+#### [Checklist: Implementing a Certificate-based Isolation Policy Design](checklist-implementing-a-certificate-based-isolation-policy-design.md)
 
 
 
@@ -109,20 +144,19 @@
 
 ## [References]()
 ### [Checklist: Creating Group Policy Objects](checklist-creating-group-policy-objects.md)
-### [Checklist: Implementing a Basic Firewall Policy Design](checklist-implementing-a-basic-firewall-policy-design.md)
-### [Checklist: Configuring Basic Firewall Settings](checklist-configuring-basic-firewall-settings.md)
 ### [Checklist: Creating Inbound Firewall Rules](checklist-creating-inbound-firewall-rules.md)
 ### [Checklist: Creating Outbound Firewall Rules](checklist-creating-outbound-firewall-rules.md)
-### [Checklist: Implementing a Domain Isolation Policy Design](checklist-implementing-a-domain-isolation-policy-design.md)
-#### [Checklist: Configuring Rules for the Isolated Domain](checklist-configuring-rules-for-the-isolated-domain.md)
-#### [Checklist: Configuring Rules for the Boundary Zone](checklist-configuring-rules-for-the-boundary-zone.md)
-#### [Checklist: Configuring Rules for the Encryption Zone](checklist-configuring-rules-for-the-encryption-zone.md)
-#### [Checklist: Configuring Rules for an Isolated Server Zone](checklist-configuring-rules-for-an-isolated-server-zone.md)
-### [Checklist: Implementing a Standalone Server Isolation Policy Design](checklist-implementing-a-standalone-server-isolation-policy-design.md)
-#### [Checklist: Configuring Rules for Servers in a Standalone Isolated Server Zone](checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md)
-#### [Checklist: Creating Rules for Clients of a Standalone Isolated Server Zone](checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md)
+### [Checklist: Configuring Basic Firewall Settings](checklist-configuring-basic-firewall-settings.md)
+
+
+### [Checklist: Configuring Rules for the Isolated Domain](checklist-configuring-rules-for-the-isolated-domain.md)
+### [Checklist: Configuring Rules for the Boundary Zone](checklist-configuring-rules-for-the-boundary-zone.md)
+### [Checklist: Configuring Rules for the Encryption Zone](checklist-configuring-rules-for-the-encryption-zone.md)
+### [Checklist: Configuring Rules for an Isolated Server Zone](checklist-configuring-rules-for-an-isolated-server-zone.md)
+
+### [Checklist: Configuring Rules for Servers in a Standalone Isolated Server Zone](checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md)
+### [Checklist: Creating Rules for Clients of a Standalone Isolated Server Zone](checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md)
 
-### [Checklist: Implementing a Certificate-based Isolation Policy Design](checklist-implementing-a-certificate-based-isolation-policy-design.md)
 
 ### [Appendix A: Sample GPO Template Files for Settings Used in this Guide](appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md)
 
diff --git a/windows/security/threat-protection/windows-firewall/firewall-policy-design-example.md b/windows/security/threat-protection/windows-firewall/firewall-policy-design-example.md
index 5127569bc4..ef30c1a5cd 100644
--- a/windows/security/threat-protection/windows-firewall/firewall-policy-design-example.md
+++ b/windows/security/threat-protection/windows-firewall/firewall-policy-design-example.md
@@ -1,5 +1,5 @@
 ---
-title: Firewall Policy Design Example (Windows 10)
+title: Basic Firewall Policy Design Example (Windows 10)
 description: Firewall Policy Design Example
 ms.assetid: 0dc3bcfe-7a4d-4a15-93a9-64b13bd775a7
 ms.reviewer: 
@@ -17,7 +17,7 @@ ms.topic: conceptual
 ms.date: 08/17/2017
 ---
 
-# Firewall Policy Design Example
+# Basic Firewall Policy Design Example
 
 **Applies to**
 -   Windows 10
diff --git a/windows/security/threat-protection/windows-firewall/implementing-your-windows-firewall-with-advanced-security-design-plan.md b/windows/security/threat-protection/windows-firewall/implementing-your-windows-firewall-with-advanced-security-design-plan.md
index c56fd15494..841c88ae5d 100644
--- a/windows/security/threat-protection/windows-firewall/implementing-your-windows-firewall-with-advanced-security-design-plan.md
+++ b/windows/security/threat-protection/windows-firewall/implementing-your-windows-firewall-with-advanced-security-design-plan.md
@@ -48,7 +48,7 @@ Use the following parent checklists in this section of the guide to become famil
 
 -   [Checklist: Implementing a Domain Isolation Policy Design](checklist-implementing-a-domain-isolation-policy-design.md)
 
--   [Checklist: Implementing a Domain Isolation Policy Design](checklist-implementing-a-domain-isolation-policy-design.md)
+-   [Checklist: Implementing a Standalone Server Isolation Policy Design](checklist-implementing-a-standalone-server-isolation-policy-design.md)
 
 -   [Checklist: Implementing a Certificate-based Isolation Policy Design](checklist-implementing-a-certificate-based-isolation-policy-design.md)
 
diff --git a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md
index d91723c3d2..dbfd48ddf6 100644
--- a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md
+++ b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md
@@ -1,6 +1,6 @@
 ---
-title: Deploy Windows Defender Firewall with Advanced Security (Windows 10)
-description: Windows Defender Firewall with Advanced Security Deployment Guide
+title: Windows Defender Firewall with Advanced Security deployment overview (Windows 10)
+description: Windows Defender Firewall with Advanced Security deployment overview
 ms.assetid: 56b51b97-1c38-481e-bbda-540f1216ad56
 ms.reviewer: 
 ms.author: dansimp
@@ -17,7 +17,7 @@ ms.topic: conceptual
 ms.date: 08/17/2017
 ---
 
-# Windows Defender Firewall with Advanced Security Deployment Guide
+# Windows Defender Firewall with Advanced Security deployment overview
 
 **Applies to**
 -   Windows 10
@@ -61,10 +61,4 @@ This guide does not provide:
 
 -   Guidance for setting up certification authorities (CAs) to create certificates for certificate-based authentication.
 
-## Overview of Windows Defender Firewall with Advanced Security
-
-Windows Defender Firewall in Windows 8, Windows 7, Windows Vista, Windows Server 2012, Windows Server 2008, and Windows Server 2008 R2 is a stateful host firewall that helps secure the device by allowing you to create rules that determine which network traffic is permitted to enter the device from the network and which network traffic the device is allowed to send to the network. Windows Defender Firewall also supports Internet Protocol security (IPsec), which you can use to require authentication from any device that is attempting to communicate with your device. When authentication is required, devices that cannot be authenticated as a trusted device cannot communicate with your device. You can also use IPsec to require that certain network traffic is encrypted to prevent it from being read by network packet analyzers that could be attached to the network by a malicious user.
-
-The Windows Defender Firewall with Advanced Security MMC snap-in is more flexible and provides much more functionality than the consumer-friendly Windows Defender Firewall interface found in the Control Panel. Both interfaces interact with the same underlying services, but provide different levels of control over those services. While the Windows Defender Firewall Control Panel program can protect a single device in a home environment, it does not provide enough centralized management or security features to help secure more complex network traffic found in a typical business enterprise environment.
-
 For more information about Windows Defender Firewall with Advanced Security, see [Windows Defender Firewall with Advanced Security Overview](windows-firewall-with-advanced-security.md).
diff --git a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security.md b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security.md
index 3261e0545f..37d4d64de1 100644
--- a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security.md
+++ b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security.md
@@ -25,10 +25,17 @@ ms.custom: asr
 
 This is an overview of the Windows Defender Firewall with Advanced Security (WFAS) and Internet Protocol security (IPsec) features.
 
+## Overview of Windows Defender Firewall with Advanced Security
+
+Windows Defender Firewall in Windows 8, Windows 7, Windows Vista, Windows Server 2012, Windows Server 2008, and Windows Server 2008 R2 is a stateful host firewall that helps secure the device by allowing you to create rules that determine which network traffic is permitted to enter the device from the network and which network traffic the device is allowed to send to the network. Windows Defender Firewall also supports Internet Protocol security (IPsec), which you can use to require authentication from any device that is attempting to communicate with your device. When authentication is required, devices that cannot be authenticated as a trusted device cannot communicate with your device. You can also use IPsec to require that certain network traffic is encrypted to prevent it from being read by network packet analyzers that could be attached to the network by a malicious user.
+
+The Windows Defender Firewall with Advanced Security MMC snap-in is more flexible and provides much more functionality than the consumer-friendly Windows Defender Firewall interface found in the Control Panel. Both interfaces interact with the same underlying services, but provide different levels of control over those services. While the Windows Defender Firewall Control Panel program can protect a single device in a home environment, it does not provide enough centralized management or security features to help secure more complex network traffic found in a typical business enterprise environment.
+
+
+
 ## Feature description
 
-Windows Defender Firewall with Advanced Security
-is an important part of a layered security model. By providing host-based, two-way network traffic filtering for a device, Windows Defender Firewall blocks unauthorized network traffic flowing into or out of the local device. Windows Defender Firewall also works with Network Awareness so that it can apply security settings appropriate to the types of networks to which the device is connected. Windows Defender Firewall and Internet Protocol Security (IPsec) configuration settings are integrated into a single Microsoft Management Console (MMC) named Windows Defender Firewall, so Windows Defender Firewall is also an important part of your network’s isolation strategy.
+Windows Defender Firewall with Advanced Security is an important part of a layered security model. By providing host-based, two-way network traffic filtering for a device, Windows Defender Firewall blocks unauthorized network traffic flowing into or out of the local device. Windows Defender Firewall also works with Network Awareness so that it can apply security settings appropriate to the types of networks to which the device is connected. Windows Defender Firewall and Internet Protocol Security (IPsec) configuration settings are integrated into a single Microsoft Management Console (MMC) named Windows Defender Firewall, so Windows Defender Firewall is also an important part of your network’s isolation strategy.
 
 ## Practical applications
 
@@ -41,12 +48,4 @@ To help address your organizational network security challenges, Windows Defende
 
 -   **Extends the value of existing investments.**  Because Windows Defender Firewall is a host-based firewall that is included with the operating system, there is no additional hardware or software required. Windows Defender Firewall is also designed to complement existing non-Microsoft network security solutions through a documented application programming interface (API).
 
-## In this section
 
-| Topic | Description
-| - | - |
-| [Isolating Microsoft Store Apps on Your Network](isolating-apps-on-your-network.md) | You can customize your Windows Defender Firewall configuration to isolate the network access of Microsoft Store apps that run on devices. |
-| [Securing End-to-End IPsec Connections by Using IKEv2](securing-end-to-end-ipsec-connections-by-using-ikev2.md) | You can use IKEv2 to help secure your end-to-end IPSec connections. |
-| [Windows Defender Firewall with Advanced Security Administration with Windows PowerShell](windows-firewall-with-advanced-security-administration-with-windows-powershell.md) | Learn more about using Windows PowerShell to manage the Windows Defender Firewall. |
-| [Windows Defender Firewall with Advanced Security Design Guide](windows-firewall-with-advanced-security-design-guide.md) | Learn how to create a design for deploying Windows Defender Firewall with Advanced Security. |
-| [Windows Defender Firewall with Advanced Security Deployment Guide](windows-firewall-with-advanced-security-deployment-guide.md) |  Learn how to deploy Windows Defender Firewall with Advanced Security. |

From 110213ea267937f0ee3c91008021d880f7a9123e Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 14 Aug 2020 12:59:10 -0700
Subject: [PATCH 18/38] add troubleshooting topic

---
 windows/security/threat-protection/windows-firewall/TOC.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-firewall/TOC.md b/windows/security/threat-protection/windows-firewall/TOC.md
index 038232e7da..874e91f06d 100644
--- a/windows/security/threat-protection/windows-firewall/TOC.md
+++ b/windows/security/threat-protection/windows-firewall/TOC.md
@@ -163,7 +163,7 @@
 
 
 ## [Troubleshooting]()
-
+### [Troubleshooting UWP App Connectivity Issues in Windows Firewall](troubleshooting-uwp-firewall.md)
 
 
 

From 774963624d0ed22ce68bc332e8615c39ec7705c3 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 14 Aug 2020 13:28:18 -0700
Subject: [PATCH 19/38] cleannnnnnn up

---
 .../threat-protection/windows-firewall/TOC.md | 98 +++++++++----------
 ...with-advanced-security-deployment-goals.md | 17 ++--
 ...t-devices-from-unwanted-network-traffic.md |  4 +-
 ...restrict-access-to-only-trusted-devices.md |  6 +-
 ...all-with-advanced-security-design-guide.md |  7 +-
 5 files changed, 65 insertions(+), 67 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/TOC.md b/windows/security/threat-protection/windows-firewall/TOC.md
index 874e91f06d..e8109bbb5d 100644
--- a/windows/security/threat-protection/windows-firewall/TOC.md
+++ b/windows/security/threat-protection/windows-firewall/TOC.md
@@ -48,23 +48,23 @@
 #### [Planning certificate-based authentication](planning-certificate-based-authentication.md)
 ##### [Documenting the Zones](documenting-the-zones.md)
 
-##### [Planning Group Policy Deployment for Your Isolation Zones](planning-group-policy-deployment-for-your-isolation-zones.md)
-###### [Planning Isolation Groups for the Zones](planning-isolation-groups-for-the-zones.md)
-###### [Planning Network Access Groups](planning-network-access-groups.md)
+##### [Planning group policy deployment for your isolation zones](planning-group-policy-deployment-for-your-isolation-zones.md)
+###### [Planning isolation groups for the zones](planning-isolation-groups-for-the-zones.md)
+###### [Planning network access groups](planning-network-access-groups.md)
 
 ###### [Planning the GPOs](planning-the-gpos.md)
 ####### [Firewall GPOs](firewall-gpos.md)
 ######## [GPO_DOMISO_Firewall](gpo-domiso-firewall.md)
-####### [Isolated Domain GPOs](isolated-domain-gpos.md)
+####### [Isolated domain GPOs](isolated-domain-gpos.md)
 ######## [GPO_DOMISO_IsolatedDomain_Clients](gpo-domiso-isolateddomain-clients.md)
 ######## [GPO_DOMISO_IsolatedDomain_Servers](gpo-domiso-isolateddomain-servers.md)
-####### [Boundary Zone GPOs](boundary-zone-gpos.md)
+####### [Boundary zone GPOs](boundary-zone-gpos.md)
 ######## [GPO_DOMISO_Boundary](gpo-domiso-boundary.md)
-####### [Encryption Zone GPOs](encryption-zone-gpos.md)
+####### [Encryption zone GPOs](encryption-zone-gpos.md)
 ######## [GPO_DOMISO_Encryption](gpo-domiso-encryption.md)
-####### [Server Isolation GPOs](server-isolation-gpos.md)
+####### [Server isolation GPOs](server-isolation-gpos.md)
 
-###### [Planning GPO Deployment](planning-gpo-deployment.md)
+###### [Planning GPO deployment](planning-gpo-deployment.md)
 
 
 ### [Planning to deploy](planning-to-deploy-windows-firewall-with-advanced-security.md)
@@ -102,68 +102,68 @@
 
 
 ## [How-to]()
-### [Add Production Devices to the Membership Group for a Zone](add-production-devices-to-the-membership-group-for-a-zone.md)
-### [Add Test Devices to the Membership Group for a Zone](add-test-devices-to-the-membership-group-for-a-zone.md)
-### [Assign Security Group Filters to the GPO](assign-security-group-filters-to-the-gpo.md)
-### [Change Rules from Request to Require Mode](change-rules-from-request-to-require-mode.md)
-### [Configure Authentication Methods](configure-authentication-methods.md)
-### [Configure Data Protection (Quick Mode) Settings](configure-data-protection-quick-mode-settings.md)
-### [Configure Group Policy to Autoenroll and Deploy Certificates](configure-group-policy-to-autoenroll-and-deploy-certificates.md)
-### [Configure Key Exchange (Main Mode) Settings](configure-key-exchange-main-mode-settings.md)
-### [Configure the Rules to Require Encryption](configure-the-rules-to-require-encryption.md)
-### [Configure the Windows Firewall Log](configure-the-windows-firewall-log.md)
-### [Configure the Workstation Authentication Certificate Template](configure-the-workstation-authentication-certificate-template.md)
-### [Configure Windows Firewall to Suppress Notifications When a Program Is Blocked](configure-windows-firewall-to-suppress-notifications-when-a-program-is-blocked.md)
-### [Confirm That Certificates Are Deployed Correctly](confirm-that-certificates-are-deployed-correctly.md)
-### [Copy a GPO to Create a New GPO](copy-a-gpo-to-create-a-new-gpo.md)
+### [Add Production devices to the membership group for a zone](add-production-devices-to-the-membership-group-for-a-zone.md)
+### [Add test devices to the membership group for a zone](add-test-devices-to-the-membership-group-for-a-zone.md)
+### [Assign security group filters to the GPO](assign-security-group-filters-to-the-gpo.md)
+### [Change rules from request to require mode](Change-Rules-From-Request-To-Require-Mode.Md)
+### [Configure authentication methods](Configure-authentication-methods.md)
+### [Configure data protection (Quick Mode) settings](configure-data-protection-quick-mode-settings.md)
+### [Configure Group Policy to autoenroll and deploy certificates](configure-group-policy-to-autoenroll-and-deploy-certificates.md)
+### [Configure key exchange (main mode) settings](configure-key-exchange-main-mode-settings.md)
+### [Configure the rules to require encryption](configure-the-rules-to-require-encryption.md)
+### [Configure the Windows Firewall log](configure-the-windows-firewall-log.md)
+### [Configure the workstation authentication certificate template](configure-the-workstation-authentication-certificate-template.md)
+### [Configure Windows Firewall to suppress notifications when a program is blocked](configure-windows-firewall-to-suppress-notifications-when-a-program-is-blocked.md)
+### [Confirm that certificates are deployed correctly](confirm-that-certificates-are-deployed-correctly.md)
+### [Copy a GPO to create a new GPO](copy-a-gpo-to-create-a-new-gpo.md)
 ### [Create a Group Account in Active Directory](create-a-group-account-in-active-directory.md)
 ### [Create a Group Policy Object](create-a-group-policy-object.md)
-### [Create an Authentication Exemption List Rule](create-an-authentication-exemption-list-rule.md)
-### [Create an Authentication Request Rule](create-an-authentication-request-rule.md)
-### [Create an Inbound ICMP Rule](create-an-inbound-icmp-rule.md)
-### [Create an Inbound Port Rule](create-an-inbound-port-rule.md)
-### [Create an Inbound Program or Service Rule](create-an-inbound-program-or-service-rule.md)
-### [Create an Outbound Port Rule](create-an-outbound-port-rule.md)
-### [Create an Outbound Program or Service Rule](create-an-outbound-program-or-service-rule.md)
-### [Create Inbound Rules to Support RPC](create-inbound-rules-to-support-rpc.md)
-### [Create WMI Filters for the GPO](create-wmi-filters-for-the-gpo.md)
+### [Create an authentication exemption list rule](create-an-authentication-exemption-list-rule.md)
+### [Create an authentication request rule](create-an-authentication-request-rule.md)
+### [Create an inbound ICMP rule](create-an-inbound-icmp-rule.md)
+### [Create an inbound port rule](create-an-inbound-port-rule.md)
+### [Create an inbound program or service rule](create-an-inbound-program-or-service-rule.md)
+### [Create an outbound port rule](create-an-outbound-port-rule.md)
+### [Create an outbound program or service rule](create-an-outbound-program-or-service-rule.md)
+### [Create inbound rules to support RPC](create-inbound-rules-to-support-rpc.md)
+### [Create WMI filters for the GPO](create-wmi-filters-for-the-gpo.md)
 ### [Create Windows Firewall rules in Intune](create-windows-firewall-rules-in-intune.md)
-### [Enable Predefined Inbound Rules](enable-predefined-inbound-rules.md)
-### [Enable Predefined Outbound Rules](enable-predefined-outbound-rules.md)
-### [Exempt ICMP from Authentication](exempt-icmp-from-authentication.md)
-### [Link the GPO to the Domain](link-the-gpo-to-the-domain.md)
-### [Modify GPO Filters](modify-gpo-filters-to-apply-to-a-different-zone-or-version-of-windows.md)
-### [Open IP Security Policies](open-the-group-policy-management-console-to-ip-security-policies.md)
+### [Enable predefined inbound rules](enable-predefined-inbound-rules.md)
+### [Enable predefined outbound rules](enable-predefined-outbound-rules.md)
+### [Exempt ICMP from authentication](exempt-icmp-from-authentication.md)
+### [Link the GPO to the domain](link-the-gpo-to-the-domain.md)
+### [Modify GPO filters](modify-gpo-filters-to-apply-to-a-different-zone-or-version-of-windows.md)
+### [Open IP security policies](open-the-group-policy-management-console-to-ip-security-policies.md)
 ### [Open Group Policy](open-the-group-policy-management-console-to-windows-firewall.md)
 ### [Open Group Policy](open-the-group-policy-management-console-to-windows-firewall-with-advanced-security.md)
 ### [Open Windows Firewall](open-windows-firewall-with-advanced-security.md)
-### [Restrict Server Access](restrict-server-access-to-members-of-a-group-only.md)
+### [Restrict server access](restrict-server-access-to-members-of-a-group-only.md)
 ### [Enable Windows Firewall](turn-on-windows-firewall-and-configure-default-behavior.md)
 ### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
-### [Verify Network Traffic](verify-that-network-traffic-is-authenticated.md)
+
 
 ## [References]()
-### [Checklist: Creating Group Policy Objects](checklist-creating-group-policy-objects.md)
-### [Checklist: Creating Inbound Firewall Rules](checklist-creating-inbound-firewall-rules.md)
+### [Checklist: Creating Group Policy objects](checklist-creating-group-policy-objects.md)
+### [Checklist: Creating inbound firewall rules](checklist-creating-inbound-firewall-rules.md)
 ### [Checklist: Creating Outbound Firewall Rules](checklist-creating-outbound-firewall-rules.md)
 ### [Checklist: Configuring Basic Firewall Settings](checklist-configuring-basic-firewall-settings.md)
 
 
-### [Checklist: Configuring Rules for the Isolated Domain](checklist-configuring-rules-for-the-isolated-domain.md)
-### [Checklist: Configuring Rules for the Boundary Zone](checklist-configuring-rules-for-the-boundary-zone.md)
-### [Checklist: Configuring Rules for the Encryption Zone](checklist-configuring-rules-for-the-encryption-zone.md)
-### [Checklist: Configuring Rules for an Isolated Server Zone](checklist-configuring-rules-for-an-isolated-server-zone.md)
+### [Checklist: Configuring rules for the isolated domain](checklist-configuring-rules-for-the-isolated-domain.md)
+### [Checklist: Configuring rules for the boundary zone](checklist-configuring-rules-for-the-boundary-zone.md)
+### [Checklist: Configuring rules for the encryption zone](checklist-configuring-rules-for-the-encryption-zone.md)
+### [Checklist: Configuring rules for an isolated server zone](checklist-configuring-rules-for-an-isolated-server-zone.md)
 
-### [Checklist: Configuring Rules for Servers in a Standalone Isolated Server Zone](checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md)
-### [Checklist: Creating Rules for Clients of a Standalone Isolated Server Zone](checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md)
+### [Checklist: Configuring rules for servers in a standalone isolated server zone](checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md)
+### [Checklist: Creating rules for clients of a standalone isolated server zone](checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md)
 
 
-### [Appendix A: Sample GPO Template Files for Settings Used in this Guide](appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md)
+### [Appendix A: Sample GPO template files for settings used in this guide](appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md)
 
 
 
 ## [Troubleshooting]()
-### [Troubleshooting UWP App Connectivity Issues in Windows Firewall](troubleshooting-uwp-firewall.md)
+### [Troubleshooting UWP app connectivity issues in Windows Firewall](troubleshooting-uwp-firewall.md)
 
 
 
diff --git a/windows/security/threat-protection/windows-firewall/identifying-your-windows-firewall-with-advanced-security-deployment-goals.md b/windows/security/threat-protection/windows-firewall/identifying-your-windows-firewall-with-advanced-security-deployment-goals.md
index 5e3a16c452..96725d8ff3 100644
--- a/windows/security/threat-protection/windows-firewall/identifying-your-windows-firewall-with-advanced-security-deployment-goals.md
+++ b/windows/security/threat-protection/windows-firewall/identifying-your-windows-firewall-with-advanced-security-deployment-goals.md
@@ -1,6 +1,6 @@
 ---
-title: Identify Goals for your WFAS Deployment (Windows 10)
-description: Identifying Your Windows Defender Firewall with Advanced Security (WFAS) Deployment Goals
+title: Identify implementation goals for Windows Defender Firewall with Advanced Security Deployment (Windows 10)
+description: Identifying Your Windows Defender Firewall with Advanced Security (WFAS) implementation goals
 ms.assetid: 598cf45e-2e1c-4947-970f-361dfa264bba
 ms.reviewer: 
 ms.author: dansimp
@@ -17,22 +17,21 @@ ms.topic: conceptual
 ms.date: 08/17/2017
 ---
 
-# Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals
-
+# Identifying Windows Defender Firewall with Advanced Security implementation goals 
 **Applies to**
 -   Windows 10
 -   Windows Server 2016
 
-Correctly identifying your Windows Defender Firewall with Advanced Security deployment goals is essential for the success of your Windows Defender Firewall design project. Form a project team that can clearly articulate deployment issues in a vision statement. When you write your vision statement, identify, clarify, and refine your deployment goals. Prioritize and, if possible, combine your deployment goals so that you can design and deploy Windows Defender Firewall by using an iterative approach. You can take advantage of the predefined Windows Defender Firewall deployment goals presented in this guide that are relevant to your scenarios.
+Correctly identifying your Windows Defender Firewall with Advanced Security implementation goals is essential for the success of your Windows Defender Firewall design project. Form a project team that can clearly articulate deployment issues in a vision statement. When you write your vision statement, identify, clarify, and refine your implementation goals. Prioritize and, if possible, combine your implementation goals so that you can design and deploy Windows Defender Firewall by using an iterative approach. You can take advantage of the predefined Windows Defender Firewall implementation goals presented in this guide that are relevant to your scenarios.
 
-The following table lists the three main tasks for articulating, refining, and subsequently documenting your Windows Defender Firewall deployment goals:
+The following table lists the three main tasks for articulating, refining, and subsequently documenting your Windows Defender Firewall implementation goals:
 
 
 |                                                                                            Deployment goal tasks                                                                                             |                                                                                                                                                                                                                                                                  Reference links                                                                                                                                                                                                                                                                   |
 |--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| Evaluate predefined Windows Defender Firewall with Advanced Security deployment goals that are provided in this section of the guide, and combine one or more goals to reach your organizational objectives. | Predefined deployment goals:  <p><ul><li>[Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md)</li><p><li>[Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md)</li> <p><li>[Require Encryption When Accessing Sensitive Network Resources](require-encryption-when-accessing-sensitive-network-resources.md)</li> <p><li>[Restrict Access to Sensitive Resources to Only Specified Users or Devices](restrict-access-to-only-specified-users-or-devices.md)</li></ul> |
-|                                   Map one goal or a combination of the predefined deployment goals to an existing Windows Defender Firewall with Advanced Security design.                                   |                                                                                                                                                                        <ul><li>[Mapping Your Deployment Goals to a Windows Defender Firewall with Advanced Security Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)</li></ul>                                                                                                                                                                        |
-|                 Based on the status of your current infrastructure, document your deployment goals for your Windows Defender Firewall with Advanced Security design into a deployment plan.                  |                                                                                                                              <ul><li>[Designing A Windows Defender Firewall Strategy](designing-a-windows-firewall-with-advanced-security-strategy.md)</li> <p><li>[Planning Your Windows Defender Firewall Design with Advanced Security](planning-your-windows-firewall-with-advanced-security-design.md)</li></ul>                                                                                                                              |
+| Evaluate predefined Windows Defender Firewall with Advanced Security implementation goals that are provided in this section of the guide, and combine one or more goals to reach your organizational objectives. | Predefined implementation goals:  <p><ul><li>[Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md)</li><p><li>[Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md)</li> <p><li>[Require Encryption When Accessing Sensitive Network Resources](require-encryption-when-accessing-sensitive-network-resources.md)</li> <p><li>[Restrict Access to Sensitive Resources to Only Specified Users or Devices](restrict-access-to-only-specified-users-or-devices.md)</li></ul> |
+|                                   Map one goal or a combination of the predefined implementation goals to an existing Windows Defender Firewall with Advanced Security design.                                   |                                                                                                                                                                        <ul><li>[Mapping Your implementation goals to a Windows Defender Firewall with Advanced Security Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)</li></ul>                                                                                                                                                                        |
+|                 Based on the status of your current infrastructure, document your implementation goals for your Windows Defender Firewall with Advanced Security design into a deployment plan.                  |                                                                                                                              <ul><li>[Designing A Windows Defender Firewall Strategy](designing-a-windows-firewall-with-advanced-security-strategy.md)</li> <p><li>[Planning Your Windows Defender Firewall Design with Advanced Security](planning-your-windows-firewall-with-advanced-security-design.md)</li></ul>                                                                                                                              |
 
 <br />
 
diff --git a/windows/security/threat-protection/windows-firewall/protect-devices-from-unwanted-network-traffic.md b/windows/security/threat-protection/windows-firewall/protect-devices-from-unwanted-network-traffic.md
index a3ca3c4b6e..76364690ae 100644
--- a/windows/security/threat-protection/windows-firewall/protect-devices-from-unwanted-network-traffic.md
+++ b/windows/security/threat-protection/windows-firewall/protect-devices-from-unwanted-network-traffic.md
@@ -1,5 +1,5 @@
 ---
-title: Protect Devices from Unwanted Network Traffic (Windows 10)
+title: Protect devices from unwanted network traffic (Windows 10)
 description: Protect Devices from Unwanted Network Traffic
 ms.assetid: 307d2b38-e8c4-4358-ae16-f2143af965dc
 ms.reviewer: 
@@ -17,7 +17,7 @@ ms.topic: conceptual
 ms.date: 04/19/2017
 ---
 
-# Protect Devices from Unwanted Network Traffic
+# Protect devices from unwanted network traffic 
 
 **Applies to**
 -   Windows 10
diff --git a/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md b/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md
index cbdd8e51d9..56b9898e53 100644
--- a/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md
+++ b/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md
@@ -1,6 +1,6 @@
 ---
-title: Restrict Access to Only Trusted Devices (Windows 10)
-description: Restrict Access to Only Trusted Devices
+title: Restrict access to only trusted devices (Windows 10)
+description: estrict access to only trusted devices
 ms.assetid: bc1f49a4-7d54-4857-8af9-b7c79f47273b
 ms.reviewer: 
 ms.author: dansimp
@@ -17,7 +17,7 @@ ms.topic: conceptual
 ms.date: 08/17/2017
 ---
 
-# Restrict Access to Only Trusted Devices
+# Restrict access to only trusted devices
 
 **Applies to**
 -   Windows 10
diff --git a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md
index 70c8912478..0cda980c2c 100644
--- a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md
+++ b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md
@@ -1,6 +1,6 @@
 ---
-title: Windows Defender Firewall with Advanced Security Design Guide (Windows 10)
-description: Windows Defender Firewall with Advanced Security Design Guide
+title: Windows Defender Firewall with Advanced Security design guide (Windows 10)
+description: Windows Defender Firewall with Advanced Security design guide
 ms.assetid: 5c631389-f232-4b95-9e48-ec02b8677d51
 ms.reviewer: 
 ms.author: dansimp
@@ -17,8 +17,7 @@ ms.topic: conceptual
 ms.date: 10/05/2017
 ---
 
-# Windows Defender Firewall with Advanced Security
-Design Guide
+# Windows Defender Firewall with Advanced Security design guide
 
 **Applies to**
 -   Windows 10

From d3f75c7897da0ed2e7e2892dc073c42e5fb71e2c Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 14 Aug 2020 13:46:54 -0700
Subject: [PATCH 20/38] more clean up

---
 .../threat-protection/windows-firewall/TOC.md | 22 +++++++++----------
 ...rtificate-based-isolation-policy-design.md |  6 ++---
 ...rtificate-based-isolation-policy-design.md |  2 +-
 ...enting-a-domain-isolation-policy-design.md |  2 +-
 ...andalone-server-isolation-policy-design.md |  2 +-
 .../domain-isolation-policy-design.md         |  2 +-
 ...-firewall-with-advanced-security-design.md | 10 ++++-----
 .../server-isolation-policy-design.md         |  2 +-
 ...l-with-advanced-security-design-process.md |  7 +++---
 ...all-with-advanced-security-design-guide.md |  7 +++---
 10 files changed, 30 insertions(+), 32 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/TOC.md b/windows/security/threat-protection/windows-firewall/TOC.md
index e8109bbb5d..e5edff503e 100644
--- a/windows/security/threat-protection/windows-firewall/TOC.md
+++ b/windows/security/threat-protection/windows-firewall/TOC.md
@@ -8,28 +8,28 @@
 
 ### [Implementation goals]()
 #### [Identify implementation goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)
-#### [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md)
-#### [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md)
-#### [Require Encryption](require-encryption-when-accessing-sensitive-network-resources.md)
-#### [Restrict Access](restrict-access-to-only-specified-users-or-devices.md)
+#### [Protect devices from unwanted network traffic](protect-devices-from-unwanted-network-traffic.md)
+#### [Restrict access to only trusted devices](restrict-access-to-only-trusted-devices.md)
+#### [Require encryption](require-encryption-when-accessing-sensitive-network-resources.md)
+#### [Restrict access](restrict-access-to-only-specified-users-or-devices.md)
 
 ### [Implementation designs]()
 #### [Mapping goals to a design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)
 
-#### [Basic design](basic-firewall-policy-design.md)
-##### [Basic Design Example](firewall-policy-design-example.md)
+#### [Basic firewall design](basic-firewall-policy-design.md)
+##### [Basic firewall design example](firewall-policy-design-example.md)
 
 
 #### [Domain isolation design](domain-isolation-policy-design.md)
-##### [Domain Isolation Design Example](domain-isolation-policy-design-example.md)
+##### [Domain isolation design example](domain-isolation-policy-design-example.md)
 
 
 #### [Server isolation design](server-isolation-policy-design.md)
-##### [Server Isolation Design Example](server-isolation-policy-design-example.md)
+##### [Server Isolation design example](server-isolation-policy-design-example.md)
 
 
 #### [Certificate-based isolation design](certificate-based-isolation-policy-design.md)
-##### [Certificate-based Isolation Design Example](certificate-based-isolation-policy-design-example.md)
+##### [Certificate-based Isolation design example](certificate-based-isolation-policy-design-example.md)
 
 ### [Design planning]()
 #### [Planning your design](planning-your-windows-firewall-with-advanced-security-design.md)
@@ -145,8 +145,8 @@
 ## [References]()
 ### [Checklist: Creating Group Policy objects](checklist-creating-group-policy-objects.md)
 ### [Checklist: Creating inbound firewall rules](checklist-creating-inbound-firewall-rules.md)
-### [Checklist: Creating Outbound Firewall Rules](checklist-creating-outbound-firewall-rules.md)
-### [Checklist: Configuring Basic Firewall Settings](checklist-configuring-basic-firewall-settings.md)
+### [Checklist: Creating outbound firewall rules](checklist-creating-outbound-firewall-rules.md)
+### [Checklist: Configuring basic firewall settings](checklist-configuring-basic-firewall-settings.md)
 
 
 ### [Checklist: Configuring rules for the isolated domain](checklist-configuring-rules-for-the-isolated-domain.md)
diff --git a/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design.md
index 71775ab476..38ec0654bb 100644
--- a/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/certificate-based-isolation-policy-design.md
@@ -17,7 +17,7 @@ ms.topic: conceptual
 ms.date: 08/17/2017
 ---
 
-# Certificate-based Isolation Policy Design
+# Certificate-based isolation policy design
 
 **Applies to**
 -   Windows 10
@@ -35,7 +35,7 @@ For Windows devices that are part of an Active Directory domain, you can use Gro
 
 For more info about this design:
 
--   This design coincides with the deployment goals to [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md), [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md), and optionally [Require Encryption When Accessing Sensitive Network Resources](require-encryption-when-accessing-sensitive-network-resources.md).
+-   This design coincides with the implementation goals to [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md), [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md), and optionally [Require Encryption When Accessing Sensitive Network Resources](require-encryption-when-accessing-sensitive-network-resources.md).
 
 -   To learn more about this design, see [Certificate-based Isolation Policy Design Example](certificate-based-isolation-policy-design-example.md).
 
@@ -45,4 +45,4 @@ For more info about this design:
 
 -   For a list of tasks that you can use to deploy your certificate-based policy design, see [Checklist: Implementing a Certificate-based Isolation Policy Design](checklist-implementing-a-certificate-based-isolation-policy-design.md).
 
-**Next:** [Evaluating Windows Defender Firewall with Advanced Security Design Examples](evaluating-windows-firewall-with-advanced-security-design-examples.md)
+
diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
index 4d6b02ef58..573b76aa96 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
@@ -31,7 +31,7 @@ This parent checklist includes cross-reference links to important concepts about
 
 | Task | Reference |
 | - | - |
-| Review important concepts and examples for certificate-based authentication to determine if this design meets your deployment goals and the needs of your organization.| [Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)<br/>[Certificate-based Isolation Policy Design](certificate-based-isolation-policy-design.md)<br/>[Certificate-based Isolation Policy Design Example](certificate-based-isolation-policy-design-example.md)<br/>[Planning Certificate-based Authentication](planning-certificate-based-authentication.md) |
+| Review important concepts and examples for certificate-based authentication to determine if this design meets your implementation goals and the needs of your organization.| [Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)<br/>[Certificate-based Isolation Policy Design](certificate-based-isolation-policy-design.md)<br/>[Certificate-based Isolation Policy Design Example](certificate-based-isolation-policy-design-example.md)<br/>[Planning Certificate-based Authentication](planning-certificate-based-authentication.md) |
 | Install the Active Directory Certificate Services (AD CS) role as an enterprise root issuing certification authority (CA). This step is required only if you have not already deployed a CA on your network.| |
 | Configure the certificate template for workstation authentication certificates.| [Configure the Workstation Authentication Certificate Template](configure-the-workstation-authentication-certificate-template.md)| 
 | Configure Group Policy to automatically deploy certificates based on your template to workstation devices. | [Configure Group Policy to Autoenroll and Deploy Certificates](configure-group-policy-to-autoenroll-and-deploy-certificates.md)| 
diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md
index 139618cb53..d946ecab9e 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md
@@ -33,7 +33,7 @@ The procedures in this section use the Group Policy MMC snap-ins to configure th
 
 | Task | Reference |
 | - | - |
-| Review important concepts and examples for the domain isolation policy design, determine your Windows Defender Firewall with Advanced Security deployment goals, and customize this design to meet the needs of your organization.| [Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)<br/>[Domain Isolation Policy Design](domain-isolation-policy-design.md)<br/>[Domain Isolation Policy Design Example](domain-isolation-policy-design-example.md)<br/>[Planning Domain Isolation Zones](planning-domain-isolation-zones.md) |
+| Review important concepts and examples for the domain isolation policy design, determine your Windows Defender Firewall with Advanced Security implementation goals, and customize this design to meet the needs of your organization.| [Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)<br/>[Domain Isolation Policy Design](domain-isolation-policy-design.md)<br/>[Domain Isolation Policy Design Example](domain-isolation-policy-design-example.md)<br/>[Planning Domain Isolation Zones](planning-domain-isolation-zones.md) |
 | Create the GPOs and connection security rules for the isolated domain.| [Checklist: Configuring Rules for the Isolated Domain](checklist-configuring-rules-for-the-isolated-domain.md)| 
 | Create the GPOs and connection security rules for the boundary zone.| [Checklist: Configuring Rules for the Boundary Zone](checklist-configuring-rules-for-the-boundary-zone.md)| 
 | Create the GPOs and connection security rules for the encryption zone.| [Checklist: Configuring Rules for the Encryption Zone](checklist-configuring-rules-for-the-encryption-zone.md)| 
diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md
index 05aad0007e..2ed1fd1e5e 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md
@@ -33,7 +33,7 @@ This parent checklist includes cross-reference links to important concepts about
 
 | Task | Reference |
 | - | - |
-| Review important concepts and examples for the server isolation policy design to determine if this design meets your deployment goals and the needs of your organization.| [Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)<br/>[Server Isolation Policy Design](server-isolation-policy-design.md)<br/>[Server Isolation Policy Design Example](server-isolation-policy-design-example.md)<br/>[Planning Server Isolation Zones](planning-server-isolation-zones.md) |
+| Review important concepts and examples for the server isolation policy design to determine if this design meets your implementation goals and the needs of your organization.| [Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)<br/>[Server Isolation Policy Design](server-isolation-policy-design.md)<br/>[Server Isolation Policy Design Example](server-isolation-policy-design-example.md)<br/>[Planning Server Isolation Zones](planning-server-isolation-zones.md) |
 | Create the GPOs and connection security rules for isolated servers.| [Checklist: Configuring Rules for Servers in a Standalone Isolated Server Zone](checklist-configuring-rules-for-servers-in-a-standalone-isolated-server-zone.md)| 
 | Create the GPOs and connection security rules for the client devices that must connect to the isolated servers. | [Checklist: Creating Rules for Clients of a Standalone Isolated Server Zone](checklist-creating-rules-for-clients-of-a-standalone-isolated-server-zone.md)| 
 | Verify that the connection security rules are protecting network traffic on your test devices. | [Verify That Network Traffic Is Authenticated](verify-that-network-traffic-is-authenticated.md)| 
diff --git a/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md
index 948932fb53..b618fe6d2d 100644
--- a/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md
@@ -59,7 +59,7 @@ In order to expand the isolated domain to include Devices that cannot be part of
 
 For more info about this design:
 
--   This design coincides with the deployment goals to [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md), [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md), and optionally [Require Encryption When Accessing Sensitive Network Resources](require-encryption-when-accessing-sensitive-network-resources.md).
+-   This design coincides with the implementation goals to [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md), [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md), and optionally [Require Encryption When Accessing Sensitive Network Resources](require-encryption-when-accessing-sensitive-network-resources.md).
 
 -   To learn more about this design, see the [Domain Isolation Policy Design Example](domain-isolation-policy-design-example.md).
 
diff --git a/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md b/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md
index 9c73c224b9..6f6cd2d1a1 100644
--- a/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md
+++ b/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md
@@ -1,6 +1,6 @@
 ---
-title: Mapping Your Deployment Goals to a Windows Firewall with Advanced Security Design (Windows 10)
-description: Mapping Your Deployment Goals to a Windows Firewall with Advanced Security Design
+title: Mapping your implementation goals to a Windows Firewall with Advanced Security design (Windows 10)
+description:  Mapping your implementation goals to a Windows Firewall with Advanced Security design
 ms.assetid: 7e68c59e-ba40-49c4-8e47-5de5d6b5eb22
 ms.reviewer: 
 ms.author: dansimp
@@ -17,17 +17,17 @@ ms.topic: conceptual
 ms.date: 04/19/2017
 ---
 
-# Mapping Your Deployment Goals to a Windows Firewall with Advanced Security Design
+#  Mapping your implementation goals to a Windows Firewall with Advanced Security design
 
 **Applies to**
 -   Windows 10
 -   Windows Server 2016
 
-After you finish reviewing the existing Windows Firewall with Advanced Security deployment goals and you determine which goals are important to your specific deployment, you can map those goals to a specific Windows Firewall with Advanced Security design.
+After you finish reviewing the existing Windows Firewall with Advanced Security implementation goals and you determine which goals are important to your specific deployment, you can map those goals to a specific Windows Firewall with Advanced Security design.
 
 >**Important:**  The first three designs presented in this guide build on each other to progress from simpler to more complex. Therefore during deployment, consider implementing them in the order presented. Each deployed design also provides a stable position from which to evaluate your progress, and to make sure that your goals are being met before you continue to the next design.
 
-Use the following table to determine which Windows Firewall with Advanced Security design maps to the appropriate combination of Windows Firewall with Advanced Security deployment goals for your organization. This table refers only to the Windows Firewall with Advanced Security designs as described in this guide. However, you can create a hybrid or custom Windows Firewall with Advanced Security design by using any combination of the Windows Firewall with Advanced Security deployment goals to meet the needs of your organization.
+Use the following table to determine which Windows Firewall with Advanced Security design maps to the appropriate combination of Windows Firewall with Advanced Security implementation goals for your organization. This table refers only to the Windows Firewall with Advanced Security designs as described in this guide. However, you can create a hybrid or custom Windows Firewall with Advanced Security design by using any combination of the Windows Firewall with Advanced Security implementation goals to meet the needs of your organization.
 
 | Deployment Goals | Basic Firewall Policy Design | Domain Isolation Policy Design | Server Isolation Policy Design | Certificate-based Isolation Policy Design |
 | - |- | - | - | - |
diff --git a/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md
index 1eeea3dc76..23a6808219 100644
--- a/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md
@@ -49,7 +49,7 @@ This design can be applied to devices that are part of an Active Directory fores
 
 For more info about this design:
 
--   This design coincides with the deployment goals to [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md), [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md), [Restrict Access to Only Specified Users or Devices](restrict-access-to-only-specified-users-or-devices.md), and [Require Encryption When Accessing Sensitive Network Resources](require-encryption-when-accessing-sensitive-network-resources.md).
+-   This design coincides with the implementation goals to [Protect Devices from Unwanted Network Traffic](protect-devices-from-unwanted-network-traffic.md), [Restrict Access to Only Trusted Devices](restrict-access-to-only-trusted-devices.md), [Restrict Access to Only Specified Users or Devices](restrict-access-to-only-specified-users-or-devices.md), and [Require Encryption When Accessing Sensitive Network Resources](require-encryption-when-accessing-sensitive-network-resources.md).
 
 -   To learn more about this design, see [Server Isolation Policy Design Example](server-isolation-policy-design-example.md).
 
diff --git a/windows/security/threat-protection/windows-firewall/understanding-the-windows-firewall-with-advanced-security-design-process.md b/windows/security/threat-protection/windows-firewall/understanding-the-windows-firewall-with-advanced-security-design-process.md
index 26796b6814..0449d6b01f 100644
--- a/windows/security/threat-protection/windows-firewall/understanding-the-windows-firewall-with-advanced-security-design-process.md
+++ b/windows/security/threat-protection/windows-firewall/understanding-the-windows-firewall-with-advanced-security-design-process.md
@@ -20,13 +20,12 @@ ms.author: dansimp
 
 Designing any deployment starts by performing several important tasks:
 
--   [Identifying Your Windows Defender Firewall with Advanced Security Design Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)
+-   [Identifying your windows defender firewall with advanced security design goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md)
 
--   [Mapping Your Deployment Goals to a Windows Defender Firewall with Advanced Security Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)
+-   [Mapping your implementation goals to a Windows Defender Firewall with Advanced Security design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md)
 
--   [Evaluating Windows Defender Firewall with Advanced Security Design Examples](evaluating-windows-firewall-with-advanced-security-design-examples.md)
 
-After you identify your deployment goals and map them to a Windows Defender Firewall with Advanced Security design, you can begin documenting the design based on the processes that are described in the following topics:
+After you identify your implementation goals and map them to a Windows Defender Firewall with Advanced Security design, you can begin documenting the design based on the processes that are described in the following topics:
 
 -   [Designing A Windows Defender Firewall with Advanced Security Strategy](designing-a-windows-firewall-with-advanced-security-strategy.md)
 
diff --git a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md
index 0cda980c2c..58bc8e79a9 100644
--- a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md
+++ b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-design-guide.md
@@ -39,7 +39,7 @@ Windows Defender Firewall should be part of a comprehensive security solution th
 
 To successfully use this guide, you need a good understanding of both the capabilities provided by Windows Defender Firewall, and how to deliver configuration settings to your managed devices by using Group Policy in Active Directory.
 
-You can use the deployment goals to form one of these Windows Defender Firewall with Advanced Security designs, or a custom design that combines elements from those presented here:
+You can use the implementation goals to form one of these Windows Defender Firewall with Advanced Security designs, or a custom design that combines elements from those presented here:
 
 -   **Basic firewall policy design**. Restricts network traffic in and out of your devices to only that which is needed and authorized.
 
@@ -67,9 +67,8 @@ Deployment Guide at these locations:
 | Topic | Description
 | - | - |
 | [Understanding the Windows Defender Firewall with Advanced Security Design Process](understanding-the-windows-firewall-with-advanced-security-design-process.md) | Learn how to get started with the Windows Defender Firewall with Advanced Security design process. |
-| [Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md) | Learn how to identify your Windows Defender Firewall with Advanced Security deployment goals. |
-| [Mapping Your Deployment Goals to a Windows Defender Firewall with Advanced Security Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md) | After you finish reviewing the existing Windows Defender Firewall with Advanced Security deployment goals and you determine which goals are important to your specific deployment, you can map those goals to a specific Windows Defender Firewall with Advanced Security design. |
-| [Evaluating Windows Defender Firewall with Advanced Security Design Examples](evaluating-windows-firewall-with-advanced-security-design-examples.md) | Learn how to use Windows Defender Firewall to improve the security of the computers connected to the network. |
+| [Identifying Your Windows Defender Firewall with Advanced Security Deployment Goals](identifying-your-windows-firewall-with-advanced-security-deployment-goals.md) | Learn how to identify your Windows Defender Firewall with Advanced Security implementation goals. |
+| [Mapping Your Deployment Goals to a Windows Defender Firewall with Advanced Security Design](mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md) | After you finish reviewing the existing Windows Defender Firewall with Advanced Security implementation goals and you determine which goals are important to your specific deployment, you can map those goals to a specific Windows Defender Firewall with Advanced Security design. |
 | [Designing a Windows Defender Firewall with Advanced Security Strategy](designing-a-windows-firewall-with-advanced-security-strategy.md) | To select the most effective design for helping to protect the network, you must spend time collecting key information about your current computer environment. |
 | [Planning Your Windows Defender Firewall with Advanced Security Design](planning-your-windows-firewall-with-advanced-security-design.md) | After you have gathered the relevant information in the previous sections, and understand the basics of the designs as described earlier in this guide, you can select the design (or combination of designs) that meet your needs. |
 | [Appendix A: Sample GPO Template Files for Settings Used in this Guide](appendix-a-sample-gpo-template-files-for-settings-used-in-this-guide.md) | You can import an XML file containing customized registry preferences into a Group Policy Object (GPO) by using the Preferences feature of the Group Policy Management Console (GPMC). |

From 09de6decc31bafdf1e54960adfd6128db1a5ba3b Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Mon, 17 Aug 2020 16:36:28 -0700
Subject: [PATCH 21/38] ADMX policy CSP-ciphersuiteorder

---
 .../mdm/policy-csp-admx-addremoveprograms.md  |  954 +++++++++
 .../mdm/policy-csp-admx-appcompat.md          |  744 +++++++
 .../mdm/policy-csp-admx-auditsettings.md      |  119 ++
 .../mdm/policy-csp-admx-ciphersuiteorder.md   |  203 ++
 .../mdm/policy-csp-admx-dnsclient.md          | 1725 +++++++++++++++++
 .../mdm/policy-csp-admx-eventforwarding.md    |  200 ++
 6 files changed, 3945 insertions(+)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-addremoveprograms.md
 create mode 100644 windows/client-management/mdm/policy-csp-admx-appcompat.md
 create mode 100644 windows/client-management/mdm/policy-csp-admx-auditsettings.md
 create mode 100644 windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
 create mode 100644 windows/client-management/mdm/policy-csp-admx-dnsclient.md
 create mode 100644 windows/client-management/mdm/policy-csp-admx-eventforwarding.md

diff --git a/windows/client-management/mdm/policy-csp-admx-addremoveprograms.md b/windows/client-management/mdm/policy-csp-admx-addremoveprograms.md
new file mode 100644
index 0000000000..37cf49d46f
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-addremoveprograms.md
@@ -0,0 +1,954 @@
+---
+title: Policy CSP - ADMX_AddRemovePrograms
+description: Policy CSP - ADMX_AddRemovePrograms 
+ms.author: dansimp
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.localizationpriority: medium
+ms.date: 08/13/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_AddRemovePrograms
+
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## Policy CSP - ADMX_AddRemovePrograms  
+
+<dl>
+  <dd>
+    <a href="#admx-addremoveprograms-defaultcategory">ADMX_AddRemovePrograms/DefaultCategory</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-noaddfromcdorfloppy">ADMX_AddRemovePrograms/NoAddFromCDorFloppy</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-noaddfrominternet">ADMX_AddRemovePrograms/NoAddFromInternet</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-noaddfromnetwork">ADMX_AddRemovePrograms/NoAddFromNetwork</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-noaddpage">ADMX_AddRemovePrograms/NoAddPage</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-noaddremoveprograms">ADMX_AddRemovePrograms/NoAddRemovePrograms</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-nochooseprogramspage">ADMX_AddRemovePrograms/NoChooseProgramsPage</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-noremovepage">ADMX_AddRemovePrograms/NoRemovePage</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-noservices">ADMX_AddRemovePrograms/NoServices</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-nosupportinfo">ADMX_AddRemovePrograms/NoSupportInfo</a>
+  </dd>
+  <dd>
+    <a href="#admx-addremoveprograms-nowindowssetuppage">ADMX_AddRemovePrograms/NoWindowsSetupPage</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-defaultcategory"></a>**ADMX_AddRemovePrograms/DefaultCategory**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. The policy setting specifies the category of programs that appears when users open the "Add New Programs" page. If you enable this setting, only the programs in the category you specify are displayed when the "Add New Programs" page opens. You can use the Category box on the "Add New Programs" page to display programs in other categories. 
+
+To use this setting, type the name of a category in the Category box for this setting. You must enter a category that is already defined in Add or Remove Programs. To define a category, use Software Installation.
+
+If you disable this setting or do not configure it, all programs (Category: All) are displayed when the "Add New Programs" page opens. You can use this setting to direct users to the programs they are most likely to need. 
+
+> [!NOTE]
+> This setting is ignored if either the "Remove Add or Remove Programs" setting or the "Hide Add New Programs page" setting is enabled.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Specify default category for Add New Programs*
+- GP name: *DefaultCategory*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-noaddfromcdorfloppy"></a>**ADMX_AddRemovePrograms/NoAddFromCDorFloppy**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting removes the "Add a program from CD-ROM or floppy disk" section from the Add New Programs page. This prevents users from using Add or Remove Programs to install programs from removable media.
+
+If you disable this setting or do not configure it, the "Add a program from CD-ROM or floppy disk" option is available to all users. This setting does not prevent users from using other tools and methods to add or remove program components.
+
+> [!NOTE]
+> If the "Hide Add New Programs page" setting is enabled, this setting is ignored. Also, if the "Prevent removable media source for any install" setting (located in User Configuration\Administrative Templates\Windows Components\Windows Installer) is enabled, users cannot add programs from removable media, regardless of this setting.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Hide the "Add a program from CD-ROM or floppy disk" option*
+- GP name: *NoAddFromCDorFloppy*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-noaddfrominternet"></a>**ADMX_AddRemovePrograms/NoAddFromInternet**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting removes the "Add programs from Microsoft" section from the Add New Programs page. This setting prevents users from using Add or Remove Programs to connect to Windows Update.
+
+If you disable this setting or do not configure it, "Add programs from Microsoft" is available to all users. This setting does not prevent users from using other tools and methods to connect to Windows Update.
+
+> [!NOTE]
+> If the "Hide Add New Programs page" setting is enabled, this setting is ignored.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Hide the "Add programs from Microsoft" option*
+- GP name: *NoAddFromInternet*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-noaddfromnetwork"></a>**ADMX_AddRemovePrograms/NoAddFromNetwork**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from viewing or installing published programs. This setting removes the "Add programs from your network" section from the Add New Programs page. The "Add programs from your network" section lists published programs and provides an easy way to install them. Published programs are those programs that the system administrator has explicitly made available to the user with a tool such as Windows Installer. Typically, system administrators publish programs to notify users that the programs are available, to recommend their use, or to enable users to install them without having to search for installation files. 
+
+If you enable this setting, users cannot tell which programs have been published by the system administrator, and they cannot use Add or Remove Programs to install published programs. However, they can still install programs by using other methods, and they can view and install assigned (partially installed) programs that are offered on the desktop or on the Start menu. 
+
+If you disable this setting or do not configure it, "Add programs from your network" is available to all users.
+
+> [!NOTE]
+> If the "Hide Add New Programs page" setting is enabled, this setting is ignored.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Hide the "Add programs from your network" option*
+- GP name: *NoAddFromNetwork*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-noaddpage"></a>**ADMX_AddRemovePrograms/NoAddPage**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting removes the Add New Programs button from the Add or Remove Programs bar. As a result, users cannot view or change the attached page. The Add New Programs button lets users install programs published or assigned by a system administrator.
+
+If you disable this setting or do not configure it, the Add New Programs button is available to all users. This setting does not prevent users from using other tools and methods to install programs.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Hide Add New Programs page*
+- GP name: *NoAddPage*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-noaddremoveprograms"></a>**ADMX_AddRemovePrograms/NoAddRemovePrograms**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from using Add or Remove Programs. This setting removes Add or Remove Programs from Control Panel and removes the Add or Remove Programs item from menus. Add or Remove Programs lets users install, uninstall, repair, add, and remove features and components of Windows 2000 Professional and a wide variety of Windows programs. Programs published or assigned to the user appear in Add or Remove Programs. 
+
+If you disable this setting or do not configure it, Add or Remove Programs is available to all users. When enabled, this setting takes precedence over the other settings in this folder. This setting does not prevent users from using other tools and methods to install or uninstall programs.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Remove Add or Remove Programs*
+- GP name: *NoAddRemovePrograms*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-nochooseprogramspage"></a>**ADMX_AddRemovePrograms/NoChooseProgramsPage**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting removes the Set Program Access and Defaults button from the Add or Remove Programs bar. As a result, users cannot view or change the associated page. The Set Program Access and Defaults button lets administrators specify default programs for certain activities, such as Web browsing or sending e-mail, as well as which programs are accessible from the Start menu, desktop, and other locations. 
+
+If you disable this setting or do not configure it, the Set Program Access and Defaults button is available to all users. This setting does not prevent users from using other tools and methods to change program access or defaults. This setting does not prevent the Set Program Access and Defaults icon from appearing on the Start menu. See the "Remove Set Program Access and Defaults from Start menu" setting.
+
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Hide the Set Program Access and Defaults page*
+- GP name: *NoChooseProgramsPage*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-noremovepage"></a>**ADMX_AddRemovePrograms/NoRemovePage**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting removes the Change or Remove Programs button from the Add or Remove Programs bar. As a result, users cannot view or change the attached page. The Change or Remove Programs button lets users uninstall, repair, add, or remove features of installed programs.
+
+If you disable this setting or do not configure it, the Change or Remove Programs page is available to all users. This setting does not prevent users from using other tools and methods to delete or uninstall programs.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Hide Change or Remove Programs page*
+- GP name: *NoRemovePage*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-noservices"></a>**ADMX_AddRemovePrograms/NoServices**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from using Add or Remove Programs to configure installed services. This setting removes the "Set up services" section of the Add/Remove Windows Components page. The "Set up services" section lists system services that have not been configured and offers users easy access to the configuration tools.
+
+If you disable this setting or do not configure it, "Set up services" appears only when there are unconfigured system services. If you enable this setting, "Set up services" never appears. This setting does not prevent users from using other methods to configure services.
+
+> [!NOTE]
+> When "Set up services" does not appear, clicking the Add/Remove Windows Components button starts the Windows Component Wizard immediately. Because the only remaining option on the Add/Remove Windows Components page starts the wizard, that option is selected automatically, and the page is bypassed. To remove "Set up services" and prevent the Windows Component Wizard from starting, enable the "Hide Add/Remove Windows Components page" setting. If the "Hide Add/Remove Windows Components page" setting is enabled, this setting is ignored.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Go directly to Components Wizard*
+- GP name: *NoServices*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-nosupportinfo"></a>**ADMX_AddRemovePrograms/NoSupportInfo**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting removes links to the Support Info dialog box from programs on the Change or Remove Programs page. Programs listed on the Change or Remove Programs page can include a "Click here for support information" hyperlink. When clicked, the hyperlink opens a dialog box that displays troubleshooting information, including a link to the installation files and data that users need to obtain product support, such as the Product ID and version number of the program. The dialog box also includes a hyperlink to support information on the Internet, such as the Microsoft Product Support Services Web page.
+
+If you disable this setting or do not configure it, the Support Info hyperlink appears.
+
+> [!NOTE]
+> Not all programs provide a support information hyperlink.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Remove Support Information*
+- GP name: *NoSupportInfo*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-addremoveprograms-nowindowssetuppage"></a>**ADMX_AddRemovePrograms/NoWindowsSetupPage**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+
+Available in Windows 10 Insider Preview Build 20185. This policy setting removes the Add/Remove Windows Components button from the Add or Remove Programs bar. As a result, users cannot view or change the associated page. The Add/Remove Windows Components button lets users configure installed services and use the Windows Component Wizard to add, remove, and configure components of Windows from the installation files.
+
+If you disable this setting or do not configure it, the Add/Remove Windows Components button is available to all users. This setting does not prevent users from using other tools and methods to configure services or add or remove program components. However, this setting blocks user access to the Windows Component Wizard.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+- GP English name: *Hide Add/Remove Windows Components page*
+- GP name: *NoWindowsSetupPage*
+- GP path: *Control Panel/Add or Remove Programs*
+- GP ADMX file name: *addremoveprograms.admx*
+
+<!--/ADMXBacked-->
+<!--SupportedValues-->
+
+<!--/SupportedValues-->
+<!--Example-->
+
+<!--/Example-->
+<!--Validation-->
+
+<!--/Validation-->
+<!--/Policy-->
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+
diff --git a/windows/client-management/mdm/policy-csp-admx-appcompat.md b/windows/client-management/mdm/policy-csp-admx-appcompat.md
new file mode 100644
index 0000000000..da013a6e46
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-appcompat.md
@@ -0,0 +1,744 @@
+---
+title: Policy CSP - ADMX_AppCompat
+description: Policy CSP - ADMX_AppCompat
+ms.author: dansimp
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.localizationpriority: medium
+ms.date: 08/10/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_AppCompat
+
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## Policy CSP - ADMX_AppCompat  
+
+<dl>
+  <dd>
+    <a href="#admx_appcompat-appcompatprevent16bitmach">ADMX_AppCompat/AppCompatPrevent16BitMach
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx_appcompat-appcompatremoveprogramcompatproppage">ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx_appcompat-appcompatturnoffapplicationimpacttelemetry">ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx_appcompat-appcompatturnoffswitchback">ADMX_AppCompat/AppCompatTurnOffSwitchBack
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx_appcompat-appcompatturnoffengine">ADMX_AppCompat/AppCompatTurnOffEngine
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx_appcompat-appcompatturnoffprogramcompatibilityassistant_1">ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx_appcompat-appcompatturnoffprogramcompatibilityassistant_2">ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx_appcompat-appcompatturnoffuseractionrecord">ADMX_AppCompat/AppCompatTurnOffUserActionRecord
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx_appcompat-appcompatturnoffprograminventory">ADMX_AppCompat/AppCompatTurnOffProgramInventory
+    </a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_appcompat-appcompatprevent16bitmach"></a>**ADMX_AppCompat/AppCompatPrevent16BitMach**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether to prevent the MS-DOS subsystem (**ntvdm.exe**) from running on this computer. This setting affects the launching of 16-bit applications in the operating system.
+
+You can use this setting to turn off the MS-DOS subsystem, which will reduce resource usage and prevent users from running 16-bit applications. To run any 16-bit application or any application with 16-bit components, **ntvdm.exe** must be allowed to run. The MS-DOS subsystem starts when the first 16-bit application is launched. While the MS-DOS subsystem is running, any subsequent 16-bit applications launch faster, but overall resource usage on the system is increased.
+
+If the status is set to Enabled, the MS-DOS subsystem is prevented from running, which then prevents any 16-bit applications from running. In addition, any 32-bit applications with 16-bit installers or other 16-bit components cannot run.
+
+If the status is set to Disabled, the MS-DOS subsystem runs for all users on this computer.
+
+If the status is set to Not Configured, the OS falls back on a local policy set by the registry DWORD value **HKLM\System\CurrentControlSet\Control\WOW\DisallowedPolicyDefault**. If that value is non-0, this prevents all 16-bit applications from running. If that value is 0, 16-bit applications are allowed to run. If that value is also not present, on Windows 10 and above, the OS will launch the 16-bit application support control panel to allow an elevated administrator to make the decision; on Windows 7 and down-level, the OS will allow 16-bit applications to run.
+
+> [!NOTE]
+> This setting appears only in Computer Configuration.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent access to 16-bit applications*
+-   GP name: *AppCompatPrevent16BitMach*
+-   GP path: *Windows Components/Application Compatibility*
+-   GP ADMX file name: *AppCompat.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_appcompat-appcompatremoveprogramcompatproppage"></a>**ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting controls the visibility of the Program Compatibility property page shell extension. This shell extension is visible on the property context-menu of any program shortcut or executable file.
+
+The compatibility property page displays a list of options that can be selected and applied to the application to resolve the most common issues affecting legacy applications.
+
+Enabling this policy setting removes the property page from the context-menus, but does not affect previous compatibility settings applied to application using this interface.
+
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Remove Program Compatibility Property Page*
+-   GP name: *AppCompatRemoveProgramCompatPropPage*
+-   GP path: *Windows Components/Application Compatibility*
+-   GP ADMX file name: *AppCompat.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_appcompat-appcompatturnoffapplicationimpacttelemetry"></a>**ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. The policy setting controls the state of the Application Telemetry engine in the system.
+
+Application Telemetry is a mechanism that tracks anonymous usage of specific Windows system components by applications.
+
+Turning Application Telemetry off by selecting "enable" will stop the collection of usage data.
+
+If the customer Experience Improvement program is turned off, Application Telemetry will be turned off regardless of how this policy is set.
+
+Disabling telemetry will take effect on any newly launched applications. To ensure that telemetry collection has stopped for all applications, please reboot your machine.
+
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Application Telemetry*
+-   GP name: *AppCompatTurnOffApplicationImpactTelemetry*
+-   GP path: *Windows Components/Application Compatibility*
+-   GP ADMX file name: *AppCompat.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_appcompat-appcompatturnoffswitchback"></a>**ADMX_AppCompat/AppCompatTurnOffSwitchBack**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. The policy setting controls the state of the Switchback compatibility engine in the system.
+
+Switchback is a mechanism that provides generic compatibility mitigations to older applications by providing older behavior to old applications and new behavior to new applications.
+
+Switchback is on by default.
+
+If you enable this policy setting, Switchback will be turned off. Turning Switchback off may degrade the compatibility of older applications. This option is useful for server administrators who require performance and are aware of compatibility of the applications they are using.
+
+If you disable or do not configure this policy setting, the Switchback will be turned on.
+
+Reboot the system after changing the setting to ensure that your system accurately reflects those changes.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off SwitchBack Compatibility Engine*
+-   GP name: *AppCompatTurnOffSwitchBack*
+-   GP path: *Windows Components/Application Compatibility*
+-   GP ADMX file name: *AppCompat.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_appcompat-appcompatturnoffengine"></a>**ADMX_AppCompat/AppCompatTurnOffEngine**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting controls the state of the application compatibility engine in the system.
+
+The engine is part of the loader and looks through a compatibility database every time an application is started on the system. If a match for the application is found it provides either run-time solutions or compatibility fixes, or displays an Application Help message if the application has a know problem.
+
+Turning off the application compatibility engine will boost system performance.  However, this will degrade the compatibility of many popular legacy applications, and will not block known incompatible applications from installing. For example, this may result in a blue screen if an old anti-virus application is installed.
+
+The Windows Resource Protection and User Account Control features of Windows use the application compatibility engine to provide mitigations for application problems. If the engine is turned off, these mitigations will not be applied to applications and their installers and these applications may fail to install or run properly.
+
+This option is useful to server administrators who require faster performance and are aware of the compatibility of the applications they are using.  It is particularly useful for a web server where applications may be launched several hundred times a second, and the performance of the loader is essential.
+
+> [!NOTE]
+> Many system processes cache the value of this setting for performance reasons. If you make changes to this setting, reboot to ensure that your system accurately reflects those changes.
+
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Application Compatibility Engine*
+-   GP name: *AppCompatTurnOffEngine*
+-   GP path: *Windows Components/Application Compatibility*
+-   GP ADMX file name: *AppCompat.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_appcompat-appcompatturnoffprogramcompatibilityassistant_1"></a>**ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting exists only for backward compatibility, and is not valid for this version of Windows. To configure the Program Compatibility Assistant, use the 'Turn off Program Compatibility Assistant' setting under Computer Configuration\Administrative Templates\Windows Components\Application Compatibility.
+
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Program Compatibility Assistant*
+-   GP name: *AppCompatTurnOffProgramCompatibilityAssistant_1*
+-   GP path: *Windows Components/Application Compatibility*
+-   GP ADMX file name: *AppCompat.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_appcompat-appcompatturnoffprogramcompatibilityassistant_2"></a>**ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting controls the state of the Program Compatibility Assistant (PCA). The PCA monitors applications run by the user. When a potential compatibility issue with an application is detected, the PCA will prompt the user with recommended solutions. To configure the diagnostic settings for the PCA, go to System->Troubleshooting and Diagnostics->Application Compatibility Diagnostics.
+
+If you enable this policy setting, the PCA will be turned off. The user will not be presented with solutions to known compatibility issues when running applications. Turning off the PCA can be useful for system administrators who require better performance and are already aware of application compatibility issues.
+
+If you disable or do not configure this policy setting, the PCA will be turned on. To configure the diagnostic settings for the PCA, go to System->Troubleshooting and Diagnostics->Application Compatibility Diagnostics.  
+
+> [!NOTE]
+> The Diagnostic Policy Service (DPS) and Program Compatibility Assistant Service must be running for the PCA to run. These services can be configured by using the Services snap-in to the Microsoft Management Console.
+
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Program Compatibility Assistant*
+-   GP name: *AppCompatTurnOffProgramCompatibilityAssistant_2*
+-   GP path: *Windows Components/Application Compatibility*
+-   GP ADMX file name: *AppCompat.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_appcompat-appcompatturnoffuseractionrecord"></a>**ADMX_AppCompat/AppCompatTurnOffUserActionRecord**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting controls the state of Steps Recorder.
+
+Steps Recorder keeps a record of steps taken by the user. The data generated by Steps Recorder can be used in feedback systems such as Windows Error Reporting to help developers understand and fix problems. The data includes user actions such as keyboard input and mouse input, user interface data, and screen shots.  Steps Recorder includes an option to turn on and off data collection.
+
+If you enable this policy setting, Steps Recorder will be disabled.
+
+If you disable or do not configure this policy setting, Steps Recorder will be enabled.
+
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Steps Recorder*
+-   GP name: *AppCompatTurnOffUserActionRecord*
+-   GP path: *Windows Components/Application Compatibility*
+-   GP ADMX file name: *AppCompat.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_appcompat-appcompatturnoffprograminventory"></a>**ADMX_AppCompat/AppCompatTurnOffProgramInventory**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting controls the state of the Inventory Collector. 
+
+The Inventory Collector inventories applications, files, devices, and drivers on the system and sends the information to Microsoft. This information is used to help diagnose compatibility problems.
+
+If you enable this policy setting, the Inventory Collector will be turned off and data will not be sent to Microsoft. Collection of installation data through the Program Compatibility Assistant is also disabled.
+
+If you disable or do not configure this policy setting, the Inventory Collector will be turned on.
+
+> [!NOTE]
+> This policy setting has no effect if the Customer Experience Improvement Program is turned off. The Inventory Collector will be off.
+
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off Inventory Collector*
+-   GP name: *AppCompatTurnOffProgramInventory*
+-   GP path: *Windows Components/Application Compatibility*
+-   GP ADMX file name: *AppCompat.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+
diff --git a/windows/client-management/mdm/policy-csp-admx-auditsettings.md b/windows/client-management/mdm/policy-csp-admx-auditsettings.md
new file mode 100644
index 0000000000..2f91449316
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-auditsettings.md
@@ -0,0 +1,119 @@
+---
+title: Policy CSP - ADMX_AuditSettings
+description: Policy CSP - ADMX_AuditSettings
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 08/13/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_AuditSettings
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_AuditSettings policies  
+
+<dl>
+  <dd>
+    <a href="#admx-auditsettings-includecmdline">ADMX_AuditSettings/IncludeCmdLine</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-auditsettings-includecmdline"></a>**ADMX_AuditSettings/IncludeCmdLine**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting determines what information is logged in security audit events when a new process has been created. This setting only applies when the Audit Process Creation policy is enabled.
+
+If you enable this policy setting, the command line information for every process will be logged in plain text in the security event log as part of the Audit Process Creation event 4688, "a new process has been created," on the workstations and servers on which this policy setting is applied.
+
+If you disable or do not configure this policy setting, the process's command line information will not be included in Audit Process Creation events.  
+
+Default is Not configured.
+
+> [!NOTE]
+> When this policy setting is enabled, any user with access to read the security events will be able to read the command line arguments for any successfully created process. Command line arguments can contain sensitive or private information, such as passwords or user data.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Include command line in process creation events*
+-   GP name: *IncludeCmdLine*
+-   GP path: *System/Audit Process Creation*
+-   GP ADMX file name: *AuditSettings.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+
diff --git a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
new file mode 100644
index 0000000000..3e28f47950
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
@@ -0,0 +1,203 @@
+---
+title: Policy CSP - ADMX_CipherSuiteOrder
+description: Policy CSP - ADMX_CipherSuiteOrder
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 08/17/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_CipherSuiteOrder
+
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_CipherSuiteOrder policies  
+
+<dl>
+  <dd>
+    <a href="#admx_ciphersuiteorder-sslciphersuiteorder">ADMX_CipherSuiteOrder/SSLCipherSuiteOrder</a>
+  </dd>
+  <dd>
+    <a href="#admx_ciphersuiteorder-sslcurveorder">ADMX_CipherSuiteOrder/SSLCurveOrder</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_ciphersuiteorder-sslciphersuiteorder"></a>**ADMX_CipherSuiteOrder/SSLCipherSuiteOrder**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting determines the cipher suites used by the Secure Socket Layer (SSL).
+
+If you enable this policy setting, SSL cipher suites are prioritized in the order specified.
+
+If you disable or do not configure this policy setting, default cipher suite order is used.
+
+For information about supported cipher Suites, see [Cipher Suites in TLS/SSL (Schannel SSP)](http://go.microsoft.com/fwlink/?LinkId=517265).
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *SSL Cipher Suite Order*
+-   GP name: *Functions*
+-   GP path: *Network/SSL Configuration Settings*
+-   GP ADMX file name: *CipherSuiteOrder.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_ciphersuiteorder-sslcurveorder"></a>**ADMX_CipherSuiteOrder/SSLCurveOrder**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting determines the priority order of ECC curves used with ECDHE cipher suites.
+
+If you enable this policy setting, ECC curves are prioritized in the order specified. Enter one curve name per line.
+
+If you disable or do not configure this policy setting, the default ECC curve order is used.
+
+The default curve order is as follows:
+
+- curve25519
+- NistP256
+- NistP384
+
+To see all the curves supported on the system, enter the following command:
+
+``` cmd
+CertUtil.exe -DisplayEccCurve
+```
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *ECC Curve Order*
+-   GP name: *EccCurves*
+-   GP path: *Network/SSL Configuration Settings*
+-   GP ADMX file name: *CipherSuiteOrder.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+
diff --git a/windows/client-management/mdm/policy-csp-admx-dnsclient.md b/windows/client-management/mdm/policy-csp-admx-dnsclient.md
new file mode 100644
index 0000000000..0c26d32f23
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-dnsclient.md
@@ -0,0 +1,1725 @@
+---
+title: Policy CSP - ADMX_DnsClient
+description: Policy CSP - ADMX_DnsClient
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 08/12/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_DnsClient
+
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_DnsClient policies  
+
+<dl>
+  <dd>
+    <a href="#admx-dnsclient-dns-allowfqdnnetbiosqueries">ADMX_DnsClient/DNS_AllowFQDNNetBiosQueries</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-appendtomultilabelname">ADMX_DnsClient/DNS_AppendToMultiLabelName</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-domain">ADMX_DnsClient/DNS_Domain</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-domainnamedevolutionlevel">ADMX_DnsClient/DNS_DomainNameDevolutionLevel</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-idnencoding">ADMX_DnsClient/DNS_IdnEncoding</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-idnmapping">ADMX_DnsClient/DNS_IdnMapping</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-nameserver">ADMX_DnsClient/DNS_NameServer</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-preferlocalresponsesoverlowerorderdns">ADMX_DnsClient/DNS_PreferLocalResponsesOverLowerOrderDns</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-primarydnssuffix">ADMX_DnsClient/DNS_PrimaryDnsSuffix</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-registeradaptername">ADMX_DnsClient/DNS_RegisterAdapterName</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-registerreverselookup">ADMX_DnsClient/DNS_RegisterReverseLookup</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-registrationenabled">ADMX_DnsClient/DNS_RegistrationEnabled</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-registrationoverwritesinconflict">ADMX_DnsClient/DNS_RegistrationOverwritesInConflict</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-registrationrefreshinterval">ADMX_DnsClient/DNS_RegistrationRefreshInterval</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-registrationttl">ADMX_DnsClient/DNS_RegistrationTtl</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-searchlist">ADMX_DnsClient/DNS_SearchList</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-smartmultihomednameresolution">ADMX_DnsClient/DNS_SmartMultiHomedNameResolution</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-smartprotocolreorder">ADMX_DnsClient/DNS_SmartProtocolReorder</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-updatesecuritylevel">ADMX_DnsClient/DNS_UpdateSecurityLevel</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-updatetopleveldomainzones">ADMX_DnsClient/DNS_UpdateTopLevelDomainZones</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-dns-usedomainnamedevolution">ADMX_DnsClient/DNS_UseDomainNameDevolution</a>
+  </dd>
+  <dd>
+    <a href="#admx-dnsclient-turn-Offmulticast">ADMX_DnsClient/Turn_Off_Multicast</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-allowfqdnnetbiosqueries"></a>**ADMX_DnsClient/DNS_AllowFQDNNetBiosQueries**  
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that NetBIOS over TCP/IP (NetBT) queries are issued for fully qualified domain names.
+
+If you enable this policy setting, NetBT queries will be issued for multi-label and fully qualified domain names, such as "www.example.com" in addition to single-label names.
+
+If you disable this policy setting, or if you do not configure this policy setting, NetBT queries will only be issued for single-label names, such as "example" and not for multi-label and fully qualified domain names.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow NetBT queries for fully qualified domain names*
+-   GP name: *DNS_AllowFQDNNetBiosQueries*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-appendtomultilabelname"></a>**ADMX_DnsClient/DNS_AppendToMultiLabelName**  
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that computers may attach suffixes to an unqualified multi-label name before sending subsequent DNS queries if the original name query fails.
+
+A name containing dots, but not dot-terminated, is called an unqualified multi-label name, for example "server.corp" is an unqualified multi-label name. The name "server.corp.contoso.com." is an example of a fully qualified name because it contains a terminating dot.
+
+For example, if attaching suffixes is allowed, an unqualified multi-label name query for "server.corp" will be queried by the DNS client first. If the query succeeds, the response is returned to the client. If the query fails, the unqualified multi-label name is appended with DNS suffixes. These suffixes can be derived from a combination of the local DNS client's primary domain suffix, a connection-specific domain suffix, and a DNS suffix search list.
+
+If attaching suffixes is allowed, and a DNS client with a primary domain suffix of "contoso.com" performs a query for "server.corp" the DNS client will send a query for "server.corp" first, and then a query for "server.corp.contoso.com." second if the first query fails.
+
+If you enable this policy setting, suffixes are allowed to be appended to an unqualified multi-label name if the original name query fails.
+
+If you disable this policy setting, no suffixes are appended to unqualified multi-label name queries if the original name query fails.
+
+If you do not configure this policy setting, computers will use their local DNS client settings to determine the query behavior for unqualified multi-label names.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow DNS suffix appending to unqualified multi-label name queries*
+-   GP name: *DNS_AppendToMultiLabelName*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-domain"></a>**ADMX_DnsClient/DNS_Domain**  
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies a connection-specific DNS suffix. This policy setting supersedes local connection-specific DNS suffixes, and those configured using DHCP. To use this policy setting, click Enabled, and then enter a string value representing the DNS suffix.
+
+If you enable this policy setting, the DNS suffix that you enter will be applied to all network connections used by computers that receive this policy setting.  
+
+If you disable this policy setting, or if you do not configure this policy setting, computers will use the local or DHCP supplied connection specific DNS suffix, if configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Connection-specific DNS suffix*
+-   GP name: *DNS_Domain*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-domainnamedevolutionlevel"></a>**ADMX_DnsClient/DNS_DomainNameDevolutionLevel**  
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if the devolution level that DNS clients will use if they perform primary DNS suffix devolution during the name resolution process.
+
+With devolution, a DNS client creates queries by appending a single-label, unqualified domain name with the parent suffix of the primary DNS suffix name, and the parent of that suffix, and so on, stopping if the name is successfully resolved or at a level determined by devolution settings. Devolution can be used when a user or application submits a query for a single-label domain name.
+
+The DNS client appends DNS suffixes to the single-label, unqualified domain name based on the state of the Append primary and connection specific DNS suffixes radio button and Append parent suffixes of the primary DNS suffix check box on the DNS tab in Advanced TCP/IP Settings for the Internet Protocol (TCP/IP) Properties dialog box.
+
+Devolution is not enabled if a global suffix search list is configured using Group Policy.
+
+If a global suffix search list is not configured, and the Append primary and connection specific DNS suffixes radio button is selected, the DNS client appends the following names to a single-label name when it sends DNS queries:  
+
+- The primary DNS suffix, as specified on the Computer Name tab of the System control panel.
+- Each connection-specific DNS suffix, assigned either through DHCP or specified in the DNS suffix for this connection box on the DNS tab in the Advanced TCP/IP Settings dialog box for each connection.
+
+For example, when a user submits a query for a single-label name such as "example," the DNS client attaches a suffix such as "microsoft.com" resulting in the query "example.microsoft.com," before sending the query to a DNS server.
+
+If a DNS suffix search list is not specified, the DNS client attaches the primary DNS suffix to a single-label name. If this query fails, the connection-specific DNS suffix is attached for a new query. If none of these queries are resolved, the client devolves the primary DNS suffix of the computer (drops the leftmost label of the primary DNS suffix), attaches this devolved primary DNS suffix to the single-label name, and submits this new query to a DNS server.
+
+For example, if the primary DNS suffix ooo.aaa.microsoft.com is attached to the non-dot-terminated single-label name "example," and the DNS query for example.ooo.aaa.microsoft.com fails, the DNS client devolves the primary DNS suffix (drops the leftmost label) till the specified devolution level, and submits a query for example.aaa.microsoft.com. If this query fails, the primary DNS suffix is devolved further if it is under specified devolution level and the query example.microsoft.com is submitted. If this query fails, devolution continues if it is under specified devolution level and the query example.microsoft.com is submitted, corresponding to a devolution level of two. The primary DNS suffix cannot be devolved beyond a devolution level of two. The devolution level can be configured using this policy setting. The default devolution level is two.
+
+If you enable this policy setting and DNS devolution is also enabled, DNS clients use the DNS devolution level that you specify.
+
+If you disable this policy setting or do not configure it, DNS clients use the default devolution level of two provided that DNS devolution is enabled.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Primary DNS suffix devolution level*
+-   GP name: *DNS_DomainNameDevolutionLevel*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-idnencoding"></a>**ADMX_DnsClient/DNS_IdnEncoding**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether the DNS client should convert internationalized domain names (IDNs) to Punycode when the computer is on non-domain networks with no WINS servers configured.
+
+If this policy setting is enabled, IDNs are not converted to Punycode.
+
+If this policy setting is disabled, or if this policy setting is not configured, IDNs are converted to Punycode when the computer is on non-domain networks with no WINS servers configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off IDN encoding*
+-   GP name: *DNS_IdnEncoding*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-idnmapping"></a>**ADMX_DnsClient/DNS_IdnMapping**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether the DNS client should convert internationalized domain names (IDNs) to the Nameprep form, a canonical Unicode representation of the string.
+
+If this policy setting is enabled, IDNs are converted to the Nameprep form.
+
+If this policy setting is disabled, or if this policy setting is not configured, IDNs are not converted to the Nameprep form.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *IDN mapping*
+-   GP name: *DNS_IdnMapping*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-nameserver"></a>**ADMX_DnsClient/DNS_NameServer**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting defines the DNS servers to which a computer sends queries when it attempts to resolve names. This policy setting supersedes the list of DNS servers configured locally and those configured using DHCP.
+
+To use this policy setting, click Enabled, and then enter a space-delimited list of IP addresses in the available field. To use this policy setting, you must enter at least one IP address.
+
+If you enable this policy setting, the list of DNS servers is applied to all network connections used by computers that receive this policy setting. 
+
+If you disable this policy setting, or if you do not configure this policy setting, computers will use the local or DHCP supplied list of DNS servers, if configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *DNS servers*
+-   GP name: *DNS_NameServer*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-preferlocalresponsesoverlowerorderdns"></a>**ADMX_DnsClient/DNS_PreferLocalResponsesOverLowerOrderDns**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that responses from link local name resolution protocols received over a network interface that is higher in the binding order are preferred over DNS responses from network interfaces lower in the binding order. Examples of link local name resolution protocols include link local multicast name resolution (LLMNR) and NetBIOS over TCP/IP (NetBT).
+
+If you enable this policy setting, responses from link local protocols will be preferred over DNS responses if the local responses are from a network with a higher binding order.
+
+If you disable this policy setting, or if you do not configure this policy setting, then DNS responses from networks lower in the binding order will be preferred over responses from link local protocols received from networks higher in the binding order.
+
+> [!NOTE]
+> This policy setting is applicable only if the turn off smart multi-homed name resolution policy setting is disabled or not configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prefer link local responses over DNS when received over a network with higher precedence*
+-   GP name: *DNS_PreferLocalResponsesOverLowerOrderDns*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-primarydnssuffix"></a>**ADMX_DnsClient/DNS_PrimaryDnsSuffix**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the primary DNS suffix used by computers in DNS name registration and DNS name resolution.
+
+To use this policy setting, click Enabled and enter the entire primary DNS suffix you want to assign. For example: microsoft.com.
+
+> [!IMPORTANT]
+> In order for changes to this policy setting to be applied on computers that receive it, you must restart Windows.
+
+If you enable this policy setting, it supersedes the primary DNS suffix configured in the DNS Suffix and NetBIOS Computer Name dialog box using the System control panel.
+
+You can use this policy setting to prevent users, including local administrators, from changing the primary DNS suffix.
+
+If you disable this policy setting, or if you do not configure this policy setting, each computer uses its local primary DNS suffix, which is usually the DNS name of Active Directory domain to which it is joined.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Primary DNS suffix*
+-   GP name: *DNS_PrimaryDnsSuffix*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-registeradaptername"></a>**ADMX_DnsClient/DNS_RegisterAdapterName**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if a computer performing dynamic DNS registration will register A and PTR resource records with a concatenation of its computer name and a connection-specific DNS suffix, in addition to registering these records with a concatenation of its computer name and the primary DNS suffix.
+
+By default, a DNS client performing dynamic DNS registration registers A and PTR resource records with a concatenation of its computer name and the primary DNS suffix. For example, a computer name of mycomputer and a primary DNS suffix of microsoft.com will be registered as: mycomputer.microsoft.com.
+
+If you enable this policy setting, a computer will register A and PTR resource records with its connection-specific DNS suffix, in addition to the primary DNS suffix. This applies to all network connections used by computers that receive this policy setting.
+
+For example, with a computer name of mycomputer, a primary DNS suffix of microsoft.com, and a connection specific DNS suffix of VPNconnection, a computer will register A and PTR resource records for mycomputer.VPNconnection and mycomputer.microsoft.com when this policy setting is enabled.
+
+Important: This policy setting is ignored on a DNS client computer if dynamic DNS registration is disabled.
+
+If you disable this policy setting, or if you do not configure this policy setting, a DNS client computer will not register any A and PTR resource records using a connection-specific DNS suffix.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Register DNS records with connection-specific DNS suffix*
+-   GP name: *DNS_RegisterAdapterName*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-registerreverselookup"></a>**ADMX_DnsClient/DNS_RegisterReverseLookup**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if DNS client computers will register PTR resource records.
+
+By default, DNS clients configured to perform dynamic DNS registration will attempt to register PTR resource record only if they successfully registered the corresponding A resource record.
+
+If you enable this policy setting, registration of PTR records will be determined by the option that you choose under Register PTR records.
+
+To use this policy setting, click Enabled, and then select one of the following options from the drop-down list:
+
+- Do not register: Computers will not attempt to register PTR resource records
+- Register: Computers will attempt to register PTR resource records even if registration of the corresponding A records was not successful.
+- Register only if A record registration succeeds: Computers will attempt to register PTR resource records only if registration of the corresponding A records was successful.
+
+If you disable this policy setting, or if you do not configure this policy setting, computers will use locally configured settings.
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Register PTR records*
+-   GP name: *DNS_RegisterReverseLookup*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-registrationenabled"></a>**ADMX_DnsClient/DNS_RegistrationEnabled**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if DNS dynamic update is enabled. Computers configured for DNS dynamic update automatically register and update their DNS resource records with a DNS server.
+
+If you enable this policy setting, or you do not configure this policy setting, computers will attempt to use dynamic DNS registration on all network connections that have connection-specific dynamic DNS registration enabled. For a dynamic DNS registration to be enabled on a network connection, the connection-specific configuration must allow dynamic DNS registration, and this policy setting must not be disabled.
+
+If you disable this policy setting, computers may not use dynamic DNS registration for any of their network connections, regardless of the configuration for individual network connections.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Dynamic update*
+-   GP name: *DNS_RegistrationEnabled*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-registrationoverwritesinconflict"></a>**ADMX_DnsClient/DNS_RegistrationOverwritesInConflict**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies whether dynamic updates should overwrite existing resource records that contain conflicting IP addresses.
+
+This policy setting is designed for computers that register address (A) resource records in DNS zones that do not use Secure Dynamic Updates. Secure Dynamic Update preserves ownership of resource records and does not allow a DNS client to overwrite records that are registered by other computers.
+
+During dynamic update of resource records in a zone that does not use Secure Dynamic Updates, an A resource record might exist that associates the client's host name with an IP address different than the one currently in use by the client. By default, the DNS client attempts to replace the existing A resource record with an A resource record that has the client's current IP address.
+
+If you enable this policy setting or if you do not configure this policy setting, DNS clients maintain their default behavior and will attempt to replace conflicting A resource records during dynamic update.
+
+If you disable this policy setting, existing A resource records that contain conflicting IP addresses will not be replaced during a dynamic update, and an error will be recorded in Event Viewer.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Replace addresses in conflicts*
+-   GP name: *DNS_RegistrationOverwritesInConflict*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-registrationrefreshinterval"></a>**ADMX_DnsClient/DNS_RegistrationRefreshInterval**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the interval used by DNS clients to refresh registration of A and PTR resource. This policy setting only applies to computers performing dynamic DNS updates.
+
+Computers configured to perform dynamic DNS registration of A and PTR resource records periodically reregister their records with DNS servers, even if the record has not changed. This reregistration is required to indicate to DNS servers that records are current and should not be automatically removed (scavenged) when a DNS server is configured to delete stale records.
+
+> [!WARNING]
+> If record scavenging is enabled on the zone, the value of this policy setting should never be longer than the value of the DNS zone refresh interval. Configuring the registration refresh interval to be longer than the refresh interval of the DNS zone might result in the undesired deletion of A and PTR resource records.
+
+To specify the registration refresh interval, click Enabled and then enter a value of 1800 or greater. The value that you specify is the number of seconds to use for the registration refresh interval. For example, 1800 seconds is 30 minutes.
+
+If you enable this policy setting, registration refresh interval that you specify will be applied to all network connections used by computers that receive this policy setting.
+
+If you disable this policy setting, or if you do not configure this policy setting, computers will use the local or DHCP supplied setting. By default, client computers configured with a static IP address attempt to update their DNS resource records once every 24 hours and DHCP clients will attempt to update their DNS resource records when a DHCP lease is granted or renewed.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Registration refresh interval*
+-   GP name: *DNS_RegistrationRefreshInterval*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-registrationttl"></a>**ADMX_DnsClient/DNS_RegistrationTtl**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the value of the time to live (TTL) field in A and PTR resource records that are registered by computers to which this policy setting is applied.
+
+To specify the TTL, click Enabled and then enter a value in seconds (for example, 900 is 15 minutes).
+
+If you enable this policy setting, the TTL value that you specify will be applied to DNS resource records registered for all network connections used by computers that receive this policy setting.
+
+If you disable this policy setting, or if you do not configure this policy setting, computers will use the TTL settings specified in DNS. By default, the TTL is 1200 seconds (20 minutes).
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *TTL value for A and PTR records*
+-   GP name: *DNS_RegistrationTtl*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-searchlist"></a>**ADMX_DnsClient/DNS_SearchList**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the DNS suffixes to attach to an unqualified single-label name before submission of a DNS query for that name.
+
+An unqualified single-label name contains no dots. The name "example" is a single-label name. This is different from a fully qualified domain name such as "example.microsoft.com."
+
+Client computers that receive this policy setting will attach one or more suffixes to DNS queries for a single-label name. For example, a DNS query for the single-label name "example" will be modified to "example.microsoft.com" before sending the query to a DNS server if this policy setting is enabled with a suffix of "microsoft.com."
+
+To use this policy setting, click Enabled, and then enter a string value representing the DNS suffixes that should be appended to single-label names. You must specify at least one suffix. Use a comma-delimited string, such as "microsoft.com,serverua.microsoft.com,office.microsoft.com" to specify multiple suffixes.
+
+If you enable this policy setting, one DNS suffix is attached at a time for each query. If a query is unsuccessful, a new DNS suffix is added in place of the failed suffix, and this new query is submitted. The values are used in the order they appear in the string, starting with the leftmost value and proceeding to the right until a query is successful or all suffixes are tried.
+
+If you disable this policy setting, or if you do not configure this policy setting, the primary DNS suffix and network connection-specific DNS suffixes are appended to the unqualified queries.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *DNS suffix search list*
+-   GP name: *DNS_SearchList*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-smartmultihomednameresolution"></a>**ADMX_DnsClient/DNS_SmartMultiHomedNameResolution**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that a multi-homed DNS client should optimize name resolution across networks. The setting improves performance by issuing parallel DNS, link local multicast name resolution (LLMNR) and NetBIOS over TCP/IP (NetBT) queries across all networks. In the event that multiple positive responses are received, the network binding order is used to determine which response to accept.
+
+If you enable this policy setting, the DNS client will not perform any optimizations.  DNS queries will be issued across all networks first. LLMNR queries will be issued if the DNS queries fail, followed by NetBT queries if LLMNR queries fail.
+
+If you disable this policy setting, or if you do not configure this policy setting, name resolution will be optimized when issuing DNS, LLMNR and NetBT queries.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off smart multi-homed name resolution*
+-   GP name: *DNS_SmartMultiHomedNameResolution*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-smartprotocolreorder"></a>**ADMX_DnsClient/DNS_SmartProtocolReorder**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that the DNS client should prefer responses from link local name resolution protocols on non-domain networks over DNS responses when issuing queries for flat names. Examples of link local name resolution protocols include link local multicast name resolution (LLMNR) and NetBIOS over TCP/IP (NetBT).
+
+If you enable this policy setting, the DNS client will prefer DNS responses, followed by LLMNR, followed by NetBT for all networks.  
+
+If you disable this policy setting, or if you do not configure this policy setting, the DNS client will prefer link local responses for flat name queries on non-domain networks. 
+
+> [!NOTE]
+> This policy setting is applicable only if the turn off smart multi-homed name resolution policy setting is disabled or not configured.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off smart protocol reordering*
+-   GP name: *DNS_SmartProtocolReorder*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-updatesecuritylevel"></a>**ADMX_DnsClient/DNS_UpdateSecurityLevel**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies the security level for dynamic DNS updates.
+
+To use this policy setting, click Enabled and then select one of the following values:
+
+- Unsecure followed by secure - computers send secure dynamic updates only when nonsecure dynamic updates are refused.
+- Only unsecure - computers send only nonsecure dynamic updates.
+- Only secure - computers send only secure dynamic updates.
+
+If you enable this policy setting, computers that attempt to send dynamic DNS updates will use the security level that you specify in this policy setting.
+
+If you disable this policy setting, or if you do not configure this policy setting, computers will use local settings. By default, DNS clients attempt to use unsecured dynamic update first. If an unsecured update is refused, clients try to use secure update.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Update security level*
+-   GP name: *DNS_UpdateSecurityLevel*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-updatetopleveldomainzones"></a>**ADMX_DnsClient/DNS_UpdateTopLevelDomainZones**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if computers may send dynamic updates to zones with a single label name. These zones are also known as top-level domain zones, for example: "com."
+
+By default, a DNS client that is configured to perform dynamic DNS update will update the DNS zone that is authoritative for its DNS resource records unless the authoritative zone is a top-level domain or root zone.
+
+If you enable this policy setting, computers send dynamic updates to any zone that is authoritative for the resource records that the computer needs to update, except the root zone.
+
+If you disable this policy setting, or if you do not configure this policy setting, computers do not send dynamic updates to the root zone or top-level domain zones that are authoritative for the resource records that the computer needs to update.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Update top level domain zones*
+-   GP name: *DNS_UpdateTopLevelDomainZones*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-dns-usedomainnamedevolution"></a>**ADMX_DnsClient/DNS_UseDomainNameDevolution**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies if the DNS client performs primary DNS suffix devolution during the name resolution process.
+
+With devolution, a DNS client creates queries by appending a single-label, unqualified domain name with the parent suffix of the primary DNS suffix name, and the parent of that suffix, and so on, stopping if the name is successfully resolved or at a level determined by devolution settings. Devolution can be used when a user or application submits a query for a single-label domain name.
+
+The DNS client appends DNS suffixes to the single-label, unqualified domain name based on the state of the Append primary and connection specific DNS suffixes radio button and Append parent suffixes of the primary DNS suffix check box on the DNS tab in Advanced TCP/IP Settings for the Internet Protocol (TCP/IP) Properties dialog box.
+
+Devolution is not enabled if a global suffix search list is configured using Group Policy.
+
+If a global suffix search list is not configured, and the Append primary and connection specific DNS suffixes radio button is selected, the DNS client appends the following names to a single-label name when it sends DNS queries:
+
+The primary DNS suffix, as specified on the Computer Name tab of the System control panel.
+
+Each connection-specific DNS suffix, assigned either through DHCP or specified in the DNS suffix for this connection box on the DNS tab in the Advanced TCP/IP Settings dialog box for each connection.
+
+For example, when a user submits a query for a single-label name such as "example," the DNS client attaches a suffix such as "microsoft.com" resulting in the query "example.microsoft.com," before sending the query to a DNS server.
+
+If a DNS suffix search list is not specified, the DNS client attaches the primary DNS suffix to a single-label name. If this query fails, the connection-specific DNS suffix is attached for a new query. If none of these queries are resolved, the client devolves the primary DNS suffix of the computer (drops the leftmost label of the primary DNS suffix), attaches this devolved primary DNS suffix to the single-label name, and submits this new query to a DNS server.
+
+For example, if the primary DNS suffix ooo.aaa.microsoft.com is attached to the non-dot-terminated single-label name "example," and the DNS query for example.ooo.aaa.microsoft.com fails, the DNS client devolves the primary DNS suffix (drops the leftmost label) till the specified devolution level, and submits a query for example.aaa.microsoft.com. If this query fails, the primary DNS suffix is devolved further if it is under specified devolution level and the query example.microsoft.com is submitted. If this query fails, devolution continues if it is under specified devolution level and the query example.microsoft.com is submitted, corresponding to a devolution level of two. The primary DNS suffix cannot be devolved beyond a devolution level of two. The devolution level can be configured using the primary DNS suffix devolution level policy setting. The default devolution level is two.
+
+If you enable this policy setting, or if you do not configure this policy setting, DNS clients attempt to resolve single-label names using concatenations of the single-label name to be resolved and the devolved primary DNS suffix.
+
+If you disable this policy setting, DNS clients do not attempt to resolve names that are concatenations of the single-label name to be resolved and the devolved primary DNS suffix.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Primary DNS suffix devolution*
+-   GP name: *DNS_UseDomainNameDevolution*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-dnsclient-turn-Offmulticast"></a>**ADMX_DnsClient/Turn_Off_Multicast**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting specifies that link local multicast name resolution (LLMNR) is disabled on client computers.
+
+LLMNR is a secondary name resolution protocol. With LLMNR, queries are sent using multicast over a local network link on a single subnet from a client computer to another client computer on the same subnet that also has LLMNR enabled. LLMNR does not require a DNS server or DNS client configuration, and provides name resolution in scenarios in which conventional DNS name resolution is not possible.
+
+If you enable this policy setting, LLMNR will be disabled on all available network adapters on the client computer.
+
+If you disable this policy setting, or you do not configure this policy setting, LLMNR will be enabled on all available network adapters.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Turn off multicast name resolution*
+-   GP name: *Turn_Off_Multicast*
+-   GP path: *Network/DNS Client*
+-   GP ADMX file name: *DnsClient.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+
diff --git a/windows/client-management/mdm/policy-csp-admx-eventforwarding.md b/windows/client-management/mdm/policy-csp-admx-eventforwarding.md
new file mode 100644
index 0000000000..b964fbde10
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-eventforwarding.md
@@ -0,0 +1,200 @@
+---
+title: Policy CSP - ADMX_EventForwarding
+description: Policy CSP - ADMX_EventForwarding
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 08/17/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_EventForwarding
+
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_EventForwarding policies  
+
+<dl>
+  <dd>
+    <a href="#admx_eventforwarding-forwarderresourceusage">ADMX_EventForwarding/ForwarderResourceUsage</a>
+  </dd>
+  <dd>
+    <a href="#admx_eventforwarding-subscriptionmanager">ADMX_EventForwarding/SubscriptionManager</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_eventforwarding-forwarderresourceusage"></a>**ADMX_EventForwarding/ForwarderResourceUsage**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting controls resource usage for the forwarder (source computer) by controlling the events/per second sent to the Event Collector.
+
+If you enable this policy setting, you can control the volume of events sent to the Event Collector by the source computer. This may be required in high volume environments.
+
+If you disable or do not configure this policy setting, forwarder resource usage is not specified.
+
+This setting applies across all subscriptions for the forwarder (source computer).
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure forwarder resource usage*
+-   GP name: *MaxForwardingRate*
+-   GP path: *Windows Components/Event Forwarding*
+-   GP ADMX file name: *EventForwarding.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx_eventforwarding-subscriptionmanager"></a>**ADMX_EventForwarding/SubscriptionManager**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting allows you to configure the server address, refresh interval, and issuer certificate authority (CA) of a target Subscription Manager.
+
+If you enable this policy setting, you can configure the Source Computer to contact a specific FQDN (Fully Qualified Domain Name) or IP Address and request subscription specifics.
+
+Use the following syntax when using the HTTPS protocol:  
+
+``` syntax
+
+Server=https://<FQDN of the collector>:5986/wsman/SubscriptionManager/WEC,Refresh=<Refresh interval in seconds>,IssuerCA=<Thumb print of the client authentication certificate>.
+```
+
+When using the HTTP protocol, use port 5985.
+
+If you disable or do not configure this policy setting, the Event Collector computer will not be specified.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Configure target Subscription Manager*
+-   GP name: *SubscriptionManager*
+-   GP path: *Windows Components/Event Forwarding*
+-   GP ADMX file name: *EventForwarding.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+

From dc77103db01606a2f07e39866930192be66bad27 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Mon, 17 Aug 2020 16:41:24 -0700
Subject: [PATCH 22/38] Fixed build warning

---
 .../client-management/mdm/policy-csp-admx-ciphersuiteorder.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
index 3e28f47950..7c64c3a7a9 100644
--- a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
+++ b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
@@ -84,7 +84,7 @@ If you enable this policy setting, SSL cipher suites are prioritized in the orde
 
 If you disable or do not configure this policy setting, default cipher suite order is used.
 
-For information about supported cipher Suites, see [Cipher Suites in TLS/SSL (Schannel SSP)](http://go.microsoft.com/fwlink/?LinkId=517265).
+For information about supported cipher Suites, see [Cipher Suites in TLS/SSL (Schannel SSP)](https://go.microsoft.com/fwlink/?LinkId=517265).
 
 <!--/Description-->
 > [!TIP]

From 072f857ec90fd3708c021b5d704f5f3732601b28 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Mon, 17 Aug 2020 16:46:35 -0700
Subject: [PATCH 23/38] minor update

---
 .../client-management/mdm/policy-csp-admx-ciphersuiteorder.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
index 7c64c3a7a9..3088951d88 100644
--- a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
+++ b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
@@ -84,7 +84,7 @@ If you enable this policy setting, SSL cipher suites are prioritized in the orde
 
 If you disable or do not configure this policy setting, default cipher suite order is used.
 
-For information about supported cipher Suites, see [Cipher Suites in TLS/SSL (Schannel SSP)](https://go.microsoft.com/fwlink/?LinkId=517265).
+For information about supported cipher suites, see [Cipher Suites in TLS/SSL (Schannel SSP)](https://go.microsoft.com/fwlink/?LinkId=517265).
 
 <!--/Description-->
 > [!TIP]

From 714509b135149044db52e9c1aadb5ab6654fe217 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Tue, 18 Aug 2020 17:19:05 -0700
Subject: [PATCH 24/38] Added Conf policies

---
 .../mdm/policy-csp-admx-appcompat.md          |   36 +-
 .../mdm/policy-csp-admx-ciphersuiteorder.md   |    8 +-
 .../mdm/policy-csp-admx-com.md                |  197 ++
 .../mdm/policy-csp-admx-conf.md               | 2431 +++++++++++++++++
 4 files changed, 2650 insertions(+), 22 deletions(-)
 create mode 100644 windows/client-management/mdm/policy-csp-admx-com.md
 create mode 100644 windows/client-management/mdm/policy-csp-admx-conf.md

diff --git a/windows/client-management/mdm/policy-csp-admx-appcompat.md b/windows/client-management/mdm/policy-csp-admx-appcompat.md
index da013a6e46..cd7a091fd2 100644
--- a/windows/client-management/mdm/policy-csp-admx-appcompat.md
+++ b/windows/client-management/mdm/policy-csp-admx-appcompat.md
@@ -24,39 +24,39 @@ manager: dansimp
 
 <dl>
   <dd>
-    <a href="#admx_appcompat-appcompatprevent16bitmach">ADMX_AppCompat/AppCompatPrevent16BitMach
+    <a href="#admx-appcompat-appcompatprevent16bitmach">ADMX_AppCompat/AppCompatPrevent16BitMach
     </a>
   </dd>
   <dd>
-    <a href="#admx_appcompat-appcompatremoveprogramcompatproppage">ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage
+    <a href="#admx-appcompat-appcompatremoveprogramcompatproppage">ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage
     </a>
   </dd>
   <dd>
-    <a href="#admx_appcompat-appcompatturnoffapplicationimpacttelemetry">ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry
+    <a href="#admx-appcompat-appcompatturnoffapplicationimpacttelemetry">ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry
     </a>
   </dd>
   <dd>
-    <a href="#admx_appcompat-appcompatturnoffswitchback">ADMX_AppCompat/AppCompatTurnOffSwitchBack
+    <a href="#admx-appcompat-appcompatturnoffswitchback">ADMX_AppCompat/AppCompatTurnOffSwitchBack
     </a>
   </dd>
   <dd>
-    <a href="#admx_appcompat-appcompatturnoffengine">ADMX_AppCompat/AppCompatTurnOffEngine
+    <a href="#admx-appcompat-appcompatturnoffengine">ADMX_AppCompat/AppCompatTurnOffEngine
     </a>
   </dd>
   <dd>
-    <a href="#admx_appcompat-appcompatturnoffprogramcompatibilityassistant_1">ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1
+    <a href="#admx-appcompat-appcompatturnoffprogramcompatibilityassistant_1">ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1
     </a>
   </dd>
   <dd>
-    <a href="#admx_appcompat-appcompatturnoffprogramcompatibilityassistant_2">ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2
+    <a href="#admx-appcompat-appcompatturnoffprogramcompatibilityassistant_2">ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2
     </a>
   </dd>
   <dd>
-    <a href="#admx_appcompat-appcompatturnoffuseractionrecord">ADMX_AppCompat/AppCompatTurnOffUserActionRecord
+    <a href="#admx-appcompat-appcompatturnoffuseractionrecord">ADMX_AppCompat/AppCompatTurnOffUserActionRecord
     </a>
   </dd>
   <dd>
-    <a href="#admx_appcompat-appcompatturnoffprograminventory">ADMX_AppCompat/AppCompatTurnOffProgramInventory
+    <a href="#admx-appcompat-appcompatturnoffprograminventory">ADMX_AppCompat/AppCompatTurnOffProgramInventory
     </a>
   </dd>
 </dl>
@@ -65,7 +65,7 @@ manager: dansimp
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_appcompat-appcompatprevent16bitmach"></a>**ADMX_AppCompat/AppCompatPrevent16BitMach**  
+<a href="" id="admx-appcompat-appcompatprevent16bitmach"></a>**ADMX_AppCompat/AppCompatPrevent16BitMach**  
 
 <!--SupportedSKUs-->
 <table>
@@ -142,7 +142,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_appcompat-appcompatremoveprogramcompatproppage"></a>**ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage**  
+<a href="" id="admx-appcompat-appcompatremoveprogramcompatproppage"></a>**ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage**  
 
 <!--SupportedSKUs-->
 <table>
@@ -213,7 +213,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_appcompat-appcompatturnoffapplicationimpacttelemetry"></a>**ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry**  
+<a href="" id="admx-appcompat-appcompatturnoffapplicationimpacttelemetry"></a>**ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry**  
 
 <!--SupportedSKUs-->
 <table>
@@ -288,7 +288,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_appcompat-appcompatturnoffswitchback"></a>**ADMX_AppCompat/AppCompatTurnOffSwitchBack**  
+<a href="" id="admx-appcompat-appcompatturnoffswitchback"></a>**ADMX_AppCompat/AppCompatTurnOffSwitchBack**  
 
 <!--SupportedSKUs-->
 <table>
@@ -364,7 +364,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_appcompat-appcompatturnoffengine"></a>**ADMX_AppCompat/AppCompatTurnOffEngine**  
+<a href="" id="admx-appcompat-appcompatturnoffengine"></a>**ADMX_AppCompat/AppCompatTurnOffEngine**  
 
 <!--SupportedSKUs-->
 <table>
@@ -442,7 +442,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_appcompat-appcompatturnoffprogramcompatibilityassistant_1"></a>**ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1**  
+<a href="" id="admx-appcompat-appcompatturnoffprogramcompatibilityassistant_1"></a>**ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1**  
 
 <!--SupportedSKUs-->
 <table>
@@ -509,7 +509,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_appcompat-appcompatturnoffprogramcompatibilityassistant_2"></a>**ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2**  
+<a href="" id="admx-appcompat-appcompatturnoffprogramcompatibilityassistant_2"></a>**ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2**  
 
 <!--SupportedSKUs-->
 <table>
@@ -583,7 +583,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_appcompat-appcompatturnoffuseractionrecord"></a>**ADMX_AppCompat/AppCompatTurnOffUserActionRecord**  
+<a href="" id="admx-appcompat-appcompatturnoffuseractionrecord"></a>**ADMX_AppCompat/AppCompatTurnOffUserActionRecord**  
 
 <!--SupportedSKUs-->
 <table>
@@ -656,7 +656,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_appcompat-appcompatturnoffprograminventory"></a>**ADMX_AppCompat/AppCompatTurnOffProgramInventory**  
+<a href="" id="admx-appcompat-appcompatturnoffprograminventory"></a>**ADMX_AppCompat/AppCompatTurnOffProgramInventory**  
 
 <!--SupportedSKUs-->
 <table>
diff --git a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
index 3088951d88..306231cdcf 100644
--- a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
+++ b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
@@ -24,10 +24,10 @@ manager: dansimp
 
 <dl>
   <dd>
-    <a href="#admx_ciphersuiteorder-sslciphersuiteorder">ADMX_CipherSuiteOrder/SSLCipherSuiteOrder</a>
+    <a href="#admx-ciphersuiteorder-sslciphersuiteorder">ADMX_CipherSuiteOrder/SSLCipherSuiteOrder</a>
   </dd>
   <dd>
-    <a href="#admx_ciphersuiteorder-sslcurveorder">ADMX_CipherSuiteOrder/SSLCurveOrder</a>
+    <a href="#admx-ciphersuiteorder-sslcurveorder">ADMX_CipherSuiteOrder/SSLCurveOrder</a>
   </dd>
 </dl>
 
@@ -35,7 +35,7 @@ manager: dansimp
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_ciphersuiteorder-sslciphersuiteorder"></a>**ADMX_CipherSuiteOrder/SSLCipherSuiteOrder**  
+<a href="" id="admx-ciphersuiteorder-sslciphersuiteorder"></a>**ADMX_CipherSuiteOrder/SSLCipherSuiteOrder**  
 
 <!--SupportedSKUs-->
 <table>
@@ -108,7 +108,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx_ciphersuiteorder-sslcurveorder"></a>**ADMX_CipherSuiteOrder/SSLCurveOrder**  
+<a href="" id="admx-ciphersuiteorder-sslcurveorder"></a>**ADMX_CipherSuiteOrder/SSLCurveOrder**  
 
 <!--SupportedSKUs-->
 <table>
diff --git a/windows/client-management/mdm/policy-csp-admx-com.md b/windows/client-management/mdm/policy-csp-admx-com.md
new file mode 100644
index 0000000000..ff361f80d2
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-com.md
@@ -0,0 +1,197 @@
+---
+title: Policy CSP - ADMX_COM
+description: Policy CSP - ADMX_COM
+ms.author: dansimp
+ms.localizationpriority: medium
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.date: 08/18/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_COM
+
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## ADMX_COM policies  
+
+<dl>
+  <dd>
+    <a href="#admx-com-appmgmt-com-searchforclsid-1">ADMX_COM/AppMgmt_COM_SearchForCLSID_1</a>
+  </dd>
+  <dd>
+    <a href="#admx-com-appmgmt-com-searchforclsid-2">ADMX_COM/AppMgmt_COM_SearchForCLSID_2</a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-com-appmgmt-com-searchforclsid-1"></a>**ADMX_COM/AppMgmt_COM_SearchForCLSID_1**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting directs the system to search Active Directory for missing Component Object Model (COM) components that a program requires.
+
+Many Windows programs, such as the MMC snap-ins, use the interfaces provided by the COM components. These programs cannot perform all their functions unless Windows has internally registered the required components.
+
+If you enable this policy setting and a component registration is missing, the system searches for it in Active Directory and, if it is found, downloads it. The resulting searches might make some programs start or run slowly.
+
+If you disable or do not configure this policy setting, the program continues without the registration. As a result, the program might not perform all its functions, or it might stop.
+
+This setting appears in the Computer Configuration and User Configuration folders. If both settings are configured, the setting in Computer Configuration takes precedence over the setting in User Configuration.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Download missing COM components*
+-   GP name: *COMClassStore*
+-   GP path: *System*
+-   GP ADMX file name: *COM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-com-appmgmt-com-searchforclsid-2"></a>**ADMX_COM/AppMgmt_COM_SearchForCLSID_2**  
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting directs the system to search Active Directory for missing Component Object Model (COM) components that a program requires.
+
+Many Windows programs, such as the MMC snap-ins, use the interfaces provided by the COM components. These programs cannot perform all their functions unless Windows has internally registered the required components.
+
+If you enable this policy setting and a component registration is missing, the system searches for it in Active Directory and, if it is found, downloads it. The resulting searches might make some programs start or run slowly.
+
+If you disable or do not configure this policy setting, the program continues without the registration. As a result, the program might not perform all its functions, or it might stop.
+
+This setting appears in the Computer Configuration and User Configuration folders. If both settings are configured, the setting in Computer Configuration takes precedence over the setting in User Configuration.
+
+<!--/Description-->
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Download missing COM components*
+-   GP name: *COMClassStore*
+-   GP path: *System*
+-   GP ADMX file name: *COM.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+<hr/>
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
+
diff --git a/windows/client-management/mdm/policy-csp-admx-conf.md b/windows/client-management/mdm/policy-csp-admx-conf.md
new file mode 100644
index 0000000000..931927fe44
--- /dev/null
+++ b/windows/client-management/mdm/policy-csp-admx-conf.md
@@ -0,0 +1,2431 @@
+---
+title: Policy CSP - ADMX_Conf
+description: Policy CSP - ADMX_Conf
+ms.author: dansimp
+ms.topic: article
+ms.prod: w10
+ms.technology: windows
+author: manikadhiman
+ms.localizationpriority: medium
+ms.date: 08/18/2020
+ms.reviewer: 
+manager: dansimp
+---
+
+# Policy CSP - ADMX_Conf
+
+> [!WARNING]
+> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
+
+<hr/>
+
+<!--Policies-->
+## Policy CSP - ADMX_Conf  
+
+<dl>
+  <dd>
+    <a href="#admx-conf-allowpersistautoacceptcalls">ADMX_Conf/AllowPersistAutoAcceptCalls
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disableadvcallingbutton">ADMX_Conf/DisableAdvCallingButton
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disableappsharing">ADMX_Conf/DisableAppSharing
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disableaudiopage">ADMX_Conf/DisableAudioPage
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disablechat">ADMX_Conf/DisableChat
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disablegeneralpage">ADMX_Conf/DisableGeneralPage
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disablenewwhiteboard">ADMX_Conf/DisableNewWhiteboard
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disableoldwhiteboard">ADMX_Conf/DisableOldWhiteboard
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disablerds">ADMX_Conf/DisableRDS
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disablesecuritypage">ADMX_Conf/DisableSecurityPage
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-disablevideopage">ADMX_Conf/DisableVideoPage
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-enableautoconfiguration">ADMX_Conf/EnableAutoConfiguration
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventaddingnewils">ADMX_Conf/PreventAddingNewILS
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventaudio">ADMX_Conf/PreventAudio
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventautoaccept">ADMX_Conf/PreventAutoAccept
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventchangedirectsound">ADMX_Conf/PreventChangeDirectSound
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventchangingcallmode">ADMX_Conf/PreventChangingCallMode
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventdirectoryservices">ADMX_Conf/PreventDirectoryServices
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventfullduplex">ADMX_Conf/PreventFullDuplex
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventgrantingcontrol">ADMX_Conf/PreventGrantingControl
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventreceivingfiles">ADMX_Conf/PreventReceivingFiles
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventreceivingvideo">ADMX_Conf/PreventReceivingVideo
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventsendingfiles">ADMX_Conf/PreventSendingFiles
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventsendingvideo">ADMX_Conf/PreventSendingVideo
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventsharing">ADMX_Conf/PreventSharing
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventsharingcmdprompt">ADMX_Conf/PreventSharingCMDPrompt
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventsharingdesktop">ADMX_Conf/PreventSharingDesktop
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventsharingexplorer">ADMX_Conf/PreventSharingExplorer
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventsharingtruecolor">ADMX_Conf/PreventSharingTrueColor
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-preventwebdirectory">ADMX_Conf/PreventWebDirectory
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-restrictftsendsize">ADMX_Conf/RestrictFTSendSize
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-setavthroughput">ADMX_Conf/SetAVThroughput
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-setintranetsupport">ADMX_Conf/SetIntranetSupport
+    </a>
+  </dd>
+  <dd>
+    <a href="#admx-conf-setsecurityoptions">ADMX_Conf/SetSecurityOptions
+    </a>
+  </dd>
+</dl>
+
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-allowpersistautoacceptcalls"></a>**ADMX_Conf/AllowPersistAutoAcceptCalls**  
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting makes the automatic acceptance of incoming calls persistent.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Allow persisting automatic acceptance of Calls*
+-   GP name: *PersistAutoAcceptCalls*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disableadvcallingbutton"></a>**ADMX_Conf/DisableAdvCallingButton**  
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting disables the Advanced Calling button on the General Options page. Users will not then be able to change the call placement method and the servers used.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disable the Advanced Calling button*
+-   GP name: *NoAdvancedCalling*
+-   GP path: *Windows Components/NetMeeting/Options Page*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disableappsharing"></a>**ADMX_Conf/DisableAppSharing**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting disables the application sharing feature of NetMeeting completely. Users will not be able to host or view shared applications.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disable application Sharing*
+-   GP name: *NoAppSharing*
+-   GP path: *Windows Components/NetMeeting/Application Sharing*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disableaudiopage"></a>**ADMX_Conf/DisableAudioPage**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting hides the Audio page of the Tools Options dialog. Users will not then be able to change audio settings.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Hide the Audio page*
+-   GP name: *NoAudioPage*
+-   GP path: *Windows Components/NetMeeting/Options Page*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disablechat"></a>**ADMX_Conf/DisableChat**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting disables the Chat feature of NetMeeting.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disable Chat*
+-   GP name: *NoChat*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disablegeneralpage"></a>**ADMX_Conf/DisableGeneralPage**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting hides the General page of the Tools Options dialog. Users will not then be able to change personal identification and bandwidth settings.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Hide the General page*
+-   GP name: *NoGeneralPage*
+-   GP path: *Windows Components/NetMeeting/Options Page*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disablenewwhiteboard"></a>**ADMX_Conf/DisableNewWhiteboard**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting disables the T.126 whiteboard feature of NetMeeting.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disable Whiteboard*
+-   GP name: *NoNewWhiteBoard*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disableoldwhiteboard"></a>**ADMX_Conf/DisableOldWhiteboard**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting disables the 2.x whiteboard feature of NetMeeting.
+
+The 2.x whiteboard is available for compatibility with older versions of NetMeeting only.
+
+Deployers who do not need it can save bandwidth by disabling it.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disable NetMeeting 2.x Whiteboard*
+-   GP name: *NoOldWhiteBoard*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disablerds"></a>**ADMX_Conf/DisableRDS**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * Device
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting disables the remote desktop sharing feature of NetMeeting. Users will not be able to set it up or use it for controlling their computers remotely.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disable remote Desktop Sharing*
+-   GP name: *NoRDS*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disablesecuritypage"></a>**ADMX_Conf/DisableSecurityPage**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting hides the Security page of the Tools Options dialog. Users will not then be able to change call security and authentication settings.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Hide the Security page*
+-   GP name: *NoSecurityPage*
+-   GP path: *Windows Components/NetMeeting/Options Page*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-disablevideopage"></a>**ADMX_Conf/DisableVideoPage**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting hides the Video page of the Tools Options dialog. Users will not then be able to change video settings.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Hide the Video page*
+-   GP name: *NoVideoPage*
+-   GP path: *Windows Components/NetMeeting/Options Page*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-enableautoconfiguration"></a>**ADMX_Conf/EnableAutoConfiguration**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting configures NetMeeting to download settings for users each time it starts.
+
+The settings are downloaded from the URL listed in the "Configuration URL:" text box.
+
+Group Policy based settings have precedence over any conflicting settings set by downloading them from this URL.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Enable Automatic Configuration*
+-   GP name: *Use AutoConfig*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventaddingnewils"></a>**ADMX_Conf/PreventAddingNewILS**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from adding directory (ILS) servers to the list of those they can use for placing calls.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent adding Directory servers*
+-   GP name: *NoAddingDirectoryServers*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventaudio"></a>**ADMX_Conf/PreventAudio**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting disables the audio feature of NetMeeting. Users will not be able to send or receive audio.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disable Audio*
+-   GP name: *NoAudio*
+-   GP path: *Windows Components/NetMeeting/Audio & Video*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventautoaccept"></a>**ADMX_Conf/PreventAutoAccept**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from turning on automatic acceptance of incoming calls.
+
+This ensures that others cannot call and connect to NetMeeting when the user is not present.
+
+This policy is recommended when deploying NetMeeting to run always.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent automatic acceptance of Calls*
+-   GP name: *NoAutoAcceptCalls*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventchangedirectsound"></a>**ADMX_Conf/PreventChangeDirectSound**
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents prevents user from changing the DirectSound audio setting.  
+
+DirectSound provides much better audio quality, but older audio hardware may not support it.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent changing DirectSound Audio setting*
+-   GP name: *NoChangeDirectSound*
+-   GP path: *Windows Components/NetMeeting/Audio & Video*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventchangingcallmode"></a>**ADMX_Conf/PreventChangingCallMode**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents prevents users from changing the way calls are placed, either directly or via a gatekeeper server.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent changing Call placement method*
+-   GP name: *NoChangingCallMode*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventdirectoryservices"></a>**ADMX_Conf/PreventDirectoryServices**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting disables the directory feature of NetMeeting.
+
+Users will not logon to a directory (ILS) server when NetMeeting starts. Users will also not be able to view or place calls via a NetMeeting directory.
+
+This policy is for deployers who have their own location or calling schemes such as a Web site or an address book.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disable Directory services*
+-   GP name: *NoDirectoryServices*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventfullduplex"></a>**ADMX_Conf/PreventFullDuplex**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting disables full duplex mode audio. Users will not be able to listen to incoming audio while speaking into the microphone. Older audio hardware does not perform well when in full duplex mode.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Disable full duplex Audio*
+-   GP name: *NoFullDuplex*
+-   GP path: *Windows Components/NetMeeting/Audio & Video*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventgrantingcontrol"></a>**ADMX_Conf/PreventGrantingControl**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from allowing others in a conference to control what they have shared. This enforces a read-only mode; the other participants cannot change the data in the shared application.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent Control*
+-   GP name: *NoAllowControl*
+-   GP path: *Windows Components/NetMeeting/Application Sharing*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventreceivingfiles"></a>**ADMX_Conf/PreventReceivingFiles**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from receiving files from others in a conference.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent receiving files*
+-   GP name: *NoReceivingFiles*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventreceivingvideo"></a>**ADMX_Conf/PreventReceivingVideo**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from receiving video. Users will still be able to send video provided they have the hardware.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent receiving Video*
+-   GP name: *NoReceivingVideo*
+-   GP path: *Windows Components/NetMeeting/Audio & Video*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventsendingfiles"></a>**ADMX_Conf/PreventSendingFiles**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sending files to others in a conference.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent sending files*
+-   GP name: *NoSendingFiles*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventsendingvideo"></a>**ADMX_Conf/PreventSendingVideo**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sending video if they have the hardware. Users will still be able to receive video from others.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent sending Video*
+-   GP name: *NoSendingVideo*
+-   GP path: *Windows Components/NetMeeting/Audio & Video*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventsharing"></a>**ADMX_Conf/PreventSharing**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing anything themselves. They will still be able to view shared applications/desktops from others.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent Sharing*
+-   GP name: *NoSharing*
+-   GP path: *Windows Components/NetMeeting/Application Sharing*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventsharingcmdprompt"></a>**ADMX_Conf/PreventSharingCMDPrompt**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing command prompts. This prevents users from inadvertently sharing out applications, since command prompts can be used to launch other applications.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent Sharing Command Prompts*
+-   GP name: *NoSharingDosWindows*
+-   GP path: *Windows Components/NetMeeting/Application Sharing*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventsharingdesktop"></a>**ADMX_Conf/PreventSharingDesktop**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing the whole desktop. They will still be able to share individual applications.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent Desktop Sharing*
+-   GP name: *NoSharingDesktop*
+-   GP path: *Windows Components/NetMeeting/Application Sharing*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventsharingexplorer"></a>**ADMX_Conf/PreventSharingExplorer**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing Explorer windows. This prevents users from inadvertently sharing out applications, since Explorer windows can be used to launch other applications.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent Sharing Explorer windows*
+-   GP name: *NoSharingExplorer*
+-   GP path: *Windows Components/NetMeeting/Application Sharing*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventsharingtruecolor"></a>**ADMX_Conf/PreventSharingTrueColor**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing applications in true color.  True color sharing uses more bandwidth in a conference.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent Application Sharing in true color*
+-   GP name: *NoTrueColorSharing*
+-   GP path: *Windows Components/NetMeeting/Application Sharing*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-preventwebdirectory"></a>**ADMX_Conf/PreventWebDirectory**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from viewing directories as Web pages in a browser.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Prevent viewing Web directory*
+-   GP name: *NoWebDirectory*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-restrictftsendsize"></a>**ADMX_Conf/RestrictFTSendSize**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting limits the size of files users can send to others in a conference.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Limit the size of sent files*
+-   GP name: *MaxFileSendSize*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-setavthroughput"></a>**ADMX_Conf/SetAVThroughput**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting limits the bandwidth audio and video will consume when in a conference. This setting will guide NetMeeting to choose the right formats and send rate so that the bandwidth is limited.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Limit the bandwidth of Audio and Video*
+-   GP name: *MaximumBandwidth*
+-   GP path: *Windows Components/NetMeeting/Audio & Video*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-setintranetsupport"></a>**ADMX_Conf/SetIntranetSupport**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting sets the URL NetMeeting will display when the user chooses the Help Online Support command.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set the intranet support Web page*
+-   GP name: *IntranetSupportURL*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+<hr/>
+
+<!--Policy-->
+<a href="" id="admx-conf-setsecurityoptions"></a>**ADMX_Conf/SetSecurityOptions**
+
+<!--SupportedSKUs-->
+<table>
+<tr>
+    <th>Windows Edition</th>
+    <th>Supported?</th>
+</tr>
+<tr>
+    <td>Home</td>
+    <td><img src="images/crossmark.png" alt="cross mark" /></td>
+</tr>
+<tr>
+    <td>Pro</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Business</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Enterprise</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+<tr>
+    <td>Education</td>
+    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
+</tr>
+</table>
+
+<!--/SupportedSKUs-->
+<hr/>
+
+<!--Scope-->
+[Scope](./policy-configuration-service-provider.md#policy-scope):
+
+> [!div class = "checklist"]
+> * User
+
+<hr/>
+
+<!--/Scope-->
+<!--Description-->
+Available in Windows 10 Insider Preview Build 20185. This policy setting sets the level of security for both outgoing and incoming NetMeeting calls.
+<!--/Description-->
+
+> [!TIP]
+> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
+> 
+> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
+> 
+> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
+
+<!--ADMXBacked-->
+ADMX Info:  
+-   GP English name: *Set Call Security options*
+-   GP name: *CallSecurity*
+-   GP path: *Windows Components/NetMeeting*
+-   GP ADMX file name: *Conf.admx*
+
+<!--/ADMXBacked-->
+<!--/Policy-->
+
+Footnotes:
+
+- 1 - Available in Windows 10, version 1607.
+- 2 - Available in Windows 10, version 1703.
+- 3 - Available in Windows 10, version 1709.
+- 4 - Available in Windows 10, version 1803.
+- 5 - Available in Windows 10, version 1809.
+- 6 - Available in Windows 10, version 1903.
+- 7 - Available in Windows 10, version 1909.
+- 8 - Available in Windows 10, version 2004.
+
+<!--/Policies-->
\ No newline at end of file

From 0820f6e01fb3960b91a48de18f8775cdf11e933c Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Thu, 20 Aug 2020 17:03:05 +0300
Subject: [PATCH 25/38] Update configure-endpoints-vdi.md

Minor modification to ensure customers don't miss the step.
I've seen cases where customers did not copy the CMD file and only pasted in the PS1 file and this caused onboarding to fial.
---
 .../microsoft-defender-atp/configure-endpoints-vdi.md           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md
index 32e7e448f6..771c2b866b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md
@@ -63,7 +63,7 @@ The following steps will guide you through onboarding VDI devices and will highl
 
     1. Click **Download package** and save the .zip file.
 
-2. Copy the extracted files from the .zip into `golden/master` image under the path `C:\WINDOWS\System32\GroupPolicy\Machine\Scripts\Startup`. You should have a folder called `WindowsDefenderATPOnboardingPackage` containing the file `WindowsDefenderATPOnboardingScript.cmd`.
+2. Copy all the extracted files from the .zip into `golden/master` image under the path `C:\WINDOWS\System32\GroupPolicy\Machine\Scripts\Startup`. You should have a folder called `WindowsDefenderATPOnboardingPackage` containing the file `WindowsDefenderATPOnboardingScript.cmd`.
 
     >[!NOTE]
     >If you don't see the `C:\WINDOWS\System32\GroupPolicy\Machine\Scripts\Startup` folder, it might be hidden. You'll need to choose the **Show hidden files and folders** option from file explorer.

From a31f68d0b47e11fec69b5d6d8c949d8000405867 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 20 Aug 2020 14:07:00 -0700
Subject: [PATCH 26/38] Applied note style and Acrolinx spelling: "estrict"

---
 .../restrict-access-to-only-trusted-devices.md               | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md b/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md
index 56b9898e53..3a0dc80f39 100644
--- a/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md
+++ b/windows/security/threat-protection/windows-firewall/restrict-access-to-only-trusted-devices.md
@@ -1,6 +1,6 @@
 ---
 title: Restrict access to only trusted devices (Windows 10)
-description: estrict access to only trusted devices
+description: Restrict access to only trusted devices
 ms.assetid: bc1f49a4-7d54-4857-8af9-b7c79f47273b
 ms.reviewer: 
 ms.author: dansimp
@@ -27,7 +27,8 @@ Your organizational network likely has a connection to the Internet. You also li
 
 To mitigate this risk, you must be able to isolate the devices you trust, and restrict their ability to receive unsolicited network traffic from untrusted devices. By using connection security and firewall rules available in Windows Defender Firewall with Advanced Security, you can logically isolate the devices that you trust by requiring that all unsolicited inbound network traffic be authenticated. Authentication ensures that each device or user can positively identify itself by using credentials that are trusted by the other device. Connection security rules can be configured to use IPsec with the Kerberos V5 protocol available in Active Directory, or certificates issued by a trusted certification authority as the authentication method.
 
->**Note:**  Because the primary authentication method recommended for devices that are running Windows is to use the Kerberos V5 protocol with membership in an Active Directory domain, this guide refers to this logical separation of computers as *domain isolation*, even when certificates are used to extend the protection to devices that are not part of an Active Directory domain.
+> [!NOTE]
+> Because the primary authentication method recommended for devices that are running Windows is to use the Kerberos V5 protocol with membership in an Active Directory domain, this guide refers to this logical separation of computers as *domain isolation*, even when certificates are used to extend the protection to devices that are not part of an Active Directory domain.
 
 The protection provided by domain isolation can help you comply with regulatory and legislative requirements, such as those found in the Federal Information Security Management Act of 2002 (FISMA), the Sarbanes-Oxley Act of 2002, the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other government and industry regulations.
 

From cb4df1b00e3a7d0e15de0031a326644ff8d6e18b Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 20 Aug 2020 14:20:36 -0700
Subject: [PATCH 27/38] Acrolinx spelling, punctuation, some grammar fixes

---
 .../troubleshooting-uwp-firewall.md                | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
index 1ea6cce448..6071427eda 100644
--- a/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
+++ b/windows/security/threat-protection/windows-firewall/troubleshooting-uwp-firewall.md
@@ -27,7 +27,7 @@ UWP app network connectivity issues are typically caused by:
 
 1. The UWP app was not permitted to receive loopback traffic. This must be configured. By default, UWP apps are not allowed to receive loopback traffic.
 2. The UWP app is missing the proper capability tokens.
-3. The private range is configured incorrectly. For example, the private ranges is set incorrectly through GP/MDM policies, etc.
+3. The private range is configured incorrectly. For example, the private range is set incorrectly through GP/MDM policies, etc.
 
 To understand these causes more thoroughly, there are several concepts to review.
 
@@ -51,24 +51,24 @@ traces collected on previous releases of Windows.
 
 ## Debugging UWP App Loopback scenarios
 
-If you need to establis a TCP/IP connection between two processes on the same host where one of them is a UWP app, you must enable loopback.
+If you need to establish a TCP/IP connection between two processes on the same host where one of them is a UWP app, you must enable loopback.
 
 To enable loopback for client outbound connections, run the following at a command prompt:
 
-```dos
+```console
 CheckNetIsolation.exe LoopbackExempt -a -n=<AppContainer or Package Family>
 ```
 
 To enable loopback for server inbound connections,  run the following at a
 command prompt:
-```dos
+```console
 CheckNetIsolation.exe LoopbackExempt -is -n=<AppContainer or Package Family>
 ```
 You can ensure loopback is enabled by checking the appx manifests of both the sender and receiver.
 
 For more information about loopback scenarios, see [Communicating with
 localhost
-(loopback)](https://docs.microsoft.com/windows/iot-core/develop-your-app/loopback)
+(loopback)](https://docs.microsoft.com/windows/iot-core/develop-your-app/loopback).
 
 ## Debugging Live Drops
 
@@ -76,7 +76,7 @@ If the issue happened recently, but you find you are not able to reproduce the i
 
 If you can consistently reproduce the issue, then you can run the following in an admin command prompt to gather a fresh trace:
 
-```DOS
+```console
 Netsh wfp capture start keywords=19
 <Run UWP app>
 Netsh wfp capture stop
@@ -760,7 +760,7 @@ PrivateNetwork Outbound Default Rule filter.
 
 The following PrivateNetwork Outbound Default Rule filters have conditions for matching Intranet IP addresses. Since the expected Intranet target address,
 10.1.1.1, is not included in these filters it becomes clear that the address is not in the private range. Check the policies that configure the private range
-on the device (MDM, Group Policy, etc) and make sure it includes the private targetaddress you wanted to reach.
+on the device (MDM, Group Policy, etc.) and make sure it includes the private target address you wanted to reach.
 
 **PrivateNetwork Outbound Default Rule Filters, Wfpdiag-Case-5.xml**
 ```xml

From 6288eb39f606acbabfe89303dfd0d8f04aa08105 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 20 Aug 2020 14:24:16 -0700
Subject: [PATCH 28/38] Applied note style

---
 ...implementing-a-certificate-based-isolation-policy-design.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
index 573b76aa96..ec38163418 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-certificate-based-isolation-policy-design.md
@@ -25,7 +25,8 @@ ms.date: 08/17/2017
 
 This parent checklist includes cross-reference links to important concepts about using certificates as an authentication option in either a domain isolation or server isolation design.
 
->**Note:**  Complete the tasks in this checklist in order. When a reference link takes you to a procedure, return to this topic after you complete the steps in that procedure so that you can proceed with the remaining tasks in this checklist
+> [!NOTE]
+> Complete the tasks in this checklist in order. When a reference link takes you to a procedure, return to this topic after you complete the steps in that procedure so that you can proceed with the remaining tasks in this checklist
 
 **Checklist: Implementing certificate-based authentication**
 

From 8032365eb3e8c71afe42efeee8ba64ee24e5ca79 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 20 Aug 2020 14:25:29 -0700
Subject: [PATCH 29/38] Applied note style

---
 .../checklist-implementing-a-domain-isolation-policy-design.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md
index d946ecab9e..be895718b3 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-domain-isolation-policy-design.md
@@ -25,7 +25,8 @@ ms.date: 08/17/2017
 
 This parent checklist includes cross-reference links to important concepts about the domain isolation policy design. It also contains links to subordinate checklists that will help you complete the tasks that are required to implement this design.
 
->**Note:**  Complete the tasks in this checklist in order. When a reference link takes you to a procedure, return to this topic after you complete the steps in that procedure so that you can proceed with the remaining tasks in this checklist.
+> [!NOTE]
+> Complete the tasks in this checklist in order. When a reference link takes you to a procedure, return to this topic after you complete the steps in that procedure so that you can proceed with the remaining tasks in this checklist.
 
 The procedures in this section use the Group Policy MMC snap-ins to configure the GPOs, but you can also use Windows PowerShell to configure GPOs. For more info, see [Windows Defender Firewall with Advanced Security Administration with Windows PowerShell](windows-firewall-with-advanced-security-administration-with-windows-powershell.md).
 

From b30d1223362cfbc94b3205252985ff69239a782e Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 20 Aug 2020 14:26:38 -0700
Subject: [PATCH 30/38] Applied note style

---
 ...implementing-a-standalone-server-isolation-policy-design.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md
index 2ed1fd1e5e..0435b698be 100644
--- a/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/checklist-implementing-a-standalone-server-isolation-policy-design.md
@@ -27,7 +27,8 @@ This checklist contains procedures for creating a server isolation policy design
 
 This parent checklist includes cross-reference links to important concepts about the domain isolation policy design. It also contains links to subordinate checklists that will help you complete the tasks that are required to implement this design.
 
->**Note:**  Complete the tasks in this checklist in order. When a reference link takes you to a procedure, return to this topic after you complete the steps in that procedure so that you can proceed with the remaining tasks in this checklist.
+> [!NOTE]
+> Complete the tasks in this checklist in order. When a reference link takes you to a procedure, return to this topic after you complete the steps in that procedure so that you can proceed with the remaining tasks in this checklist.
 
 **Checklist: Implementing a standalone server isolation policy design**
 

From a17a245dad3c529ef3197fb16ec62052cf8cbbb6 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 20 Aug 2020 14:27:33 -0700
Subject: [PATCH 31/38] Applied "Important" note style

---
 .../windows-firewall/domain-isolation-policy-design.md        | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md
index b618fe6d2d..df754926bf 100644
--- a/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/domain-isolation-policy-design.md
@@ -50,8 +50,8 @@ Characteristics of this design, as shown in the diagram, include the following:
 -   Untrusted non-domain members (area D) - Devices that are not managed by your organization and have an unknown security configuration must have access only to those devices required for your organization to correctly conduct its business. Domain isolation exists to put a logical barrier between these untrusted Devices and your organization's devices.
 
 After implementing this design, your administrative team will have centralized management of the firewall and connection security rules applied to the devices in your organization.
-
->**Important:**  This design builds on the [Basic Firewall Policy Design](basic-firewall-policy-design.md), and in turn serves as the foundation for the [Server Isolation Policy Design](server-isolation-policy-design.md). If you plan to deploy all three, we recommend that you do the design work for all three together, and then deploy in the sequence presented.
+> [!IMPORTANT]
+> This design builds on the [Basic Firewall Policy Design](basic-firewall-policy-design.md), and in turn serves as the foundation for the [Server Isolation Policy Design](server-isolation-policy-design.md). If you plan to deploy all three, we recommend that you do the design work for all three together, and then deploy in the sequence presented.
 
 This design can be applied to Devices that are part of an Active Directory forest. Active Directory is required to provide the centralized management and deployment of Group Policy objects that contain the connection security rules.
 

From 3f22784ad8528578b7357af0da648fa55f76497b Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 20 Aug 2020 14:28:55 -0700
Subject: [PATCH 32/38] Applied "Important" note style

---
 ...als-to-a-windows-firewall-with-advanced-security-design.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md b/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md
index 6f6cd2d1a1..314389955f 100644
--- a/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md
+++ b/windows/security/threat-protection/windows-firewall/mapping-your-deployment-goals-to-a-windows-firewall-with-advanced-security-design.md
@@ -24,8 +24,8 @@ ms.date: 04/19/2017
 -   Windows Server 2016
 
 After you finish reviewing the existing Windows Firewall with Advanced Security implementation goals and you determine which goals are important to your specific deployment, you can map those goals to a specific Windows Firewall with Advanced Security design.
-
->**Important:**  The first three designs presented in this guide build on each other to progress from simpler to more complex. Therefore during deployment, consider implementing them in the order presented. Each deployed design also provides a stable position from which to evaluate your progress, and to make sure that your goals are being met before you continue to the next design.
+> [!IMPORTANT]
+> The first three designs presented in this guide build on each other to progress from simpler to more complex. Therefore during deployment, consider implementing them in the order presented. Each deployed design also provides a stable position from which to evaluate your progress, and to make sure that your goals are being met before you continue to the next design.
 
 Use the following table to determine which Windows Firewall with Advanced Security design maps to the appropriate combination of Windows Firewall with Advanced Security implementation goals for your organization. This table refers only to the Windows Firewall with Advanced Security designs as described in this guide. However, you can create a hybrid or custom Windows Firewall with Advanced Security design by using any combination of the Windows Firewall with Advanced Security implementation goals to meet the needs of your organization.
 

From 29d2a49f6fe398ec2bf587cabfe3b2a59a90722f Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 20 Aug 2020 14:30:11 -0700
Subject: [PATCH 33/38] Applied "Important" note style

---
 .../windows-firewall/server-isolation-policy-design.md         | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md b/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md
index 23a6808219..7d2631e576 100644
--- a/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md
+++ b/windows/security/threat-protection/windows-firewall/server-isolation-policy-design.md
@@ -43,7 +43,8 @@ Characteristics of this design include the following:
 
 To add support for server isolation, you must ensure that the authentication methods are compatible with the requirements of the isolated server. For example, if you want to authorize user accounts that are members of a NAG in addition to authorizing computer accounts, you must enable both user and computer authentication in your connection security rules.
 
->**Important:**  This design builds on the [Domain Isolation Policy Design](domain-isolation-policy-design.md), which in turn builds on the [Basic Firewall Policy Design](basic-firewall-policy-design.md). If you plan to deploy all three designs, do the design work for all three together, and then deploy in the sequence presented.
+> [!IMPORTANT]
+> This design builds on the [Domain Isolation Policy Design](domain-isolation-policy-design.md), which in turn builds on the [Basic Firewall Policy Design](basic-firewall-policy-design.md). If you plan to deploy all three designs, do the design work for all three together, and then deploy in the sequence presented.
 
 This design can be applied to devices that are part of an Active Directory forest. Active Directory is required to provide the centralized management and deployment of Group Policy objects that contain the connection security rules.
 

From c33a891b0ad07fba35fd473ac75ea19a7619f795 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Thu, 20 Aug 2020 14:31:34 -0700
Subject: [PATCH 34/38] Applied "Caution" note style

---
 ...indows-firewall-with-advanced-security-deployment-guide.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md
index dbfd48ddf6..a600f54944 100644
--- a/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md
+++ b/windows/security/threat-protection/windows-firewall/windows-firewall-with-advanced-security-deployment-guide.md
@@ -46,8 +46,8 @@ After you select your design and gather the required information about the zones
 -   [Certificate-based Isolation Policy Design](certificate-based-isolation-policy-design.md)
 
 Use the checklists in [Implementing Your Windows Defender Firewall with Advanced Security Design Plan](implementing-your-windows-firewall-with-advanced-security-design-plan.md) to determine how best to use the instructions in this guide to deploy your particular design.
-
->**Caution:**  We recommend that you use the techniques documented in this guide only for GPOs that must be deployed to the majority of the devices in your organization, and only when the OU hierarchy in your Active Directory domain does not match the deployment needs of these GPOs. These characteristics are typical of GPOs for server and domain isolation scenarios, but are not typical of most other GPOs. When the OU hierarchy supports it, deploy a GPO by linking it to the lowest level OU that contains all of the accounts to which the GPO applies.
+> [!CAUTION]
+> We recommend that you use the techniques documented in this guide only for GPOs that must be deployed to the majority of the devices in your organization, and only when the OU hierarchy in your Active Directory domain does not match the deployment needs of these GPOs. These characteristics are typical of GPOs for server and domain isolation scenarios, but are not typical of most other GPOs. When the OU hierarchy supports it, deploy a GPO by linking it to the lowest level OU that contains all of the accounts to which the GPO applies.
 
 In a large enterprise environment with hundreds or thousands of GPOs, using this technique with too many GPOs can result in user or device accounts that are members of an excessive number of groups; this can result in network connectivity problems if network protocol limits are exceeded. 
  

From 879e57a863e683e10aea913b230ce21b24d9ed9b Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Thu, 20 Aug 2020 16:32:08 -0700
Subject: [PATCH 35/38] Added Phase 0 policies

---
 windows/client-management/mdm/TOC.md          |    7 +-
 .../policy-configuration-service-provider.md  |  159 ++
 .../mdm/policy-csp-admx-ciphersuiteorder.md   |  203 --
 .../mdm/policy-csp-admx-com.md                |  197 --
 .../mdm/policy-csp-admx-conf.md               | 2431 -----------------
 .../mdm/policy-csps-admx-backed.md            |   45 +
 6 files changed, 210 insertions(+), 2832 deletions(-)
 delete mode 100644 windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
 delete mode 100644 windows/client-management/mdm/policy-csp-admx-com.md
 delete mode 100644 windows/client-management/mdm/policy-csp-admx-conf.md

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 476d73c694..0bf40d8bd9 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -171,11 +171,16 @@
 #### [AboveLock](policy-csp-abovelock.md)
 #### [Accounts](policy-csp-accounts.md)
 #### [ActiveXControls](policy-csp-activexcontrols.md)
+#### [ADMX_AddRemovePrograms](policy-csp-admx-addremoveprograms.md)
+#### [ADMX_AppCompat](policy-csp-admx-appcompat.md)
+#### [ADMX_AuditSettings](policy-csp-admx-auditsettings.md)
+#### [ADMX_DnsClient](policy-csp-admx-dnsclient.md)
+#### [ADMX_EventForwarding](policy-csp-admx-eventforwarding.md)
 #### [ApplicationDefaults](policy-csp-applicationdefaults.md)
 #### [ApplicationManagement](policy-csp-applicationmanagement.md)
 #### [AppRuntime](policy-csp-appruntime.md)
 #### [AppVirtualization](policy-csp-appvirtualization.md)
-#### [AttachmentManager](policy-csp-attachmentmanager.md)
+#### [AttachmentManager](policy-csp-attachmentmanager.md))
 #### [Audit](policy-csp-audit.md)
 #### [Authentication](policy-csp-authentication.md)
 #### [Autoplay](policy-csp-autoplay.md)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 5b3e186835..2923b2da09 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -168,6 +168,165 @@ The following diagram shows the Policy configuration service provider in tree fo
   </dd>
 </dl>
 
+### ADMX_AddRemovePrograms policies
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-defaultcategory" id="admx-addremoveprograms-defaultcategory">ADMX_AddRemovePrograms/DefaultCategory</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddfromcdorfloppy" id="admx-addremoveprograms-noaddfromcdorfloppy">ADMX_AddRemovePrograms/NoAddFromCDorFloppy</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddfrominternet" id="admx-addremoveprograms-noaddfrominternet">ADMX_AddRemovePrograms/NoAddFromInternet</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddfromnetwork" id="admx-addremoveprograms-noaddfromnetwork">ADMX_AddRemovePrograms/NoAddFromNetwork</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddpage" id="admx-addremoveprograms-noaddpage">ADMX_AddRemovePrograms/NoAddPage</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddremoveprograms" id="admx-addremoveprograms-noaddremoveprograms">ADMX_AddRemovePrograms/NoAddRemovePrograms</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-nochooseprogramspage" id="admx-addremoveprograms-nochooseprogramspage">ADMX_AddRemovePrograms/NoChooseProgramsPage</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noremovepage" id="admx-addremoveprograms-noremovepage">ADMX_AddRemovePrograms/NoRemovePage</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noservices" id="admx-addremoveprograms-noservices">ADMX_AddRemovePrograms/NoServices</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-nosupportinfo" id="admx-addremoveprograms-nosupportinfo">ADMX_AddRemovePrograms/NoSupportInfo</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-nowindowssetuppage" id="admx-addremoveprograms-nowindowssetuppage">ADMX_AddRemovePrograms/NoWindowsSetupPage</a>
+  </dd>
+</dl>
+
+### ADMX_AppCompat policies
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-appcompat.md#admx-appcompat-appcompatprevent16bitmach" id="admx-appcompat-appcompatprevent16bitmach">ADMX_AppCompat/AppCompatPrevent16BitMach</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-appcompat.md#admx-appcompat-appcompatremoveprogramcompatproppage" id="admx-appcompat-appcompatremoveprogramcompatproppage">ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffapplicationimpacttelemetry" id="admx-appcompat-appcompatturnoffapplicationimpacttelemetry">ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffswitchback" id="admx-appcompat-appcompatturnoffswitchback">ADMX_AppCompat/AppCompatTurnOffSwitchBack</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffengine" id="admx-appcompat-appcompatturnoffengine">ADMX_AppCompat/AppCompatTurnOffEngine</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffprogramcompatibilityassistant_1" id="admx-appcompat-appcompatturnoffprogramcompatibilityassistant_1">ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffprogramcompatibilityassistant_2" id="admx-appcompat-appcompatturnoffprogramcompatibilityassistant_2">ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffuseractionrecord" id="admx-appcompat-appcompatturnoffuseractionrecord">ADMX_AppCompat/AppCompatTurnOffUserActionRecord</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffprograminventory" id="admx-appcompat-appcompatturnoffprograminventory">ADMX_AppCompat/AppCompatTurnOffProgramInventory</a>
+  </dd>
+</dl>
+
+### ADMX_AuditSettings policies
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-auditsettings.md#admx-auditsettings-includecmdline" id="admx-auditsettings-includecmdline">ADMX_AuditSettings/IncludeCmdLine</a>
+  </dd>
+</dl>
+
+### ADMX_DnsClient policies
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-allowfqdnnetbiosqueries" id="admx-dnsclient-dns-allowfqdnnetbiosqueries">ADMX_DnsClient/DNS_AllowFQDNNetBiosQueries</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-appendtomultilabelname" id="admx-dnsclient-dns-appendtomultilabelname">ADMX_DnsClient/DNS_AppendToMultiLabelName</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-domain" id="admx-dnsclient-dns-domain">ADMX_DnsClient/DNS_Domain</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-domainnamedevolutionlevel" id="admx-dnsclient-dns-domainnamedevolutionlevel">ADMX_DnsClient/DNS_DomainNameDevolutionLevel</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-idnencoding" id="admx-dnsclient-dns-idnencoding">ADMX_DnsClient/DNS_IdnEncoding</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-idnmapping" id="admx-dnsclient-dns-idnmapping">ADMX_DnsClient/DNS_IdnMapping</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-nameserver" id="admx-dnsclient-dns-nameserver">ADMX_DnsClient/DNS_NameServer</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-preferlocalresponsesoverlowerorderdns" id="admx-dnsclient-dns-preferlocalresponsesoverlowerorderdns">ADMX_DnsClient/DNS_PreferLocalResponsesOverLowerOrderDns</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-primarydnssuffix" id="admx-dnsclient-dns-primarydnssuffix">ADMX_DnsClient/DNS_PrimaryDnsSuffix</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registeradaptername" id="admx-dnsclient-dns-registeradaptername">ADMX_DnsClient/DNS_RegisterAdapterName</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registerreverselookup" id="admx-dnsclient-dns-registerreverselookup">ADMX_DnsClient/DNS_RegisterReverseLookup</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationenabled" id="admx-dnsclient-dns-registrationenabled">ADMX_DnsClient/DNS_RegistrationEnabled</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationoverwritesinconflict" id="admx-dnsclient-dns-registrationoverwritesinconflict">ADMX_DnsClient/DNS_RegistrationOverwritesInConflict</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationrefreshinterval" id="admx-dnsclient-dns-registrationrefreshinterval">ADMX_DnsClient/DNS_RegistrationRefreshInterval</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationttl" id="admx-dnsclient-dns-registrationttl">ADMX_DnsClient/DNS_RegistrationTtl</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-searchlist" id="admx-dnsclient-dns-searchlist">ADMX_DnsClient/DNS_SearchList</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-smartmultihomednameresolution" id="admx-dnsclient-dns-smartmultihomednameresolution">ADMX_DnsClient/DNS_SmartMultiHomedNameResolution</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-smartprotocolreorder" id="admx-dnsclient-dns-smartprotocolreorder">ADMX_DnsClient/DNS_SmartProtocolReorder</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-updatesecuritylevel" id="admx-dnsclient-dns-updatesecuritylevel">ADMX_DnsClient/DNS_UpdateSecurityLevel</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-updatetopleveldomainzones" id="admx-dnsclient-dns-updatetopleveldomainzones">ADMX_DnsClient/DNS_UpdateTopLevelDomainZones</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-usedomainnamedevolution" id="admx-dnsclient-dns-usedomainnamedevolution">ADMX_DnsClient/DNS_UseDomainNameDevolution</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-Offmulticast" id="admx-dnsclient-dns-Offmulticast">ADMX_DnsClient/Turn_Off_Multicast</a>
+  </dd>
+</dl>
+
+### ADMX_EventForwarding policies
+
+<dl>
+  <dd>
+    <a href="./policy-csp-admx-eventforwarding.md#admx_eventforwarding-forwarderresourceusage" id="admx_eventforwarding-forwarderresourceusage">ADMX_EventForwarding/ForwarderResourceUsage</a>
+  </dd>
+  <dd>
+    <a href="./policy-csp-admx-eventforwarding.md#admx_eventforwarding-subscriptionmanager" id="admx_eventforwarding-subscriptionmanager">ADMX_EventForwarding/SubscriptionManager</a>
+  </dd>
+</dl>
+
 ### ApplicationDefaults policies
 
 <dl>
diff --git a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md b/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
deleted file mode 100644
index 306231cdcf..0000000000
--- a/windows/client-management/mdm/policy-csp-admx-ciphersuiteorder.md
+++ /dev/null
@@ -1,203 +0,0 @@
----
-title: Policy CSP - ADMX_CipherSuiteOrder
-description: Policy CSP - ADMX_CipherSuiteOrder
-ms.author: dansimp
-ms.localizationpriority: medium
-ms.topic: article
-ms.prod: w10
-ms.technology: windows
-author: manikadhiman
-ms.date: 08/17/2020
-ms.reviewer: 
-manager: dansimp
----
-
-# Policy CSP - ADMX_CipherSuiteOrder
-
-> [!WARNING]
-> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
-
-<hr/>
-
-<!--Policies-->
-## ADMX_CipherSuiteOrder policies  
-
-<dl>
-  <dd>
-    <a href="#admx-ciphersuiteorder-sslciphersuiteorder">ADMX_CipherSuiteOrder/SSLCipherSuiteOrder</a>
-  </dd>
-  <dd>
-    <a href="#admx-ciphersuiteorder-sslcurveorder">ADMX_CipherSuiteOrder/SSLCurveOrder</a>
-  </dd>
-</dl>
-
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-ciphersuiteorder-sslciphersuiteorder"></a>**ADMX_CipherSuiteOrder/SSLCipherSuiteOrder**  
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the cipher suites used by the Secure Socket Layer (SSL).
-
-If you enable this policy setting, SSL cipher suites are prioritized in the order specified.
-
-If you disable or do not configure this policy setting, default cipher suite order is used.
-
-For information about supported cipher suites, see [Cipher Suites in TLS/SSL (Schannel SSP)](https://go.microsoft.com/fwlink/?LinkId=517265).
-
-<!--/Description-->
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *SSL Cipher Suite Order*
--   GP name: *Functions*
--   GP path: *Network/SSL Configuration Settings*
--   GP ADMX file name: *CipherSuiteOrder.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-<hr/>
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-ciphersuiteorder-sslcurveorder"></a>**ADMX_CipherSuiteOrder/SSLCurveOrder**  
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting determines the priority order of ECC curves used with ECDHE cipher suites.
-
-If you enable this policy setting, ECC curves are prioritized in the order specified. Enter one curve name per line.
-
-If you disable or do not configure this policy setting, the default ECC curve order is used.
-
-The default curve order is as follows:
-
-- curve25519
-- NistP256
-- NistP384
-
-To see all the curves supported on the system, enter the following command:
-
-``` cmd
-CertUtil.exe -DisplayEccCurve
-```
-
-<!--/Description-->
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *ECC Curve Order*
--   GP name: *EccCurves*
--   GP path: *Network/SSL Configuration Settings*
--   GP ADMX file name: *CipherSuiteOrder.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-<hr/>
-
-Footnotes:
-
-- 1 - Available in Windows 10, version 1607.
-- 2 - Available in Windows 10, version 1703.
-- 3 - Available in Windows 10, version 1709.
-- 4 - Available in Windows 10, version 1803.
-- 5 - Available in Windows 10, version 1809.
-- 6 - Available in Windows 10, version 1903.
-- 7 - Available in Windows 10, version 1909.
-- 8 - Available in Windows 10, version 2004.
-
-<!--/Policies-->
-
diff --git a/windows/client-management/mdm/policy-csp-admx-com.md b/windows/client-management/mdm/policy-csp-admx-com.md
deleted file mode 100644
index ff361f80d2..0000000000
--- a/windows/client-management/mdm/policy-csp-admx-com.md
+++ /dev/null
@@ -1,197 +0,0 @@
----
-title: Policy CSP - ADMX_COM
-description: Policy CSP - ADMX_COM
-ms.author: dansimp
-ms.localizationpriority: medium
-ms.topic: article
-ms.prod: w10
-ms.technology: windows
-author: manikadhiman
-ms.date: 08/18/2020
-ms.reviewer: 
-manager: dansimp
----
-
-# Policy CSP - ADMX_COM
-
-> [!WARNING]
-> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
-
-<hr/>
-
-<!--Policies-->
-## ADMX_COM policies  
-
-<dl>
-  <dd>
-    <a href="#admx-com-appmgmt-com-searchforclsid-1">ADMX_COM/AppMgmt_COM_SearchForCLSID_1</a>
-  </dd>
-  <dd>
-    <a href="#admx-com-appmgmt-com-searchforclsid-2">ADMX_COM/AppMgmt_COM_SearchForCLSID_2</a>
-  </dd>
-</dl>
-
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-com-appmgmt-com-searchforclsid-1"></a>**ADMX_COM/AppMgmt_COM_SearchForCLSID_1**  
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting directs the system to search Active Directory for missing Component Object Model (COM) components that a program requires.
-
-Many Windows programs, such as the MMC snap-ins, use the interfaces provided by the COM components. These programs cannot perform all their functions unless Windows has internally registered the required components.
-
-If you enable this policy setting and a component registration is missing, the system searches for it in Active Directory and, if it is found, downloads it. The resulting searches might make some programs start or run slowly.
-
-If you disable or do not configure this policy setting, the program continues without the registration. As a result, the program might not perform all its functions, or it might stop.
-
-This setting appears in the Computer Configuration and User Configuration folders. If both settings are configured, the setting in Computer Configuration takes precedence over the setting in User Configuration.
-
-<!--/Description-->
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Download missing COM components*
--   GP name: *COMClassStore*
--   GP path: *System*
--   GP ADMX file name: *COM.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-<hr/>
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-com-appmgmt-com-searchforclsid-2"></a>**ADMX_COM/AppMgmt_COM_SearchForCLSID_2**  
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting directs the system to search Active Directory for missing Component Object Model (COM) components that a program requires.
-
-Many Windows programs, such as the MMC snap-ins, use the interfaces provided by the COM components. These programs cannot perform all their functions unless Windows has internally registered the required components.
-
-If you enable this policy setting and a component registration is missing, the system searches for it in Active Directory and, if it is found, downloads it. The resulting searches might make some programs start or run slowly.
-
-If you disable or do not configure this policy setting, the program continues without the registration. As a result, the program might not perform all its functions, or it might stop.
-
-This setting appears in the Computer Configuration and User Configuration folders. If both settings are configured, the setting in Computer Configuration takes precedence over the setting in User Configuration.
-
-<!--/Description-->
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable.  For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Download missing COM components*
--   GP name: *COMClassStore*
--   GP path: *System*
--   GP ADMX file name: *COM.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-<hr/>
-
-Footnotes:
-
-- 1 - Available in Windows 10, version 1607.
-- 2 - Available in Windows 10, version 1703.
-- 3 - Available in Windows 10, version 1709.
-- 4 - Available in Windows 10, version 1803.
-- 5 - Available in Windows 10, version 1809.
-- 6 - Available in Windows 10, version 1903.
-- 7 - Available in Windows 10, version 1909.
-- 8 - Available in Windows 10, version 2004.
-
-<!--/Policies-->
-
diff --git a/windows/client-management/mdm/policy-csp-admx-conf.md b/windows/client-management/mdm/policy-csp-admx-conf.md
deleted file mode 100644
index 931927fe44..0000000000
--- a/windows/client-management/mdm/policy-csp-admx-conf.md
+++ /dev/null
@@ -1,2431 +0,0 @@
----
-title: Policy CSP - ADMX_Conf
-description: Policy CSP - ADMX_Conf
-ms.author: dansimp
-ms.topic: article
-ms.prod: w10
-ms.technology: windows
-author: manikadhiman
-ms.localizationpriority: medium
-ms.date: 08/18/2020
-ms.reviewer: 
-manager: dansimp
----
-
-# Policy CSP - ADMX_Conf
-
-> [!WARNING]
-> Some information relates to prereleased products, which may be substantially modified before it's commercially released. Microsoft makes no warranties, expressed or implied, concerning the information provided here.
-
-<hr/>
-
-<!--Policies-->
-## Policy CSP - ADMX_Conf  
-
-<dl>
-  <dd>
-    <a href="#admx-conf-allowpersistautoacceptcalls">ADMX_Conf/AllowPersistAutoAcceptCalls
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disableadvcallingbutton">ADMX_Conf/DisableAdvCallingButton
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disableappsharing">ADMX_Conf/DisableAppSharing
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disableaudiopage">ADMX_Conf/DisableAudioPage
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disablechat">ADMX_Conf/DisableChat
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disablegeneralpage">ADMX_Conf/DisableGeneralPage
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disablenewwhiteboard">ADMX_Conf/DisableNewWhiteboard
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disableoldwhiteboard">ADMX_Conf/DisableOldWhiteboard
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disablerds">ADMX_Conf/DisableRDS
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disablesecuritypage">ADMX_Conf/DisableSecurityPage
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-disablevideopage">ADMX_Conf/DisableVideoPage
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-enableautoconfiguration">ADMX_Conf/EnableAutoConfiguration
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventaddingnewils">ADMX_Conf/PreventAddingNewILS
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventaudio">ADMX_Conf/PreventAudio
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventautoaccept">ADMX_Conf/PreventAutoAccept
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventchangedirectsound">ADMX_Conf/PreventChangeDirectSound
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventchangingcallmode">ADMX_Conf/PreventChangingCallMode
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventdirectoryservices">ADMX_Conf/PreventDirectoryServices
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventfullduplex">ADMX_Conf/PreventFullDuplex
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventgrantingcontrol">ADMX_Conf/PreventGrantingControl
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventreceivingfiles">ADMX_Conf/PreventReceivingFiles
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventreceivingvideo">ADMX_Conf/PreventReceivingVideo
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventsendingfiles">ADMX_Conf/PreventSendingFiles
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventsendingvideo">ADMX_Conf/PreventSendingVideo
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventsharing">ADMX_Conf/PreventSharing
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventsharingcmdprompt">ADMX_Conf/PreventSharingCMDPrompt
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventsharingdesktop">ADMX_Conf/PreventSharingDesktop
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventsharingexplorer">ADMX_Conf/PreventSharingExplorer
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventsharingtruecolor">ADMX_Conf/PreventSharingTrueColor
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-preventwebdirectory">ADMX_Conf/PreventWebDirectory
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-restrictftsendsize">ADMX_Conf/RestrictFTSendSize
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-setavthroughput">ADMX_Conf/SetAVThroughput
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-setintranetsupport">ADMX_Conf/SetIntranetSupport
-    </a>
-  </dd>
-  <dd>
-    <a href="#admx-conf-setsecurityoptions">ADMX_Conf/SetSecurityOptions
-    </a>
-  </dd>
-</dl>
-
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-allowpersistautoacceptcalls"></a>**ADMX_Conf/AllowPersistAutoAcceptCalls**  
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting makes the automatic acceptance of incoming calls persistent.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Allow persisting automatic acceptance of Calls*
--   GP name: *PersistAutoAcceptCalls*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disableadvcallingbutton"></a>**ADMX_Conf/DisableAdvCallingButton**  
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the Advanced Calling button on the General Options page. Users will not then be able to change the call placement method and the servers used.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Disable the Advanced Calling button*
--   GP name: *NoAdvancedCalling*
--   GP path: *Windows Components/NetMeeting/Options Page*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disableappsharing"></a>**ADMX_Conf/DisableAppSharing**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the application sharing feature of NetMeeting completely. Users will not be able to host or view shared applications.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Disable application Sharing*
--   GP name: *NoAppSharing*
--   GP path: *Windows Components/NetMeeting/Application Sharing*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disableaudiopage"></a>**ADMX_Conf/DisableAudioPage**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting hides the Audio page of the Tools Options dialog. Users will not then be able to change audio settings.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Hide the Audio page*
--   GP name: *NoAudioPage*
--   GP path: *Windows Components/NetMeeting/Options Page*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disablechat"></a>**ADMX_Conf/DisableChat**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the Chat feature of NetMeeting.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Disable Chat*
--   GP name: *NoChat*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disablegeneralpage"></a>**ADMX_Conf/DisableGeneralPage**
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting hides the General page of the Tools Options dialog. Users will not then be able to change personal identification and bandwidth settings.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Hide the General page*
--   GP name: *NoGeneralPage*
--   GP path: *Windows Components/NetMeeting/Options Page*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disablenewwhiteboard"></a>**ADMX_Conf/DisableNewWhiteboard**
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the T.126 whiteboard feature of NetMeeting.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Disable Whiteboard*
--   GP name: *NoNewWhiteBoard*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disableoldwhiteboard"></a>**ADMX_Conf/DisableOldWhiteboard**
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the 2.x whiteboard feature of NetMeeting.
-
-The 2.x whiteboard is available for compatibility with older versions of NetMeeting only.
-
-Deployers who do not need it can save bandwidth by disabling it.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Disable NetMeeting 2.x Whiteboard*
--   GP name: *NoOldWhiteBoard*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disablerds"></a>**ADMX_Conf/DisableRDS**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * Device
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the remote desktop sharing feature of NetMeeting. Users will not be able to set it up or use it for controlling their computers remotely.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Disable remote Desktop Sharing*
--   GP name: *NoRDS*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disablesecuritypage"></a>**ADMX_Conf/DisableSecurityPage**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting hides the Security page of the Tools Options dialog. Users will not then be able to change call security and authentication settings.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Hide the Security page*
--   GP name: *NoSecurityPage*
--   GP path: *Windows Components/NetMeeting/Options Page*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-disablevideopage"></a>**ADMX_Conf/DisableVideoPage**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting hides the Video page of the Tools Options dialog. Users will not then be able to change video settings.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Hide the Video page*
--   GP name: *NoVideoPage*
--   GP path: *Windows Components/NetMeeting/Options Page*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-enableautoconfiguration"></a>**ADMX_Conf/EnableAutoConfiguration**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting configures NetMeeting to download settings for users each time it starts.
-
-The settings are downloaded from the URL listed in the "Configuration URL:" text box.
-
-Group Policy based settings have precedence over any conflicting settings set by downloading them from this URL.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Enable Automatic Configuration*
--   GP name: *Use AutoConfig*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventaddingnewils"></a>**ADMX_Conf/PreventAddingNewILS**
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from adding directory (ILS) servers to the list of those they can use for placing calls.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent adding Directory servers*
--   GP name: *NoAddingDirectoryServers*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventaudio"></a>**ADMX_Conf/PreventAudio**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the audio feature of NetMeeting. Users will not be able to send or receive audio.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Disable Audio*
--   GP name: *NoAudio*
--   GP path: *Windows Components/NetMeeting/Audio & Video*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventautoaccept"></a>**ADMX_Conf/PreventAutoAccept**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from turning on automatic acceptance of incoming calls.
-
-This ensures that others cannot call and connect to NetMeeting when the user is not present.
-
-This policy is recommended when deploying NetMeeting to run always.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent automatic acceptance of Calls*
--   GP name: *NoAutoAcceptCalls*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventchangedirectsound"></a>**ADMX_Conf/PreventChangeDirectSound**
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents prevents user from changing the DirectSound audio setting.  
-
-DirectSound provides much better audio quality, but older audio hardware may not support it.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent changing DirectSound Audio setting*
--   GP name: *NoChangeDirectSound*
--   GP path: *Windows Components/NetMeeting/Audio & Video*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventchangingcallmode"></a>**ADMX_Conf/PreventChangingCallMode**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents prevents users from changing the way calls are placed, either directly or via a gatekeeper server.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent changing Call placement method*
--   GP name: *NoChangingCallMode*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventdirectoryservices"></a>**ADMX_Conf/PreventDirectoryServices**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables the directory feature of NetMeeting.
-
-Users will not logon to a directory (ILS) server when NetMeeting starts. Users will also not be able to view or place calls via a NetMeeting directory.
-
-This policy is for deployers who have their own location or calling schemes such as a Web site or an address book.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Disable Directory services*
--   GP name: *NoDirectoryServices*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventfullduplex"></a>**ADMX_Conf/PreventFullDuplex**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting disables full duplex mode audio. Users will not be able to listen to incoming audio while speaking into the microphone. Older audio hardware does not perform well when in full duplex mode.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Disable full duplex Audio*
--   GP name: *NoFullDuplex*
--   GP path: *Windows Components/NetMeeting/Audio & Video*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventgrantingcontrol"></a>**ADMX_Conf/PreventGrantingControl**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from allowing others in a conference to control what they have shared. This enforces a read-only mode; the other participants cannot change the data in the shared application.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent Control*
--   GP name: *NoAllowControl*
--   GP path: *Windows Components/NetMeeting/Application Sharing*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventreceivingfiles"></a>**ADMX_Conf/PreventReceivingFiles**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from receiving files from others in a conference.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent receiving files*
--   GP name: *NoReceivingFiles*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventreceivingvideo"></a>**ADMX_Conf/PreventReceivingVideo**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from receiving video. Users will still be able to send video provided they have the hardware.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent receiving Video*
--   GP name: *NoReceivingVideo*
--   GP path: *Windows Components/NetMeeting/Audio & Video*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventsendingfiles"></a>**ADMX_Conf/PreventSendingFiles**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sending files to others in a conference.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent sending files*
--   GP name: *NoSendingFiles*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventsendingvideo"></a>**ADMX_Conf/PreventSendingVideo**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sending video if they have the hardware. Users will still be able to receive video from others.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent sending Video*
--   GP name: *NoSendingVideo*
--   GP path: *Windows Components/NetMeeting/Audio & Video*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventsharing"></a>**ADMX_Conf/PreventSharing**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing anything themselves. They will still be able to view shared applications/desktops from others.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent Sharing*
--   GP name: *NoSharing*
--   GP path: *Windows Components/NetMeeting/Application Sharing*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventsharingcmdprompt"></a>**ADMX_Conf/PreventSharingCMDPrompt**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing command prompts. This prevents users from inadvertently sharing out applications, since command prompts can be used to launch other applications.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent Sharing Command Prompts*
--   GP name: *NoSharingDosWindows*
--   GP path: *Windows Components/NetMeeting/Application Sharing*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventsharingdesktop"></a>**ADMX_Conf/PreventSharingDesktop**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing the whole desktop. They will still be able to share individual applications.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent Desktop Sharing*
--   GP name: *NoSharingDesktop*
--   GP path: *Windows Components/NetMeeting/Application Sharing*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventsharingexplorer"></a>**ADMX_Conf/PreventSharingExplorer**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing Explorer windows. This prevents users from inadvertently sharing out applications, since Explorer windows can be used to launch other applications.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent Sharing Explorer windows*
--   GP name: *NoSharingExplorer*
--   GP path: *Windows Components/NetMeeting/Application Sharing*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventsharingtruecolor"></a>**ADMX_Conf/PreventSharingTrueColor**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from sharing applications in true color.  True color sharing uses more bandwidth in a conference.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent Application Sharing in true color*
--   GP name: *NoTrueColorSharing*
--   GP path: *Windows Components/NetMeeting/Application Sharing*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-preventwebdirectory"></a>**ADMX_Conf/PreventWebDirectory**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting prevents users from viewing directories as Web pages in a browser.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Prevent viewing Web directory*
--   GP name: *NoWebDirectory*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-restrictftsendsize"></a>**ADMX_Conf/RestrictFTSendSize**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting limits the size of files users can send to others in a conference.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Limit the size of sent files*
--   GP name: *MaxFileSendSize*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-setavthroughput"></a>**ADMX_Conf/SetAVThroughput**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting limits the bandwidth audio and video will consume when in a conference. This setting will guide NetMeeting to choose the right formats and send rate so that the bandwidth is limited.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Limit the bandwidth of Audio and Video*
--   GP name: *MaximumBandwidth*
--   GP path: *Windows Components/NetMeeting/Audio & Video*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-setintranetsupport"></a>**ADMX_Conf/SetIntranetSupport**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting sets the URL NetMeeting will display when the user chooses the Help Online Support command.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Set the intranet support Web page*
--   GP name: *IntranetSupportURL*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-<hr/>
-
-<!--Policy-->
-<a href="" id="admx-conf-setsecurityoptions"></a>**ADMX_Conf/SetSecurityOptions**
-
-<!--SupportedSKUs-->
-<table>
-<tr>
-    <th>Windows Edition</th>
-    <th>Supported?</th>
-</tr>
-<tr>
-    <td>Home</td>
-    <td><img src="images/crossmark.png" alt="cross mark" /></td>
-</tr>
-<tr>
-    <td>Pro</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Business</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Enterprise</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-<tr>
-    <td>Education</td>
-    <td><img src="images/checkmark.png" alt="check mark" /><sup></sup></td>
-</tr>
-</table>
-
-<!--/SupportedSKUs-->
-<hr/>
-
-<!--Scope-->
-[Scope](./policy-configuration-service-provider.md#policy-scope):
-
-> [!div class = "checklist"]
-> * User
-
-<hr/>
-
-<!--/Scope-->
-<!--Description-->
-Available in Windows 10 Insider Preview Build 20185. This policy setting sets the level of security for both outgoing and incoming NetMeeting calls.
-<!--/Description-->
-
-> [!TIP]
-> This is an ADMX-backed policy and requires a special SyncML format to enable or disable. For details, see [Understanding ADMX-backed policies](./understanding-admx-backed-policies.md).
-> 
-> You must specify the data type in the SyncML as &lt;Format&gt;chr&lt;/Format&gt;. For an example SyncML, refer to [Enabling a policy](./understanding-admx-backed-policies.md#enabling-a-policy).
-> 
-> The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it.  For more information, see [CDATA Sections](http://www.w3.org/TR/REC-xml/#sec-cdata-sect).
-
-<!--ADMXBacked-->
-ADMX Info:  
--   GP English name: *Set Call Security options*
--   GP name: *CallSecurity*
--   GP path: *Windows Components/NetMeeting*
--   GP ADMX file name: *Conf.admx*
-
-<!--/ADMXBacked-->
-<!--/Policy-->
-
-Footnotes:
-
-- 1 - Available in Windows 10, version 1607.
-- 2 - Available in Windows 10, version 1703.
-- 3 - Available in Windows 10, version 1709.
-- 4 - Available in Windows 10, version 1803.
-- 5 - Available in Windows 10, version 1809.
-- 6 - Available in Windows 10, version 1903.
-- 7 - Available in Windows 10, version 1909.
-- 8 - Available in Windows 10, version 2004.
-
-<!--/Policies-->
\ No newline at end of file
diff --git a/windows/client-management/mdm/policy-csps-admx-backed.md b/windows/client-management/mdm/policy-csps-admx-backed.md
index 0dada7486c..7662e83815 100644
--- a/windows/client-management/mdm/policy-csps-admx-backed.md
+++ b/windows/client-management/mdm/policy-csps-admx-backed.md
@@ -21,6 +21,51 @@ ms.date: 08/18/2020
 >
 
 - [ActiveXControls/ApprovedInstallationSites](./policy-csp-activexcontrols.md#activexcontrols-approvedinstallationsites)
+- [ADMX_AddRemovePrograms/DefaultCategory](/policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-defaultcategory)
+- [ADMX_AddRemovePrograms/NoAddFromCDorFloppy](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddfromcdorfloppy)
+- [ADMX_AddRemovePrograms/NoAddFromInternet](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddfrominternet)
+- [ADMX_AddRemovePrograms/NoAddFromNetwork](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddfromnetwork)
+- [ADMX_AddRemovePrograms/NoAddPage](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddpage)
+- [ADMX_AddRemovePrograms/NoAddRemovePrograms](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noaddremoveprograms)
+- [ADMX_AddRemovePrograms/NoChooseProgramsPage](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-nochooseprogramspage)
+- [ADMX_AddRemovePrograms/NoRemovePage](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noremovepage)
+- [ADMX_AddRemovePrograms/NoServices](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-noservices)
+- [ADMX_AddRemovePrograms/NoSupportInfo](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-nosupportinfo)
+- [ADMX_AddRemovePrograms/NoWindowsSetupPage](./policy-csp-admx-addremoveprograms.md#admx-addremoveprograms-nowindowssetuppage)
+- [ADMX_AppCompat/AppCompatPrevent16BitMach](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatprevent16bitmach)
+- [ADMX_AppCompat/AppCompatRemoveProgramCompatPropPage](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatremoveprogramcompatproppage)
+- [ADMX_AppCompat/AppCompatTurnOffApplicationImpactTelemetry](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffapplicationimpacttelemetry)
+- [ADMX_AppCompat/AppCompatTurnOffSwitchBack](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffswitchback)
+- [ADMX_AppCompat/AppCompatTurnOffEngine](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffengine)
+- [ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_1](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffprogramcompatibilityassistant_1)
+- [ADMX_AppCompat/AppCompatTurnOffProgramCompatibilityAssistant_2](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffprogramcompatibilityassistant_2)
+- [ADMX_AppCompat/AppCompatTurnOffUserActionRecord](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffuseractionrecord)
+- [ADMX_AppCompat/AppCompatTurnOffProgramInventory](./policy-csp-admx-appcompat.md#admx-appcompat-appcompatturnoffprograminventory)
+- [ADMX_AuditSettings/IncludeCmdLine](./policy-csp-admx-auditsettings.md#admx-auditsettings-includecmdline)
+- [ADMX_DnsClient/DNS_AllowFQDNNetBiosQueries](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-allowfqdnnetbiosqueries)
+- [ADMX_DnsClient/DNS_AppendToMultiLabelName](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-appendtomultilabelname)
+- [ADMX_DnsClient/DNS_Domain](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-domain)
+- [ADMX_DnsClient/DNS_DomainNameDevolutionLevel](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-domainnamedevolutionlevel)
+- [ADMX_DnsClient/DNS_IdnEncoding](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-idnencoding)
+- [ADMX_DnsClient/DNS_IdnMapping](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-idnmapping)
+- [ADMX_DnsClient/DNS_NameServer](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-nameserver)
+- [ADMX_DnsClient/DNS_PreferLocalResponsesOverLowerOrderDns](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-preferlocalresponsesoverlowerorderdns)
+- [ADMX_DnsClient/DNS_PrimaryDnsSuffix](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-primarydnssuffix)
+- [ADMX_DnsClient/DNS_RegisterAdapterName](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registeradaptername)
+- [ADMX_DnsClient/DNS_RegisterReverseLookup](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registerreverselookup)
+- [ADMX_DnsClient/DNS_RegistrationEnabled](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationenabled)
+- [ADMX_DnsClient/DNS_RegistrationOverwritesInConflict](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationoverwritesinconflict)
+- [ADMX_DnsClient/DNS_RegistrationRefreshInterval](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationrefreshinterval)
+- [ADMX_DnsClient/DNS_RegistrationTtl](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-registrationttl)
+- [ADMX_DnsClient/DNS_SearchList](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-searchlist)
+- [ADMX_DnsClient/DNS_SmartMultiHomedNameResolution](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-smartmultihomednameresolution)
+- [ADMX_DnsClient/DNS_SmartProtocolReorder](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-smartprotocolreorder)
+- [ADMX_DnsClient/DNS_UpdateSecurityLevel](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-updatesecuritylevel)
+- [ADMX_DnsClient/DNS_UpdateTopLevelDomainZones](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-updatetopleveldomainzones)
+- [ADMX_DnsClient/DNS_UseDomainNameDevolution](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-usedomainnamedevolution)
+- [ADMX_DnsClient/Turn_Off_Multicast](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-Offmulticast)
+- [ADMX_EventForwarding/ForwarderResourceUsage](./policy-csp-admx-eventforwarding.md#admx_eventforwarding-forwarderresourceusage)
+- [ADMX_EventForwarding/SubscriptionManager](./policy-csp-admx-eventforwarding.md#admx_eventforwarding-subscriptionmanager)
 - [AppRuntime/AllowMicrosoftAccountsToBeOptional](./policy-csp-appruntime.md#appruntime-allowmicrosoftaccountstobeoptional)
 - [AppVirtualization/AllowAppVClient](./policy-csp-appvirtualization.md#appvirtualization-allowappvclient)
 - [AppVirtualization/AllowDynamicVirtualization](./policy-csp-appvirtualization.md#appvirtualization-allowdynamicvirtualization)

From 7053b7a38b03ea63515f6e9fb7cf4057c50fb6a9 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Thu, 20 Aug 2020 16:41:17 -0700
Subject: [PATCH 36/38] Fixed build warnings

---
 windows/client-management/mdm/TOC.md                          | 2 +-
 .../mdm/policy-configuration-service-provider.md              | 2 +-
 windows/client-management/mdm/policy-csp-admx-dnsclient.md    | 4 ++--
 windows/client-management/mdm/policy-csps-admx-backed.md      | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/client-management/mdm/TOC.md b/windows/client-management/mdm/TOC.md
index 0bf40d8bd9..2d6a0b7bda 100644
--- a/windows/client-management/mdm/TOC.md
+++ b/windows/client-management/mdm/TOC.md
@@ -180,7 +180,7 @@
 #### [ApplicationManagement](policy-csp-applicationmanagement.md)
 #### [AppRuntime](policy-csp-appruntime.md)
 #### [AppVirtualization](policy-csp-appvirtualization.md)
-#### [AttachmentManager](policy-csp-attachmentmanager.md))
+#### [AttachmentManager](policy-csp-attachmentmanager.md)
 #### [Audit](policy-csp-audit.md)
 #### [Authentication](policy-csp-authentication.md)
 #### [Autoplay](policy-csp-autoplay.md)
diff --git a/windows/client-management/mdm/policy-configuration-service-provider.md b/windows/client-management/mdm/policy-configuration-service-provider.md
index 2923b2da09..7986a6fae0 100644
--- a/windows/client-management/mdm/policy-configuration-service-provider.md
+++ b/windows/client-management/mdm/policy-configuration-service-provider.md
@@ -312,7 +312,7 @@ The following diagram shows the Policy configuration service provider in tree fo
     <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-usedomainnamedevolution" id="admx-dnsclient-dns-usedomainnamedevolution">ADMX_DnsClient/DNS_UseDomainNameDevolution</a>
   </dd>
   <dd>
-    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-Offmulticast" id="admx-dnsclient-dns-Offmulticast">ADMX_DnsClient/Turn_Off_Multicast</a>
+    <a href="./policy-csp-admx-dnsclient.md#admx-dnsclient-turn-off-multicast" id="admx-dnsclient-turn-off-multicast">ADMX_DnsClient/Turn_Off_Multicast</a>
   </dd>
 </dl>
 
diff --git a/windows/client-management/mdm/policy-csp-admx-dnsclient.md b/windows/client-management/mdm/policy-csp-admx-dnsclient.md
index 0c26d32f23..e3fef30269 100644
--- a/windows/client-management/mdm/policy-csp-admx-dnsclient.md
+++ b/windows/client-management/mdm/policy-csp-admx-dnsclient.md
@@ -87,7 +87,7 @@ manager: dansimp
     <a href="#admx-dnsclient-dns-usedomainnamedevolution">ADMX_DnsClient/DNS_UseDomainNameDevolution</a>
   </dd>
   <dd>
-    <a href="#admx-dnsclient-turn-Offmulticast">ADMX_DnsClient/Turn_Off_Multicast</a>
+    <a href="#admx-dnsclient-turn-off-multicast">ADMX_DnsClient/Turn_Off_Multicast</a>
   </dd>
 </dl>
 
@@ -1642,7 +1642,7 @@ ADMX Info:
 <hr/>
 
 <!--Policy-->
-<a href="" id="admx-dnsclient-turn-Offmulticast"></a>**ADMX_DnsClient/Turn_Off_Multicast**
+<a href="" id="admx-dnsclient-turn-off-multicast"></a>**ADMX_DnsClient/Turn_Off_Multicast**
 <!--SupportedSKUs-->
 <table>
 <tr>
diff --git a/windows/client-management/mdm/policy-csps-admx-backed.md b/windows/client-management/mdm/policy-csps-admx-backed.md
index 7662e83815..6e3d43c649 100644
--- a/windows/client-management/mdm/policy-csps-admx-backed.md
+++ b/windows/client-management/mdm/policy-csps-admx-backed.md
@@ -63,7 +63,7 @@ ms.date: 08/18/2020
 - [ADMX_DnsClient/DNS_UpdateSecurityLevel](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-updatesecuritylevel)
 - [ADMX_DnsClient/DNS_UpdateTopLevelDomainZones](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-updatetopleveldomainzones)
 - [ADMX_DnsClient/DNS_UseDomainNameDevolution](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-usedomainnamedevolution)
-- [ADMX_DnsClient/Turn_Off_Multicast](./policy-csp-admx-dnsclient.md#admx-dnsclient-dns-Offmulticast)
+- [ADMX_DnsClient/Turn_Off_Multicast](./policy-csp-admx-dnsclient.md#admx-dnsclient-turn-off-multicast)
 - [ADMX_EventForwarding/ForwarderResourceUsage](./policy-csp-admx-eventforwarding.md#admx_eventforwarding-forwarderresourceusage)
 - [ADMX_EventForwarding/SubscriptionManager](./policy-csp-admx-eventforwarding.md#admx_eventforwarding-subscriptionmanager)
 - [AppRuntime/AllowMicrosoftAccountsToBeOptional](./policy-csp-appruntime.md#appruntime-allowmicrosoftaccountstobeoptional)

From 01808e6e86476d7fdeb708d67e938edd7782c415 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Thu, 20 Aug 2020 16:50:46 -0700
Subject: [PATCH 37/38] Incrporated acrolinx suggestion

---
 windows/client-management/mdm/policy-csp-admx-appcompat.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-appcompat.md b/windows/client-management/mdm/policy-csp-admx-appcompat.md
index cd7a091fd2..86b6730590 100644
--- a/windows/client-management/mdm/policy-csp-admx-appcompat.md
+++ b/windows/client-management/mdm/policy-csp-admx-appcompat.md
@@ -628,7 +628,7 @@ ADMX Info:
 <!--Description-->
 Available in Windows 10 Insider Preview Build 20185. This policy setting controls the state of Steps Recorder.
 
-Steps Recorder keeps a record of steps taken by the user. The data generated by Steps Recorder can be used in feedback systems such as Windows Error Reporting to help developers understand and fix problems. The data includes user actions such as keyboard input and mouse input, user interface data, and screen shots.  Steps Recorder includes an option to turn on and off data collection.
+Steps Recorder keeps a record of steps taken by the user. The data generated by Steps Recorder can be used in feedback systems such as Windows Error Reporting to help developers understand and fix problems. The data includes user actions such as keyboard input and mouse input, user interface data, and screenshots.  Steps Recorder includes an option to turn on and off data collection.
 
 If you enable this policy setting, Steps Recorder will be disabled.
 

From 76eea24f0f5e5cfeeebc6cee1828a07d5c0a94d6 Mon Sep 17 00:00:00 2001
From: ManikaDhiman <v-madhi@microsoft.com>
Date: Thu, 20 Aug 2020 16:51:33 -0700
Subject: [PATCH 38/38] Added Acrolinx suggestion

---
 windows/client-management/mdm/policy-csp-admx-appcompat.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/policy-csp-admx-appcompat.md b/windows/client-management/mdm/policy-csp-admx-appcompat.md
index 86b6730590..527d07b981 100644
--- a/windows/client-management/mdm/policy-csp-admx-appcompat.md
+++ b/windows/client-management/mdm/policy-csp-admx-appcompat.md
@@ -7,7 +7,7 @@ ms.prod: w10
 ms.technology: windows
 author: manikadhiman
 ms.localizationpriority: medium
-ms.date: 08/10/2020
+ms.date: 08/20/2020
 ms.reviewer: 
 manager: dansimp
 ---