diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
index cb05c08abe..73b0e26503 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md
@@ -110,19 +110,21 @@ For System Center 2012 Configuration Manager, see [How to Deploy Potentially Unw
 
 #### Use Group Policy to configure PUA protection
 
-1. On your Group Policy management computer, open the [Group Policy Management Console](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)), right-click the Group Policy Object you want to configure, and select **Edit**.
+1. First download and install [Administrative Templates (.admx) for Windows 10 October 2020 Update (20H2)](https://www.microsoft.com/download/details.aspx?id=102157)
 
-2. In the **Group Policy Management Editor**, go to **Computer configuration** and select **Administrative templates**.
+2. On your Group Policy management computer, open the [Group Policy Management Console](https://docs.microsoft.com/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)), right-click the Group Policy Object you want to configure, and select **Edit**.
 
-3. Expand the tree to **Windows Components** > **Microsoft Defender Antivirus**.
+3. In the **Group Policy Management Editor**, go to **Computer configuration** and select **Administrative templates**.
 
-4. Double-click **Configure detection for potentially unwanted applications**.
+4. Expand the tree to **Windows Components** > **Microsoft Defender Antivirus**.
 
-5. Select **Enabled** to enable PUA protection.
+5. Double-click **Configure detection for potentially unwanted applications**.
 
-6. In **Options**, select **Block** to block potentially unwanted applications, or select **Audit Mode** to test how the setting will work in your environment. Select **OK**.
+6. Select **Enabled** to enable PUA protection.
 
-7. Deploy your Group Policy object as you usually do.
+7. In **Options**, select **Block** to block potentially unwanted applications, or select **Audit Mode** to test how the setting will work in your environment. Select **OK**.
+
+8. Deploy your Group Policy object as you usually do.
 
 #### Use PowerShell cmdlets to configure PUA protection