diff --git a/windows/security/threat-protection/windows-defender-application-control/deployment/deploy-wdac-policies-with-script.md b/windows/security/threat-protection/windows-defender-application-control/deployment/deploy-wdac-policies-with-script.md
index c118114f74..36243edbf3 100644
--- a/windows/security/threat-protection/windows-defender-application-control/deployment/deploy-wdac-policies-with-script.md
+++ b/windows/security/threat-protection/windows-defender-application-control/deployment/deploy-wdac-policies-with-script.md
@@ -61,13 +61,15 @@ This topic describes how to deploy Windows Defender Application Control (WDAC) p
 In addition to the steps outlined above, the binary policy file must also be copied to the device's EFI partition. Deploying your policy via [MEM](/windows/security/threat-protection/windows-defender-application-control/deploy-windows-defender-application-control-policies-using-intune) or the Application Control CSP will handle this step automatically. 
 
 1. Mount the EFI volume and make the directory, if it does not exist, in an elevated PowerShell prompt: 
-```powershell
-mountvol J: /S
-J:
-mkdir J:\EFI\Microsoft\Boot\CiPolicies\Active
-```
 
-2. Copy the signed policy binary as `{PolicyGUID}.cip` to J:\EFI\Microsoft\Boot\CiPolicies\Active
+    ```powershell
+    mountvol J: /S
+    J:
+    mkdir J:\EFI\Microsoft\Boot\CiPolicies\Active
+    ```
+
+2. Copy the signed policy binary as `{PolicyGUID}.cip` to `J:\EFI\Microsoft\Boot\CiPolicies\Active`.
+
 3. Reboot the system.
 
 ## Script-based deployment process for Windows 10 versions earlier than 1903