Revert "Revert "Merge branch 'master' into aljupudi-w11defender-branch01""

This reverts commit e87ef8501d40b3c702f8ea2aea542b91cc179bf2.
2025-05-12 21:37:22 +00:00 · 2021-08-27 12:01:28 +05:30 · 2021-08-27 12:01:28 +05:30 · de364ca115
commit de364ca115
parent e87ef8501d
410 changed files with 2137 additions and 2121 deletions
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@ -20,7 +20,7 @@ We've tried to make editing an existing, public file as simple as possible.
 1. Go to the page on docs.microsoft.com that you want to update, and then click **Edit**.
-    ![GitHub Web, showing the Edit link](images/contribute-link.png)
+    ![GitHub Web, showing the Edit link.](images/contribute-link.png)
 2. Log into (or sign up for) a GitHub account.
@ -28,7 +28,7 @@ We've tried to make editing an existing, public file as simple as possible.
 3. Click the **Pencil** icon (in the red box) to edit the content.
-    ![GitHub Web, showing the Pencil icon in the red box](images/pencil-icon.png)
+    ![GitHub Web, showing the Pencil icon in the red box.](images/pencil-icon.png)
 4. Using Markdown language, make your changes to the topic. For info about how to edit content using Markdown, see:
    - **If you're linked to the Microsoft organization in GitHub:** [Windows authoring guide](https://aka.ms/WindowsAuthoring)
@ -37,11 +37,11 @@ We've tried to make editing an existing, public file as simple as possible.
 5. Make your suggested change, and then click **Preview Changes** to make sure it looks correct.
-    ![GitHub Web, showing the Preview Changes tab](images/preview-changes.png)
+    ![GitHub Web, showing the Preview Changes tab.](images/preview-changes.png)
 6. When you’re done editing the topic, scroll to the bottom of the page, and then click **Propose file change** to create a fork in your personal GitHub account.
-    ![GitHub Web, showing the Propose file change button](images/propose-file-change.png)
+    ![GitHub Web, showing the Propose file change button.](images/propose-file-change.png)
    The **Comparing changes** screen appears to see what the changes are between your fork and the original content.
@ -49,7 +49,7 @@ We've tried to make editing an existing, public file as simple as possible.
    If there are no problems, you’ll see the message, **Able to merge**.
-    ![GitHub Web, showing the Comparing changes screen](images/compare-changes.png)
+    ![GitHub Web, showing the Comparing changes screen.](images/compare-changes.png)
 8. Click **Create pull request**.
--- a/browsers/enterprise-mode/collect-data-using-enterprise-site-discovery.md
+++ b/browsers/enterprise-mode/collect-data-using-enterprise-site-discovery.md
@ -34,11 +34,11 @@ Before you start, you need to make sure you have the following:
    1.  Go to the [Microsoft Security Bulletin](https://go.microsoft.com/fwlink/p/?LinkID=718223) page, and change the filter to **Windows Internet Explorer 11**.
-        ![microsoft security bulletin techcenter](images/securitybulletin-filter.png)
+        ![microsoft security bulletin techcenter.](images/securitybulletin-filter.png)
    2.  Click the title of the latest cumulative security update, and then scroll down to the **Affected software** table.
-        ![affected software section](images/affectedsoftware.png)
+        ![affected software section.](images/affectedsoftware.png)
    3.  Click the link that represents both your operating system version and Internet Explorer 11, and then follow the instructions in the **How to get this update** section.
@ -280,13 +280,13 @@ You can collect your hardware inventory using the MOF Editor, while you’re con
 1.  From the Configuration Manager, click **Administration**, click **Client Settings**, double-click **Default Client Settings**, click **Hardware Inventory**, and then click **Set Classes**.
-    ![Configuration Manager, showing the hardware inventory settings for client computers](images/configmgrhardwareinventory.png)
+    ![Configuration Manager, showing the hardware inventory settings for client computers.](images/configmgrhardwareinventory.png)
 2.  Click **Add**, click **Connect**, and connect to a computer that has completed the setup process and has already existing classes.
 3.  Change the **WMI Namespace** to `root\cimv2\IETelemetry`, and click **Connect**.
-    ![Configuration Manager, with the Connect to Windows Management Instrumentation (WMI) box](images/ie11-inventory-addclassconnectscreen.png)
+    ![Configuration Manager, with the Connect to Windows Management Instrumentation (WMI) box.](images/ie11-inventory-addclassconnectscreen.png)
 4.  Select the check boxes next to the following classes, and then click **OK**:
@ -393,12 +393,12 @@ The sample reports, **SCCM Report Sample – ActiveX.rdl** and **SCCM Report Sam
 ### SCCM Report Sample – ActiveX.rdl
 Gives you a list of all of the ActiveX-related sites visited by the client computer.
-![ActiveX.rdl report, lists all ActiveX-related sites visited by the client computer](images/configmgractivexreport.png)
+![ActiveX.rdl report, lists all ActiveX-related sites visited by the client computer.](images/configmgractivexreport.png)
 ### SCCM Report Sample – Site Discovery.rdl
 Gives you a list of all of the sites visited by the client computer.
-![Site Discovery.rdl report, lists all websites visited by the client computer](images/ie-site-discovery-sample-report.png)
+![Site Discovery.rdl report, lists all websites visited by the client computer.](images/ie-site-discovery-sample-report.png)
 ## View the collected XML data
 After the XML files are created, you can use your own solutions to extract and parse the data. The data will look like:
@ -436,7 +436,7 @@ You can import this XML data into the correct version of the Enterprise Mode Sit
 1.  Open the Enterprise Mode Site List Manager, click **File**, and then click **Bulk add from file**.
-    ![Enterprise Mode Site List Manager with Bulk add from file option](images/bulkadd-emiesitelistmgr.png)
+    ![Enterprise Mode Site List Manager with Bulk add from file option.](images/bulkadd-emiesitelistmgr.png)
 2.  Go to your XML file to add the included sites to the tool, and then click **Open**.<br>Each site is validated and if successful, added to the global site list when you click **OK** to close the menu. If a site doesn’t pass validation, you can try to fix the issues or pick the site and click **Add to list** to ignore the validation problem. For more information about fixing validation problems, see [Fix validation problems using the Enterprise Mode Site List Manager](fix-validation-problems-using-the-enterprise-mode-site-list-manager.md).
--- a/browsers/enterprise-mode/set-up-enterprise-mode-logging-and-data-collection.md
+++ b/browsers/enterprise-mode/set-up-enterprise-mode-logging-and-data-collection.md
@ -27,11 +27,11 @@ ms.date: 07/27/2017
 Using Group Policy, you can turn on Enterprise Mode for Internet Explorer and then you can turn on local user control using the **Let users turn on and use Enterprise Mode from the Tools menu** setting, located in the `Administrative Templates\Windows Components\Internet Explorer` category path. After you turn this setting on, your users can turn on Enterprise Mode locally, from the IE **Tools** menu.
-![enterprise mode option on the tools menu](images/ie-emie-toolsmenu.png)
+![enterprise mode option on the tools menu.](images/ie-emie-toolsmenu.png)
 The **Let users turn on and use Enterprise Mode from the Tools menu** setting also lets you decide where to send the user reports (as a URL). We recommend creating a custom HTTP port 81 to let your incoming user information go to a dedicated site. A dedicated site is important so you can quickly pick out the Enterprise Mode traffic from your other website traffic.
-![group policy to turn on enterprise mode](images/ie-emie-grouppolicy.png)
+![group policy to turn on enterprise mode.](images/ie-emie-grouppolicy.png)
 Getting these reports lets you find out about sites that aren’t working right, so you can add them to your Enterprise Mode site list, without having to locate them all yourself. For more information about creating and using a site list, see the [Add multiple sites to the Enterprise Mode site list using a file and the Enterprise Mode Site List Manager (schema v.2)](add-multiple-sites-to-enterprise-mode-site-list-using-the-version-2-schema-and-enterprise-mode-tool.md) or the [Add multiple sites to the Enterprise Mode site list using a file and the Enterprise Mode Site List Manager (schema v.1)](add-multiple-sites-to-enterprise-mode-site-list-using-the-version-1-schema-and-enterprise-mode-tool.md) topic, based on your operating system.
@ -47,11 +47,11 @@ This lets you create an ASP form that accepts the incoming POST messages.
 3.  Open the Internet Information Services (IIS) Manager, click **Bindings**, highlight **Port 81**, click **Edit**, and then change the website information to point to Port 81 so it matches your custom-created port.
-    ![IIS Manager, editing website bindings](images/ie-emie-editbindings.png)
+    ![IIS Manager, editing website bindings.](images/ie-emie-editbindings.png)
 4.  Open the **Logging** feature, pick **W3C** for the format, and click **Select Fields** to open the **W3C Logging Fields** box.
-    ![IIS Manager, setting logging options](images/ie-emie-logging.png)
+    ![IIS Manager, setting logging options.](images/ie-emie-logging.png)
 5.  Change the WC3 logging fields to include only the **Date**, **Client IP**, **User Name**, and **URI Query** standard fields, and then click **OK**.<p>
 Using only these fields keeps the log file simple, giving you the date, client IP address, and the website URI information for any site changed by your users.
@ -72,7 +72,7 @@ This code logs your POST fields to your IIS log file, where you can review all o
 ### IIS log file information
 This is what your log files will look like after you set everything up and at least one of your users has turned on Enterprise Mode locally from the **Tools** menu. You can see the URL of the problematic website and client IP address of the user that turned on Enterprise Mode.
-![Enterprise Mode log file](images/ie-emie-logfile.png)
+![Enterprise Mode log file.](images/ie-emie-logfile.png)
 ## Using the GitHub sample to collect your data
@ -99,14 +99,14 @@ The required packages are automatically downloaded and included in the solution.
 1.  Right-click on the name, PhoneHomeSample, and click **Publish**.
-    ![Visual Studio, Publish menu](images/ie-emie-publishsolution.png)
+    ![Visual Studio, Publish menu.](images/ie-emie-publishsolution.png)
 2.  In the **Publish Web** wizard, pick the publishing target and options that work for your organization.
   **Important**<br>
   Make sure you have a database associated with your publishing target. Otherwise, your reports won’t be collected and you’ll have problems deploying the website. 
-    ![Visual Studio, Publish Web wizard](images/ie-emie-publishweb.png)
+    ![Visual Studio, Publish Web wizard.](images/ie-emie-publishweb.png)
   After you finish the publishing process, you need to test to make sure the app deployed successfully.
@ -131,7 +131,7 @@ The required packages are automatically downloaded and included in the solution.
 -   Go to `https://<deploy_URL>/List` to see the report results.<p>
 If you’re already on the webpage, you’ll need to refresh the page to see the results.
-    ![Enterprise Mode Result report with details](images/ie-emie-reportwdetails.png)
+    ![Enterprise Mode Result report with details.](images/ie-emie-reportwdetails.png)
 ### Troubleshooting publishing errors
@ -141,7 +141,7 @@ If you have errors while you’re publishing your project, you should try to upd
 1.  From the **Tools** menu of Microsoft Visual Studio, click **NuGet Package Manager**, and click **Manage NuGet Packages for Solution**.
-    ![Nuget Package Manager for package updates](images/ie-emie-packageupdate.png)
+    ![Nuget Package Manager for package updates.](images/ie-emie-packageupdate.png)
 2.  Click **Updates** on the left side of the tool, and click the **Update All** button.<p>
 You may need to do some additional package cleanup to remove older package versions.
--- a/browsers/enterprise-mode/turn-on-enterprise-mode-and-use-a-site-list.md
+++ b/browsers/enterprise-mode/turn-on-enterprise-mode-and-use-a-site-list.md
@ -9,7 +9,7 @@ centralized control, you can create one global list of websites that render usin
 1.  Open your Group Policy editor and go to the **Administrative Templates\\Windows Components\\Microsoft Edge\\Configure the Enterprise Mode     Site List** setting.<p>Turning this setting on also requires you to create and store a site list.
 <!-- 
-    ![Local Group Policy Editor for using a site list](../edge/images/config-enterprise-site-list.png)
+    ![Local Group Policy Editor for using a site list.](../edge/images/config-enterprise-site-list.png)
 -->
 2.  Click **Enabled**, and then in the **Options** area, type the location to your site list.
@ -24,7 +24,7 @@ All of your managed devices must have access to this location if you want them t
 2.  Edit the `SiteList` registry key to point to where you want to keep your Enterprise Mode site list file.<p>For example:
    <!--
-    ![Enterprise mode with site list in the registry](../edge/images/enterprise-mode-value-data.png) -->
+    ![Enterprise mode with site list in the registry.](../edge/images/enterprise-mode-value-data.png) -->
    -   **HTTPS location:** `"SiteList"="https://localhost:8080/sites.xml"`
--- a/browsers/enterprise-mode/turn-on-local-control-and-logging-for-enterprise-mode.md
+++ b/browsers/enterprise-mode/turn-on-local-control-and-logging-for-enterprise-mode.md
@ -33,7 +33,7 @@ Besides turning on this feature, you also have the option to provide a URL for E
 1.  Open your Group Policy editor and go to the **Administrative Templates\\Windows Components\\Internet Explorer\\Let users turn on and use Enterprise Mode from the Tools menu** setting.
-    ![group policy editor with emie setting](images/ie-emie-editpolicy.png)
+    ![group policy editor with emie setting.](images/ie-emie-editpolicy.png)
 2.  Click **Enabled**, and then in the **Options** area, type the location for where to receive reports about when your employees use this functionality to turn Enterprise Mode on or off from the **Tools** menu.
@ -45,7 +45,7 @@ Besides turning on this feature, you also have the option to provide a URL for E
 3.  Right-click the **Enable** key, click **Modify**, and then type a **Value data** to point to a server that you can listen to for updates.
-    ![edit registry string for data collection location](images/ie-emie-editregistrystring.png)
+    ![edit registry string for data collection location.](images/ie-emie-editregistrystring.png)
 Your **Value data** location can be any of the following types:
--- a/browsers/internet-explorer/ie11-deploy-guide/collect-data-using-enterprise-site-discovery.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/collect-data-using-enterprise-site-discovery.md
@ -38,11 +38,11 @@ Before you start, you need to make sure you have the following:
    1.  Go to the [Microsoft Security Bulletin](/security-updates/) page, and change the filter to **Windows Internet Explorer 11**.
-        ![microsoft security bulletin techcenter](images/securitybulletin-filter.png)
+        ![microsoft security bulletin techcenter.](images/securitybulletin-filter.png)
    2.  Click the title of the latest cumulative security update, and then scroll down to the **Affected software** table.
-        ![affected software section](images/affectedsoftware.png)
+        ![affected software section.](images/affectedsoftware.png)
    3.  Click the link that represents both your operating system version and Internet Explorer 11, and then follow the instructions in the **How to get this update** section.
@ -284,13 +284,13 @@ You can collect your hardware inventory using the MOF Editor, while you’re con
 1.  From the Configuration Manager, click **Administration**, click **Client Settings**, double-click **Default Client Settings**, click **Hardware Inventory**, and then click **Set Classes**.
-    ![Configuration Manager, showing the hardware inventory settings for client computers](images/configmgrhardwareinventory.png)
+    ![Configuration Manager, showing the hardware inventory settings for client computers.](images/configmgrhardwareinventory.png)
 2.  Click **Add**, click **Connect**, and connect to a computer that has completed the setup process and has already existing classes.
 3.  Change the **WMI Namespace** to `root\cimv2\IETelemetry`, and click **Connect**.
-    ![Configuration Manager, with the Connect to Windows Management Instrumentation (WMI) box](images/ie11-inventory-addclassconnectscreen.png)
+    ![Configuration Manager, with the Connect to Windows Management Instrumentation (WMI) box.](images/ie11-inventory-addclassconnectscreen.png)
 4.  Select the check boxes next to the following classes, and then click **OK**:
@ -397,12 +397,12 @@ The sample reports, **SCCM Report Sample – ActiveX.rdl** and **SCCM Report Sam
 ### SCCM Report Sample – ActiveX.rdl
 Gives you a list of all of the ActiveX-related sites visited by the client computer.
-![ActiveX.rdl report, lists all ActiveX-related sites visited by the client computer](images/configmgractivexreport.png)
+![ActiveX.rdl report, lists all ActiveX-related sites visited by the client computer.](images/configmgractivexreport.png)
 ### SCCM Report Sample – Site Discovery.rdl
 Gives you a list of all of the sites visited by the client computer.
-![Site Discovery.rdl report, lists all websites visited by the client computer](images/ie-site-discovery-sample-report.png)
+![Site Discovery.rdl report, lists all websites visited by the client computer.](images/ie-site-discovery-sample-report.png)
 ## View the collected XML data
 After the XML files are created, you can use your own solutions to extract and parse the data. The data will look like:
@ -440,7 +440,7 @@ You can import this XML data into the correct version of the Enterprise Mode Sit
 1.  Open the Enterprise Mode Site List Manager, click **File**, and then click **Bulk add from file**.
-    ![Enterprise Mode Site List Manager with Bulk add from file option](images/bulkadd-emiesitelistmgr.png)
+    ![Enterprise Mode Site List Manager with Bulk add from file option.](images/bulkadd-emiesitelistmgr.png)
 2.  Go to your XML file to add the included sites to the tool, and then click **Open**.<br>Each site is validated and if successful, added to the global site list when you click **OK** to close the menu. If a site doesn’t pass validation, you can try to fix the issues or pick the site and click **Add to list** to ignore the validation problem. For more information about fixing validation problems, see [Fix validation problems using the Enterprise Mode Site List Manager](fix-validation-problems-using-the-enterprise-mode-site-list-manager.md).
--- a/browsers/internet-explorer/ie11-deploy-guide/deprecated-document-modes.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/deprecated-document-modes.md
@ -48,7 +48,7 @@ The compatibility improvements made in IE11 lets older websites just work in the
 ## Document mode selection flowchart
 This flowchart shows how IE11 works when document modes are used.
-![Flowchart detailing how document modes are chosen in IE11](images/docmode-decisions-sm.png)<br>
+![Flowchart detailing how document modes are chosen in IE11.](images/docmode-decisions-sm.png)<br>
 [Click this link to enlarge image](img-ie11-docmode-lg.md)
 ## Known Issues with Internet Explorer 8 document mode in Enterprise Mode
--- a/browsers/internet-explorer/ie11-deploy-guide/fix-compat-issues-with-doc-modes-and-enterprise-mode-site-list.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/fix-compat-issues-with-doc-modes-and-enterprise-mode-site-list.md
@ -45,7 +45,7 @@ To see if this fix might help you, run through this process one step at a time,
 1.  Go to a site having compatibility problems, press **F12** to open the **F12 Developer Tools**, and go to the **Emulation** tool.
-    ![Emulation tool showing document mode selection](images/docmode-f12.png)
+    ![Emulation tool showing document mode selection.](images/docmode-f12.png)
 2.  Starting with the **11 (Default)** option, test your broken scenario.<br>
 If that doesn’t work, continue down to the next lowest document mode, stopping as soon as you find a document mode that fixes your problems. For more information about the Emulation tool, see [Emulate browsers, screen sizes, and GPS locations](/previous-versions/windows/internet-explorer/ie-developer/samples/dn255001(v=vs.85)).
@ -62,7 +62,7 @@ There are two versions of the Enterprise Mode site list schema and the Enterpris
 1.  Open the Enterprise Mode Site List Manager, and click **Add**.
-    ![Enterprise Mode Site List Manager, showing the available modes](images/emie-listmgr.png)
+    ![Enterprise Mode Site List Manager, showing the available modes.](images/emie-listmgr.png)
 2.  Add the **URL** and pick the document mode from the **Launch in** box. This should be the same document mode you found fixed your problems while testing the site.<br>
 Similar to Enterprise Mode, you can specify a document mode for a particular web path—such as contoso.com/ERP—or at a domain level. In the above, the entire contoso.com domain loads in Enterprise Mode, while microsoft.com is forced to load into IE8 Document Mode and bing.com loads in IE11.
@ -74,7 +74,7 @@ For more information about Enterprise Mode, see [What is Enterprise Mode?](what-
 ### Review your Enterprise Mode site list
 Take a look at your Enterprise Mode site list and make sure everything is the way you want it. The next step will be to turn the list on and start to use it in your company. The Enterprise Mode Site List Manager will look something like:
-![Enterprise Mode Site List Manager, showing the different modes](images/emie-sitelistmgr.png)
+![Enterprise Mode Site List Manager, showing the different modes.](images/emie-sitelistmgr.png)
 And the underlying XML code will look something like:
--- a/browsers/internet-explorer/ie11-deploy-guide/out-of-date-activex-control-blocking.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/out-of-date-activex-control-blocking.md
@ -62,15 +62,15 @@ When IE blocks an outdated ActiveX control, you’ll see a notification bar simi
 **Internet Explorer 9 through Internet Explorer 11**
-![Warning about outdated activex controls (ie9+)](images/outdatedcontrolwarning.png)
+![Warning about outdated activex controls (ie9+).](images/outdatedcontrolwarning.png)
 **Windows Internet Explorer 8**
-![Warning about outdated activex controls (ie8)](images/ieoutdatedcontrolwarning.png)
+![Warning about outdated activex controls (ie8).](images/ieoutdatedcontrolwarning.png)
 Out-of-date ActiveX control blocking also gives you a security warning that tells you if a webpage tries to launch specific outdated apps, outside of IE:
-![Warning about outdated activex controls outside ie](images/ieoutdatedcontroloutsideofie.png)
+![Warning about outdated activex controls outside ie.](images/ieoutdatedcontroloutsideofie.png)
 ## How do I fix an outdated ActiveX control or app?
--- a/browsers/internet-explorer/ie11-deploy-guide/set-the-default-browser-using-group-policy.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/set-the-default-browser-using-group-policy.md
@ -27,7 +27,7 @@ You can use the Group Policy setting, **Set a default associations configuration
 1.  Open your Group Policy editor and go to the **Computer Configuration\Administrative Templates\\Windows Components\\File Explorer\\Set a default associations configuration file** setting.<p>
 Turning this setting on also requires you to create and store a default associations configuration file, locally or on a network share. For more information about creating this file, see [Export or Import Default Application Associations]( https://go.microsoft.com/fwlink/p/?LinkId=618268).
-    ![set default associations group policy setting](images/setdefaultbrowsergp.png)
+    ![set default associations group policy setting.](images/setdefaultbrowsergp.png)
 2.  Click **Enabled**, and then in the **Options** area, type the location to your default associations configuration file.<p>
 If this setting is turned on and your employee's device is domain-joined, this file is processed and default associations are applied at logon. If this setting isn't configured or is turned off, or if your employee's device isn't domain-joined, no default associations are applied at logon.
--- a/browsers/internet-explorer/ie11-deploy-guide/set-up-enterprise-mode-logging-and-data-collection.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/set-up-enterprise-mode-logging-and-data-collection.md
@ -31,11 +31,11 @@ ms.date: 07/27/2017
 Using Group Policy, you can turn on Enterprise Mode for Internet Explorer and then you can turn on local user control using the **Let users turn on and use Enterprise Mode from the Tools menu** setting, located in the `Administrative Templates\Windows Components\Internet Explorer` category path. After you turn this setting on, your users can turn on Enterprise Mode locally, from the IE **Tools** menu.
-![enterprise mode option on the tools menu](images/ie-emie-toolsmenu.png)
+![enterprise mode option on the tools menu.](images/ie-emie-toolsmenu.png)
 The **Let users turn on and use Enterprise Mode from the Tools menu** setting also lets you decide where to send the user reports (as a URL). We recommend creating a custom HTTP port 81 to let your incoming user information go to a dedicated site. A dedicated site is important so you can quickly pick out the Enterprise Mode traffic from your other website traffic.
-![group policy to turn on enterprise mode](images/ie-emie-grouppolicy.png)
+![group policy to turn on enterprise mode.](images/ie-emie-grouppolicy.png)
 Getting these reports lets you find out about sites that aren’t working right, so you can add them to your Enterprise Mode site list, without having to locate them all yourself. For more information about creating and using a site list, see the [Add multiple sites to the Enterprise Mode site list using a file and the Enterprise Mode Site List Manager (schema v.2)](add-multiple-sites-to-enterprise-mode-site-list-using-the-version-2-schema-and-enterprise-mode-tool.md) or the [Add multiple sites to the Enterprise Mode site list using a file and the Enterprise Mode Site List Manager (schema v.1)](add-multiple-sites-to-enterprise-mode-site-list-using-the-version-1-schema-and-enterprise-mode-tool.md) topic, based on your operating system.
@ -51,11 +51,11 @@ When you turn logging on, you need a valid URL that points to a server that can
 3. Open the Internet Information Services (IIS) Manager, click **Bindings**, highlight **Port 81**, click **Edit**, and then change the website information to point to Port 81 so it matches your custom-created port.
-   ![IIS Manager, editing website bindings](images/ie-emie-editbindings.png)
+   ![IIS Manager, editing website bindings.](images/ie-emie-editbindings.png)
 4. Open the **Logging** feature, pick **W3C** for the format, and click **Select Fields** to open the **W3C Logging Fields** box.
-   ![IIS Manager, setting logging options](images/ie-emie-logging.png)
+   ![IIS Manager, setting logging options.](images/ie-emie-logging.png)
 5. Change the WC3 logging fields to include only the **Date**, **Client IP**, **User Name**, and **URI Query** standard fields, and then click **OK**.<p>
   Using only these fields keeps the log file simple, giving you the date, client IP address, and the website URI information for any site changed by your users.
@ -76,7 +76,7 @@ When you turn logging on, you need a valid URL that points to a server that can
 ### IIS log file information
 This is what your log files will look like after you set everything up and at least one of your users has turned on Enterprise Mode locally from the **Tools** menu. You can see the URL of the problematic website and client IP address of the user that turned on Enterprise Mode.
-![Enterprise Mode log file](images/ie-emie-logfile.png)
+![Enterprise Mode log file.](images/ie-emie-logfile.png)
 ## Using the GitHub sample to collect your data
@ -103,14 +103,14 @@ For logging, you’re going to need a valid URL that points to a server that can
 5. Right-click on the name, PhoneHomeSample, and click **Publish**.
-   ![Visual Studio, Publish menu](images/ie-emie-publishsolution.png)
+   ![Visual Studio, Publish menu.](images/ie-emie-publishsolution.png)
 6. In the **Publish Web** wizard, pick the publishing target and options that work for your organization.
   **Important**<br>
   Make sure you have a database associated with your publishing target. Otherwise, your reports won’t be collected and you’ll have problems deploying the website. 
-   ![Visual Studio, Publish Web wizard](images/ie-emie-publishweb.png)
+   ![Visual Studio, Publish Web wizard.](images/ie-emie-publishweb.png)
   After you finish the publishing process, you need to test to make sure the app deployed successfully.
@ -135,7 +135,7 @@ For logging, you’re going to need a valid URL that points to a server that can
 -   Go to `https://<deploy_URL>/List` to see the report results.<p>
 If you’re already on the webpage, you’ll need to refresh the page to see the results.
-    ![Enterprise Mode Result report with details](images/ie-emie-reportwdetails.png)
+    ![Enterprise Mode Result report with details.](images/ie-emie-reportwdetails.png)
 ### Troubleshooting publishing errors
@ -145,7 +145,7 @@ If you have errors while you’re publishing your project, you should try to upd
 1.  From the **Tools** menu of Microsoft Visual Studio, click **NuGet Package Manager**, and click **Manage NuGet Packages for Solution**.
-    ![Nuget Package Manager for package updates](images/ie-emie-packageupdate.png)
+    ![Nuget Package Manager for package updates.](images/ie-emie-packageupdate.png)
 2.  Click **Updates** on the left side of the tool, and click the **Update All** button.<p>
 You may need to do some additional package cleanup to remove older package versions.
--- a/browsers/internet-explorer/ie11-deploy-guide/tips-and-tricks-to-manage-ie-compatibility.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/tips-and-tricks-to-manage-ie-compatibility.md
@ -28,7 +28,7 @@ Jump to:
 [Enterprise Mode for Internet Explorer 11](enterprise-mode-overview-for-ie11.md) can be very effective in providing backward compatibility for older web apps. The Enterprise Mode Site List includes the ability to put any web app in any document mode, include IE8 and IE7 Enterprise Modes, without changing a single line of code on the website.
-![Internet Explorer Enterprise Modes and document modes](images/img-enterprise-mode-site-list-xml.jpg)
+![Internet Explorer Enterprise Modes and document modes.](images/img-enterprise-mode-site-list-xml.jpg)
 Sites in the \<docMode\> section can be rendered in any document mode, as shown in blue above. Some sites designed for older versions of Internet Explorer may require better backward compatibility, and these can leverage the \<emie\> section of the Enterprise Mode Site List. IE8 Enterprise Mode provides higher-fidelity emulation for Internet Explorer 8 by using, among other improvements, the original Internet Explorer 8 user agent string. IE7 Enterprise Mode further improves emulation by adding Compatibility View.  
@ -84,7 +84,7 @@ To see if the site works in the Internet Explorer 5, Internet Explorer 7, Intern
 -   Open the site in Internet Explorer 11, load the F12 tools by pressing the **F12** key or by selecting **F12 Developer Tools** from the **Tools** menu, and select the **Emulation** tab.  
-    ![F12 Developer Tools Emulation tab](images/img-f12-developer-tools-emulation.jpg)
+    ![F12 Developer Tools Emulation tab.](images/img-f12-developer-tools-emulation.jpg)
 -   Run the site in each document mode until you find the mode in which the site works.
--- a/browsers/internet-explorer/ie11-deploy-guide/turn-on-enterprise-mode-and-use-a-site-list.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/turn-on-enterprise-mode-and-use-a-site-list.md
@ -39,7 +39,7 @@ Before you can use a site list with Enterprise Mode, you need to turn the functi
 1. Open your Group Policy editor and go to the `Administrative Templates\Windows Components\Internet Explorer\Use the Enterprise Mode IE website list` setting.<p>
   Turning this setting on also requires you to create and store a site list. For more information about creating your site list, see the [Use the Enterprise Mode Site List Manager](use-the-enterprise-mode-site-list-manager.md) topics.
-   ![local group policy editor for using a site list](images/ie-emie-grouppolicysitelist.png)
+   ![local group policy editor for using a site list.](images/ie-emie-grouppolicysitelist.png)
 2. Click **Enabled**, and then in the **Options** area, type the location to your site list.
@ -51,7 +51,7 @@ Before you can use a site list with Enterprise Mode, you need to turn the functi
 4. Edit the `SiteList` registry key to point to where you want to keep your Enterprise Mode site list file. For example:
-   ![enterprise mode with site list in the registry](images/ie-emie-registrysitelist.png)
+   ![enterprise mode with site list in the registry.](images/ie-emie-registrysitelist.png)
   -   **HTTPS location**: `"SiteList"="https://localhost:8080/sites.xml"`
--- a/browsers/internet-explorer/ie11-deploy-guide/turn-on-local-control-and-logging-for-enterprise-mode.md
+++ b/browsers/internet-explorer/ie11-deploy-guide/turn-on-local-control-and-logging-for-enterprise-mode.md
@ -37,7 +37,7 @@ Besides turning on this feature, you also have the option to provide a URL for E
 1. Open your Group Policy editor and go to the **Administrative Templates\\Windows Components\\Internet Explorer\\Let users turn on and use Enterprise Mode from the Tools menu** setting.
-   ![group policy editor with emie setting](images/ie-emie-editpolicy.png)
+   ![group policy editor with emie setting.](images/ie-emie-editpolicy.png)
 2. Click **Enabled**, and then in the **Options** area, type the location for where to receive reports about when your employees use this functionality to turn Enterprise Mode on or off from the **Tools** menu.
@ -49,7 +49,7 @@ Besides turning on this feature, you also have the option to provide a URL for E
 5. Right-click the **Enable** key, click **Modify**, and then type a **Value data** to point to a server that you can listen to for updates.
-   ![edit registry string for data collection location](images/ie-emie-editregistrystring.png)
+   ![edit registry string for data collection location.](images/ie-emie-editregistrystring.png)
 Your **Value data** location can be any of the following types:
--- a/browsers/internet-explorer/ie11-ieak/licensing-version-and-features-ieak11.md
+++ b/browsers/internet-explorer/ie11-ieak/licensing-version-and-features-ieak11.md
@ -33,32 +33,32 @@ During installation, you must pick a version of IEAK 11, either **External** or
 |                  Feature                  |                                     Internal                                     |                                       External                                       |
 |-------------------------------------------|:--------------------------------------------------------------------------------:|:------------------------------------------------------------------------------------:|
-|              Welcome screen               | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|              Welcome screen               | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|              File locations               | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|              File locations               | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|            Platform selection             | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|            Platform selection             | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|            Language selection             | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|            Language selection             | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|          Package type selection           | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|          Package type selection           | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|             Feature selection             | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|             Feature selection             | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|  Automatic Version Synchronization (AVS)  | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|  Automatic Version Synchronization (AVS)  | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|             Custom components             | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|             Custom components             | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|             Internal install              | ![Available](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
+|             Internal install              | ![Available.](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
-|              User experience              | ![Available](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
+|              User experience              | ![Available.](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
-|          Browser user interface           | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|          Browser user interface           | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|             Search providers              | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|             Search providers              | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|  Important URLs – Home page and support   | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|  Important URLs – Home page and support   | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|               Accelerators                | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|               Accelerators                | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|    Favorites, Favorites bar, and feeds    | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|    Favorites, Favorites bar, and feeds    | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|             Browsing options              | ![Available](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
+|             Browsing options              | ![Available.](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
-| First Run wizard and Welcome page options | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+| First Run wizard and Welcome page options | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|            Connection manager             | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|            Connection manager             | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|            Connection settings            | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|            Connection settings            | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|          Automatic configuration          | ![Available](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
+|          Automatic configuration          | ![Available.](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
-|              Proxy settings               | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|              Proxy settings               | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|       Security and privacy settings       | ![Available](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
+|       Security and privacy settings       | ![Available.](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
-|          Add a root certificate           | ![Available](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
+|          Add a root certificate           | ![Available.](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
-|                 Programs                  | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|                 Programs                  | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
-|            Additional settings            | ![Available](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
+|            Additional settings            | ![Available.](/microsoft-edge/deploy/images/148767.png) | ![Not available](/microsoft-edge/deploy/images/148766.png) |
-|              Wizard complete              | ![Available](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
+|              Wizard complete              | ![Available.](/microsoft-edge/deploy/images/148767.png) |   ![Available](/microsoft-edge/deploy/images/148767.png)   |
 ---
--- a/education/trial-in-a-box/educator-tib-get-started.md
+++ b/education/trial-in-a-box/educator-tib-get-started.md
@ -24,13 +24,13 @@ manager: dansimp
 | Tool | Description |
 | :---: |:--- |
-| [![Connect the device to Wi-Fi](images/edu-TIB-setp-1-v3.png)](#edu-task1) | [Log in](#edu-task1) to **Device A** with your Teacher credentials and connect to the school network. |
+| [![Connect the device to Wi-Fi.](images/edu-TIB-setp-1-v3.png)](#edu-task1) | [Log in](#edu-task1) to **Device A** with your Teacher credentials and connect to the school network. |
-| [![Try Learning Tools Immersive Reader](images/edu-TIB-setp-2-v3.png)](#edu-task2) | **Interested in significantly improving your students' reading speed and comprehension?<sup>[1](#footnote1)</sup>** </br>Try the [Learning Tools Immersive Reader](#edu-task2) to see how kids can learn to read faster, using text read aloud, and highlighting words for syntax. |
+| [![Try Learning Tools Immersive Reader.](images/edu-TIB-setp-2-v3.png)](#edu-task2) | **Interested in significantly improving your students' reading speed and comprehension?<sup>[1](#footnote1)</sup>** </br>Try the [Learning Tools Immersive Reader](#edu-task2) to see how kids can learn to read faster, using text read aloud, and highlighting words for syntax. |
-| [![Launch Microsoft Teams](images/edu-TIB-setp-3-v3.png)](#edu-task3) | **Looking to foster collaboration, communication, and critical thinking in the classroom?** </br>Launch [Microsoft Teams](#edu-task3) and learn how to set up digital classroom discussions, respond to student questions, and organize class content. |
+| [![Launch Microsoft Teams.](images/edu-TIB-setp-3-v3.png)](#edu-task3) | **Looking to foster collaboration, communication, and critical thinking in the classroom?** </br>Launch [Microsoft Teams](#edu-task3) and learn how to set up digital classroom discussions, respond to student questions, and organize class content. |
-| [![Open OneNote](images/edu-TIB-setp-4-v3.png)](#edu-task4) | **Trying to expand classroom creativity and interaction between students?** </br>Open [OneNote](#edu-task4) and create an example group project for your class. |
+| [![Open OneNote.](images/edu-TIB-setp-4-v3.png)](#edu-task4) | **Trying to expand classroom creativity and interaction between students?** </br>Open [OneNote](#edu-task4) and create an example group project for your class. |
-| [![Try Photos app](images/edu-tib-setp-5-v4.png)](#edu-task5) | **Curious about telling stories through video?** </br>Try the [Photos app](#edu-task5) to make your own example video. |
+| [![Try Photos app.](images/edu-tib-setp-5-v4.png)](#edu-task5) | **Curious about telling stories through video?** </br>Try the [Photos app](#edu-task5) to make your own example video. |
-| [![Play with Minecraft: Education Edition](images/edu-tib-setp-6-v4.png)](#edu-task6) | **Want to teach kids to further collaborate and problem solve?** </br>Play with [Minecraft: Education Edition](#edu-task6) to see how it can be used as a collaborative and versatile platform across subjects to encourage 21st century skills. |
+| [![Play with Minecraft: Education Edition.](images/edu-tib-setp-6-v4.png)](#edu-task6) | **Want to teach kids to further collaborate and problem solve?** </br>Play with [Minecraft: Education Edition](#edu-task6) to see how it can be used as a collaborative and versatile platform across subjects to encourage 21st century skills. |
-| [![Do Math with Windows Ink](images/edu-tib-setp-7-v1.png)](#edu-task7) | **Want to provide a personal math tutor for your students?** </br>Use [Windows Ink and the Math Assistant feature](#edu-task7) in OneNote to give students step-by-step instructions and interactive 2D graphs for math problems. |
+| [![Do Math with Windows Ink.](images/edu-tib-setp-7-v1.png)](#edu-task7) | **Want to provide a personal math tutor for your students?** </br>Use [Windows Ink and the Math Assistant feature](#edu-task7) in OneNote to give students step-by-step instructions and interactive 2D graphs for math problems. |
 </br>
@ -41,7 +41,7 @@ manager: dansimp
 </br>
-![Log in to Device A and connect to the school network](images/edu-TIB-setp-1-jump.png)
+![Log in to Device A and connect to the school network.](images/edu-TIB-setp-1-jump.png)
 ## <a name="edu-task1"></a>1. Log in and connect to the school network
 To try out the educator tasks, start by logging in as a teacher.
@ -55,7 +55,7 @@ To try out the educator tasks, start by logging in as a teacher.
 </br>
 </br>
-![Improve student reading speed and comprehension](images/edu-TIB-setp-2-jump.png)
+![Improve student reading speed and comprehension.](images/edu-TIB-setp-2-jump.png)
 ## <a name="edu-task2"></a>2. Significantly improve student reading speed and comprehension
 > [!VIDEO https://www.youtube.com/embed/GCzSAslq_2Y]
@ -78,7 +78,7 @@ Learning Tools and the Immersive Reader can be used in the Microsoft Edge browse
 4. Select the **Immersive Reader** button.
-   ![Word's Immersive Reader](images/word_online_immersive_reader.png)
+   ![Word's Immersive Reader.](images/word_online_immersive_reader.png)
 5. Press the **Play** button to hear text read aloud.
@ -86,14 +86,14 @@ Learning Tools and the Immersive Reader can be used in the Microsoft Edge browse
   | Text to Speech | Text Preferences | Grammar Options | Line Focus |
   | :------------: | :--------------: | :-------------: | :--------: |
-   | ![Word Text to Speech](images/wordonline_tts.png) | ![Word Text Preferences](images/wordonline_text_preferences.png) | ![Word Grammar Options](images/wordonline_grammar_options.png) | ![Word Line Focus](images/wordonline_line_focus.png) |
+   | ![Word Text to Speech.](images/wordonline_tts.png) | ![Word Text Preferences](images/wordonline_text_preferences.png) | ![Word Grammar Options](images/wordonline_grammar_options.png) | ![Word Line Focus](images/wordonline_line_focus.png) |
 </br>
 </br>
-![Spark communication, critical thinking, and creativity with Microsoft Teams](images/edu-TIB-setp-3-jump.png)
+![Spark communication, critical thinking, and creativity with Microsoft Teams.](images/edu-TIB-setp-3-jump.png)
 ## <a name="edu-task3"></a>3. Spark communication, critical thinking, and creativity in the classroom
 > [!VIDEO https://www.youtube.com/embed/riQr4Dqb8B8]
@ -114,7 +114,7 @@ Take a guided tour of Microsoft Teams and test drive this digital hub.
 </br>
 </br>
-![Expand classroom collaboration and interaction with OneNote](images/edu-TIB-setp-4-jump.png)
+![Expand classroom collaboration and interaction with OneNote.](images/edu-TIB-setp-4-jump.png)
 ## <a name="edu-task4"></a>4. Expand classroom collaboration and interaction between students
 > [!VIDEO https://www.youtube.com/embed/dzDSWMb_fIE]
@ -135,16 +135,16 @@ When you're not using the pen, just use the magnet to stick it to the left side
 3. Follow the instructions for the project. Look for the **Try this!** callouts to experiment with these engaging activities.
   - Discover the power of digital ink by selecting the Draw tab. Choose your pen and get scribbling.
-     ![OneNote Draw tab](images/onenote_draw.png)
+     ![OneNote Draw tab.](images/onenote_draw.png)
   - Type anywhere on the page! Just click your cursor where you want to place text.
   - Use the checkmark in the **Home** tab to keep track of completed tasks.
-     ![OneNote To Do Tag](images/onenote_checkmark.png)
+     ![OneNote To Do Tag.](images/onenote_checkmark.png)
   - To find information without leaving OneNote, use the Researcher tool found under the Insert tab.
-     ![OneNote Researcher](images/onenote_researcher.png)
+     ![OneNote Researcher.](images/onenote_researcher.png)
 </br>
 </br>
@ -178,7 +178,7 @@ Use video to create a project summary.
 8. Drag the videos to the Storyboard, one by one. Your project should look roughly like this:
-   ![Photos app layout showing videos added in previous steps](images/photo_app_1.png)
+   ![Photos app layout showing videos added in previous steps.](images/photo_app_1.png)
 9. Select the first card in the Storyboard (the video of the project materials) and select **Text**, type a title in, a text style, a layout, and select **Done**.
@ -191,7 +191,7 @@ Use video to create a project summary.
    4. Play back your effect.
    5. Select **Done** when you have it where you want it.
-    ![Lighting bolt effect being added to a video clip](images/photo_app_2.png)
+    ![Lighting bolt effect being added to a video clip.](images/photo_app_2.png)
 12. Select **Music** and select a track from the **Recommended** music collection.
    1. The music will update automatically to match the length of your video project, even as you make changes.
@ -208,7 +208,7 @@ Check out this use case video of the Photos team partnering with the Bureau Of F
 </br>
 </br>
-![Further collaborate and problem solve with Minecraft: Education Edition](images/edu-TIB-setp-5-jump.png)
+![Further collaborate and problem solve with Minecraft: Education Edition.](images/edu-TIB-setp-5-jump.png)
 ## <a name="edu-task6"></a>6. Get kids to further collaborate and problem solve
 > [!VIDEO https://www.youtube.com/embed/QI_bRNUugog]
@ -226,7 +226,7 @@ Today, we'll explore a Minecraft world through the eyes of a student.
 3. Scroll down to the **Details** section and select **Download World**.
-   ![Select the download world link](images/mcee_downloadworld.png)
+   ![Select the download world link.](images/mcee_downloadworld.png)
 4. When prompted, save the world.
@ -250,7 +250,7 @@ Today, we'll explore a Minecraft world through the eyes of a student.
    To try more advanced movements or building within Minecraft, use the Minecraft Controls Diagram.
-    ![Minecraft mouse and keyboard controls](images/mcee_keyboard_mouse_controls.png)
+    ![Minecraft mouse and keyboard controls.](images/mcee_keyboard_mouse_controls.png)
 12. Access and adapt over 300 lesson plans, spanning all grades and subjects, to meet your needs. Enjoy exploring new worlds and happy crafting.
@ -260,13 +260,13 @@ Today, we'll explore a Minecraft world through the eyes of a student.
    2. Click **Class Resources**.
    3. Click **Find a Lesson**.
-    ![Access and adapt over 300 Minecraft lesson plans](images/minecraft_lesson_plans.png)
+    ![Access and adapt over 300 Minecraft lesson plans.](images/minecraft_lesson_plans.png)
 </br>
 </br>
 </br>
-![Help students understand new math concepts with the Math Assistant in OneNote](images/Inking.png)
+![Help students understand new math concepts with the Math Assistant in OneNote.](images/Inking.png)
 ## <a name="edu-task7"></a>7. Use Windows Ink to provide a personal math tutor for your students
 The **Math Assistant** and **Ink Replay** features available in the OneNote app give your students step-by-step instructions on how to solve their math problems and help them visualize math functions on an interactive 2D graph.
@ -275,15 +275,15 @@ The **Math Assistant** and **Ink Replay** features available in the OneNote app
 To get started:
 1. Open the OneNote app for Windows 10 (not OneNote 2016).
-   ![OneNote icon](images/OneNote_logo.png)
+   ![OneNote icon.](images/OneNote_logo.png)
 2. In the top left corner, click on the **<** arrow to access your notebooks and pages.
-   ![OneNote back arrow navigation button](images/left_arrow.png)
+   ![OneNote back arrow navigation button.](images/left_arrow.png)
 3. Click **Add Page** to launch a blank work space.
-   ![Select add page button](images/plus-page.png)
+   ![Select add page button.](images/plus-page.png)
 4. Make sure your pen is paired to the device. To pair, see <a href="https://support.microsoft.com/help/12383" target="_blank">Connect to Bluetooth devices</a>.
@ -292,26 +292,26 @@ To solve the equation 3x+4=7, follow these instructions:
 2. If you wrote the equation using digital ink, use the **Lasso tool** to circle the equation. If you typed the equation, highlight it using your mouse.
-   ![Lasso button](images/lasso.png)
+   ![Lasso button.](images/lasso.png)
 3. On the **Draw** tab, click the **Math** button.
-   ![Math button](images/math-button.png)
+   ![Math button.](images/math-button.png)
 4. From the drop-down menu in the **Math** pane, select the option to **Solve for x**. You can now see the final solution of the equation.
-   ![Solve for x menu](images/solve-for-x.png)
+   ![Solve for x menu.](images/solve-for-x.png)
 5. From the second drop-down below, choose **Steps for Solving Linear Formula**, which shows you the step-by-step solution of this equation.
 6. On the **View** tab, click the **Replay** button. Use your mouse to select the written equation and watch your text in replay. Replay is great for students to review how the teacher solved the equation and for teachers to review how students approached a problem.
-   ![Replay button](images/replay.png)
+   ![Replay button.](images/replay.png)
 To graph the equation 3x+4=7, follow these instructions:
 1. From the drop-down menu in the **Math** pane, select the option to **Graph Both Sides in 2D**. You can play with the interactive graph of your equation - use a single finger to move the graph position or two fingers to change the **zoom** level.
-   ![Graph both sides in 2D](images/graph-for-x.png)
+   ![Graph both sides in 2D.](images/graph-for-x.png)
 2. Click the **Insert on Page** button below the graph to add a screenshot of the graph to your page.
   </br>
--- a/education/trial-in-a-box/index.md
+++ b/education/trial-in-a-box/index.md
@ -16,7 +16,7 @@ ms.date: 12/11/2017
 # Microsoft Education Trial in a Box
-![Microsoft Education Trial in a Box - Unlock Limitless Learning](images/Unlock-Limitless-Learning.png)
+![Microsoft Education Trial in a Box - Unlock Limitless Learning.](images/Unlock-Limitless-Learning.png)
 </br>
@ -28,7 +28,7 @@ Welcome to Microsoft Education Trial in a Box. We built this trial to make it ea
 </br>
-| [![Get started for Educators](images/teacher_rotated_resized.png)](educator-tib-get-started.md) | [![Get started for IT Admins](images/itadmin_rotated_resized.png)](itadmin-tib-get-started.md) |
+| [![Get started for Educators.](images/teacher_rotated_resized.png)](educator-tib-get-started.md) | [![Get started for IT Admins](images/itadmin_rotated_resized.png)](itadmin-tib-get-started.md) |
 | :---: | :---: | 
 | <span style="font-size: 1.5em">**Educator**</span></br>Enhance students of all abilities by unleashing their creativity, collaboration, and improving problem-solving skills. </br>[Get started](educator-tib-get-started.md) | <span style="font-size: 1.5em">**IT Admin**</span></br>Quickly implement and deploy a full cloud infrastructure that's secure and easy to manage. </br> [Get started](itadmin-tib-get-started.md) |
--- a/education/trial-in-a-box/itadmin-tib-get-started.md
+++ b/education/trial-in-a-box/itadmin-tib-get-started.md
@ -24,11 +24,11 @@ manager: dansimp
 |&nbsp;  |&nbsp;  |
 | :---: |:--- |
-| [![Log in to Device A](images/admin-TIB-setp-1-v3.png)](#it-task1) | [Log in](#it-task1) to **Device A** with your IT Admin credentials and connect to your school's network. |
+| [![Log in to Device A.](images/admin-TIB-setp-1-v3.png)](#it-task1) | [Log in](#it-task1) to **Device A** with your IT Admin credentials and connect to your school's network. |
-| [![Configure Device B with Set up School PCs](images/admin-TIB-setp-2-v3.png)](#it-task2) | [Configure Device B](#it-task2) with the Set up School PCs app. |
+| [![Configure Device B with Set up School PCs.](images/admin-TIB-setp-2-v3.png)](#it-task2) | [Configure Device B](#it-task2) with the Set up School PCs app. |
-| [![Configure Intune for Education](images/admin-TIB-setp-3-v3.png)](#it-task3) | [Express configure Intune for Education](#it-task3) to manage devices, users, and policies. |
+| [![Configure Intune for Education.](images/admin-TIB-setp-3-v3.png)](#it-task3) | [Express configure Intune for Education](#it-task3) to manage devices, users, and policies. |
-| [![Find and deploy apps](images/admin-TIB-setp-4-v3.png)](#it-task4) | [Find apps from the Microsoft Store for Education](#it-task4) and deploy them to manage devices in your tenant. |
+| [![Find and deploy apps.](images/admin-TIB-setp-4-v3.png)](#it-task4) | [Find apps from the Microsoft Store for Education](#it-task4) and deploy them to manage devices in your tenant. |
-| [![Create custom folders](images/admin-TIB-setp-5-v3.png)](#it-task5) | [Create custom folders](#it-task5) that will appear on each managed device's **Start** menu. |
+| [![Create custom folders.](images/admin-TIB-setp-5-v3.png)](#it-task5) | [Create custom folders](#it-task5) that will appear on each managed device's **Start** menu. |
 </br>
@ -42,7 +42,7 @@ If you run into any problems while following the steps in this guide, or you hav
 </br>
-![Log in to Device A](images/admin-TIB-setp-1-jump.png) 
+![Log in to Device A.](images/admin-TIB-setp-1-jump.png) 
 ## <a name="it-task1"></a>1. Log in to Device A with your IT Admin credentials and connect to the school network
 To try out the IT admin tasks, start by logging in as an IT admin.
@ -56,7 +56,7 @@ To try out the IT admin tasks, start by logging in as an IT admin.
 </br>
-![Configure Device B with Set up School PCs](images/admin-TIB-setp-2-jump.png) 
+![Configure Device B with Set up School PCs.](images/admin-TIB-setp-2-jump.png) 
 ## <a name="it-task2"></a>2. Configure Device B with Set up School PCs
 Now you're ready to learn how to configure a brand new device. You will start on **Device A** by downloading and running the Set up School PCs app. Then, you will configure **Device B**.
@ -66,11 +66,11 @@ If you've previously used Set up School PCs to provision student devices, you ca
 1. From the **Start** menu, find and then click **Microsoft Store** to launch the Store.
-    ![Microsoft Store from the Start menu](images/start_microsoft_store.png)
+    ![Microsoft Store from the Start menu.](images/start_microsoft_store.png)
 2. Search for the **Set up School PCs** app.
-    ![Set up School PCs on Microsoft Store](images/microsoft_store_suspc_install.png)
+    ![Set up School PCs on Microsoft Store.](images/microsoft_store_suspc_install.png)
 3. Click **Install**.
@ -78,7 +78,7 @@ If you've previously used Set up School PCs to provision student devices, you ca
 1. On **Device A**, launch the Set up School PCs app.
-    ![Launch the Set up School PCs app](images/suspc_start.png)
+    ![Launch the Set up School PCs app.](images/suspc_start.png)
 2. Click **Get started**.
 3. Select **Sign-in**.
@ -95,7 +95,7 @@ If you've previously used Set up School PCs to provision student devices, you ca
    We recommend checking the highlighted settings below:
-    ![Configure student PC settings](images/suspc_configure_pcsettings_selected.png)
+    ![Configure student PC settings.](images/suspc_configure_pcsettings_selected.png)
   - **Remove apps pre-installed by the device manufacturer** - If you select this option, this will reset the machine and the provisioning process will take longer (about 30 minutes).
   - **Allow local storage (not recommended for shared devices)** lets students save files to the **Desktop** and **Documents** folder on the student PC.
@ -108,7 +108,7 @@ If you've previously used Set up School PCs to provision student devices, you ca
 7. **Set up the Take a Test app** configures the device for taking quizzes and high-stakes assessments by some providers like Smarter Balanced. Windows will lock down the student PC so that students can't access anything else while taking the test.
-    ![Configure the Take a Test app](images/suspc_takeatest.png)
+    ![Configure the Take a Test app.](images/suspc_takeatest.png)
   1. Specify if you want to create a Take a Test button on the students' sign-in screens.
   2. Select **Advanced settings** to allow keyboard text suggestions to appear and to allow teachers to monitor online tests. 
@ -120,7 +120,7 @@ If you've previously used Set up School PCs to provision student devices, you ca
 8. **Add recommended apps** lets you choose from a set of recommended Microsoft Store apps to provision. 
-    ![Recommended apps in Set up School PCs package configuration](images/suspc_configure_recommendedapps_v2.png)
+    ![Recommended apps in Set up School PCs package configuration.](images/suspc_configure_recommendedapps_v2.png)
    The recommended apps include the following:
    * **Office 365 for Windows 10 S (Education Preview)** - Optional. This works well for the Trial in a Box PCs running Windows 10 S. However, if you try to install this app on other editions of Windows 10, setup will fail. Also note that if you select **Office 365 for Windows 10 S (Education Preview)**, it will take about 30-45 minutes longer for Set up School PCs to create the provisioning package as the app downloads Office 365 for Windows 10 S (Education Preview) from the Microsoft Store.
@ -131,7 +131,7 @@ If you've previously used Set up School PCs to provision student devices, you ca
    To change any of the settings, select the page or section (such as **Sign-in** or **Settings**) to go back to that page and make your changes.
-    ![Select the section or page name to make a change](images/suspc_review_summary.png)
+    ![Select the section or page name to make a change.](images/suspc_review_summary.png)
 10. Accept the summary and then insert a USB drive in **Device A**. Use the USB drive that came in the Trial in a Box accessories box to save the provisioning package.
 11. Select the drive and then **Save** to create the provisioning package. 
@ -153,7 +153,7 @@ A provisioning package is a method for applying settings to Windows 10 without n
 1. Start with **Device B** turned off or with the PC on the first-run setup screen. In Windows 10 S Fall Creators Update, the first-run setup screen says **Let's start with region. Is this right?**. 
-    ![The first screen to set up a new PC in Windows 10 Fall Creators Update](images/win10_oobe_firstscreen.png)
+    ![The first screen to set up a new PC in Windows 10 Fall Creators Update.](images/win10_oobe_firstscreen.png)
    If you go past the region selection screen, select **Ctrl + Shift + F3** which will prompt the "System Preparation Tool." Select **Okay** in the tool to return to the region selection screen. If this doesn't work, reset the PC by going to **Settings > Update & Security > Recovery > Reset this PC.**
@ -166,20 +166,20 @@ You can complete the rest of the IT admin tasks using **Device A**.
 </br>
-![Express configure Intune for Education](images/admin-TIB-setp-3-jump.png) 
+![Express configure Intune for Education.](images/admin-TIB-setp-3-jump.png) 
 ## <a name="it-task3"></a>3. Express configure Intune for Education to manage devices, users, and policies
 Intune for Education provides an **Express configuration** option so you can get going right away. We'll use that option here.
 1. Log into the <a href="https://intuneeducation.portal.azure.com/" target="_blank">Intune for Education console</a>. 
 2. On the Intune for Education dashboard, click **Launch Express Configuration** or select the **Express configuration**.
-    ![Intune for Education dashboard](images/i4e_dashboard_expressconfig.png)
+    ![Intune for Education dashboard.](images/i4e_dashboard_expressconfig.png)
 3. In the **Welcome to Intune for Education** screen, click **Get started** and follow the prompts until you get to the **Choose group** screen.
 4. In the **Choose group** screen, select **All Users** so that all apps and settings that we select during express setup will apply to this group. 
 5. In the **Choose apps** screen, you will see a selection of desktop (Win32) apps, Web apps, and Microsoft Store apps. 
-    ![Choose apps you want to provision to the group](images/i4e_expressconfig_chooseapps.png)
+    ![Choose apps you want to provision to the group.](images/i4e_expressconfig_chooseapps.png)
 6. Add or remove apps by clicking on them. A blue checkmark means the app is added and will be installed for all members of the group selected in step 5.
@ -197,7 +197,7 @@ Intune for Education provides an **Express configuration** option so you can get
 </br>
-![Find apps from the Microsoft Store for Education](images/admin-TIB-setp-4-jump.png) 
+![Find apps from the Microsoft Store for Education.](images/admin-TIB-setp-4-jump.png) 
 ## <a name="it-task4"></a>4. Find apps from the Microsoft Store for Education and deploy them to managed devices in your tenant
 The Microsoft Store for Education is where you can shop for more apps for your school.
@ -205,7 +205,7 @@ The Microsoft Store for Education is where you can shop for more apps for your s
 2. In the **Store apps** section, select **+ New app** to go to the <a href="https://educationstore.microsoft.com" target="_blank">Microsoft Store for Education</a>.
 3. Select **Sign in** and start shopping for apps for your school.
-    ![Microsoft Store for Education site](images/msfe_portal.png)
+    ![Microsoft Store for Education site.](images/msfe_portal.png)
 4. Check some of the categories for suggested apps or search the Store for a free educational or reference app. Find ones that you haven't already installed during express configuration for Intune for Education. For example, these apps are free:
    - Duolingo - Learn Languages for Free
@ -222,7 +222,7 @@ The Microsoft Store for Education is where you can shop for more apps for your s
    The apps will show up in your inventory along with the apps that Microsoft automatically provisioned for your education tenant.
-    ![List of apps bought for the school](images/msfe_boughtapps.png)
+    ![List of apps bought for the school.](images/msfe_boughtapps.png)
    In the **Private store** column of the **Products & services** page, the status for some apps will indicate that it's "In private store" while others will say "Adding to private store" or "Not applicable". Learn more about this in <a href="/microsoft-store/distribute-apps-from-your-private-store" target="_blank">Distribute apps using your private store</a>.
@ -231,7 +231,7 @@ The Microsoft Store for Education is where you can shop for more apps for your s
 </br>
-![Create custom folders that appear on managed devices](images/admin-TIB-setp-5-jump.png) 
+![Create custom folders that appear on managed devices.](images/admin-TIB-setp-5-jump.png) 
 ## <a name="it-task5"></a>5. Create custom folders that will appear on each managed device's Start menu
 Update settings for all devices in your tenant by adding the **Documents** and **Downloads** folders to all devices managed in Intune for Education.
@ -239,7 +239,7 @@ Update settings for all devices in your tenant by adding the **Documents** and *
 2. Select **Group > All Devices > Settings** and expand **Windows interface settings**.
 3. In **Choose folders that appear in the Start menu**, select **Documents** and **Downloads**.
-    ![Choose folders that appear in the Start menu](images/screenshot-bug.png)
+    ![Choose folders that appear in the Start menu.](images/screenshot-bug.png)
 4. **Save** your changes.
--- a/education/trial-in-a-box/support-options.md
+++ b/education/trial-in-a-box/support-options.md
@ -38,7 +38,7 @@ For more information about checking for updates, and how to optionally turn on a
   > [!NOTE]
   > For the alternate email address, make sure you use a different address from your Office 365 email address.
-   ![Complete your contact details](images/o365_adminaccountinfo.png)
+   ![Complete your contact details.](images/o365_adminaccountinfo.png)
 4. Click **Save**.
@ -46,17 +46,17 @@ For more information about checking for updates, and how to optionally turn on a
 1. Click the **Need help?** button in the lower right-hand corner of the Office 365 console.
-   ![Select Need help to get support](images/o365_needhelp.png)
+   ![Select Need help to get support.](images/o365_needhelp.png)
   You will see a sidebar window open up on the right-hand side of the screen.
-   ![Option to have a support representative call you](images/o365_needhelp_callingoption.png)
+   ![Option to have a support representative call you.](images/o365_needhelp_callingoption.png)
   If you chose to have a support representative call you, a new support ticket will be opened and you can track these in **Support tickets**.
-   ![Track your support tickets](images/o365_needhelp_supporttickets.png)
+   ![Track your support tickets.](images/o365_needhelp_supporttickets.png)
-2. Click the **question button** ![Question button](images/o365_needhelp_questionbutton.png) in the top navigation of the sidebar window.
+2. Click the **question button** ![Question button.](images/o365_needhelp_questionbutton.png) in the top navigation of the sidebar window.
 3. In the field below **Need help?**, enter a description of your help request.
 4. Click the **Get help button**.
 5. In the **Let us call you** section, enter a phone number where you can be reached.
@ -69,7 +69,7 @@ Forget your password? Follow these steps to recover it.
 1. Go to <a href="https://portal.office.com/" target="_blank">https://portal.office.com</a>
 2. Select **Can't access your account** and follow the prompts to get back into your account.
-   ![Recover your account](images/officeportal_cantaccessaccount.png)
+   ![Recover your account.](images/officeportal_cantaccessaccount.png)
--- a/education/windows/autopilot-reset.md
+++ b/education/windows/autopilot-reset.md
@ -61,7 +61,7 @@ You can set the policy using one of these methods:
  - When using [Set up School PCs](use-set-up-school-pcs-app.md), in the **Configure student PC settings** screen, select **Enable Windows 10 Autopilot Reset** among the list of settings for the student PC as shown in the following example:
-    ![Configure student PC settings in Set up School PCs](images/suspc_configure_pc2.jpg)
+    ![Configure student PC settings in Set up School PCs.](images/suspc_configure_pc2.jpg)
 ## Trigger Autopilot Reset
 Autopilot Reset is a two-step process: trigger it and then authenticate. Once you've done these two steps, you can let the process execute and once it's done, the device is again ready for use. 
@ -70,7 +70,7 @@ Autopilot Reset is a two-step process: trigger it and then authenticate. Once yo
 1. From the Windows device lock screen, enter the keystroke: **CTRL + Windows key + R**. 
-   ![Enter CTRL+Windows key+R on the Windows lockscreen](images/autopilot-reset-lockscreen.png)
+   ![Enter CTRL+Windows key+R on the Windows lockscreen.](images/autopilot-reset-lockscreen.png)
   This will open up a custom login screen for Autopilot Reset. The screen serves two purposes:
@ -78,7 +78,7 @@ Autopilot Reset is a two-step process: trigger it and then authenticate. Once yo
   2. Notify the user in case a provisioning package, created using Windows Configuration Designer or Set up School PCs, will be used as part of the process.
-      ![Custom login screen for Autopilot Reset](images/autopilot-reset-customlogin.png)
+      ![Custom login screen for Autopilot Reset.](images/autopilot-reset-customlogin.png)
 2. Sign in with the admin account credentials. If you created a provisioning package, plug in the USB drive and trigger Autopilot Reset.
@ -97,7 +97,7 @@ Autopilot Reset is a two-step process: trigger it and then authenticate. Once yo
   - Is returned to a known good managed state, connected to Azure AD and MDM.
-     ![Notification that provisioning is complete](images/autopilot-reset-provisioningcomplete.png)
+     ![Notification that provisioning is complete.](images/autopilot-reset-provisioningcomplete.png)
     Once provisioning is complete, the device is again ready for use.
--- a/education/windows/change-to-pro-education.md
+++ b/education/windows/change-to-pro-education.md
@ -65,7 +65,7 @@ See [change using Microsoft Store for Education](#change-using-microsoft-store-f
        **Figure 1** - Enter the details for the Windows edition change
-        ![Enter the details for the Windows edition change](images/i4e_editionupgrade.png)
+        ![Enter the details for the Windows edition change.](images/i4e_editionupgrade.png)
 3. The change will automatically be applied to the group you selected.
@ -78,7 +78,7 @@ You can use Windows Configuration Designer to create a provisioning package that
    **Figure 2** - Enter the license key 
-    ![Enter the license key to change to Windows 10 Pro Education](images/wcd_productkey.png)
+    ![Enter the license key to change to Windows 10 Pro Education.](images/wcd_productkey.png)
 3. Complete the rest of the process for creating a provisioning package and then apply the package to the devices you want to change to Windows 10 Pro Education.
@ -123,7 +123,7 @@ Once you enable the setting to change to Windows 10 Pro Education, the change wi
    **Figure 3** - Check the box to confirm
-    ![Check the box to confirm](images/msfe_manage_benefits_checktoconfirm.png)
+    ![Check the box to confirm.](images/msfe_manage_benefits_checktoconfirm.png)
 5. Click **Change all my devices**. 
@ -169,13 +169,13 @@ If the Windows device is running Windows 10, version 1703, follow these steps.
    **Figure 4** - Select how you'd like to set up the device
-    ![Select how you'd like to set up the device](images/1_howtosetup.png)
+    ![Select how you'd like to set up the device.](images/1_howtosetup.png)
 2. On the **Sign in with Microsoft** page, enter the username and password to use with Office 365 or other services from Microsoft, and then click **Next**.
    **Figure 5** - Enter the account details
-    ![Enter the account details you use with Office 365 or other Microsoft services](images/2_signinwithms.png)
+    ![Enter the account details you use with Office 365 or other Microsoft services.](images/2_signinwithms.png)
 3. Go through the rest of Windows device setup. Once you're done, the device will be Azure AD joined to your school's subscription.
@ -188,21 +188,21 @@ If the Windows device is running Windows 10, version 1703, follow these steps.
    **Figure 6** - Go to **Access work or school** in Settings
-    ![Go to Access work or school in Settings](images/settings_workorschool_1.png)
+    ![Go to Access work or school in Settings.](images/settings_workorschool_1.png)
 2. In **Access work or school**, click **Connect**.
 3. In the **Set up a work or school account** window, click the **Join this device to Azure Active Directory** option at the bottom.
    **Figure 7** - Select the option to join the device to Azure Active Directory
-    ![Select the option to join the device to Azure Active Directory](images/settings_setupworkorschoolaccount_2.png)
+    ![Select the option to join the device to Azure Active Directory.](images/settings_setupworkorschoolaccount_2.png)
 4. On the **Let's get you signed in** window, enter the Azure AD credentials (username and password) and sign in. This will join the device to the school's Azure AD.
 5. To verify that the device was successfully joined to Azure AD, go back to **Settings > Accounts > Access work or school**. You should now see a connection under the **Connect to work or school** section that indicates the device is connected to Azure AD.
    **Figure 8** - Verify the device connected to Azure AD
-    ![Verify the device is connected to Azure AD](images/settings_connectedtoazuread_3.png)
+    ![Verify the device is connected to Azure AD.](images/settings_connectedtoazuread_3.png)
 #### Step 2: Sign in using Azure AD account
@ -286,7 +286,7 @@ Once the automatic change to Windows 10 Pro Education is turned off, the change
    **Figure 12** - Revert to Windows 10 Pro
-    ![Revert to Windows 10 Pro](images/msfe_manage_reverttowin10pro.png)
+    ![Revert to Windows 10 Pro.](images/msfe_manage_reverttowin10pro.png)
 4. You will be asked if you're sure that you want to turn off automatic changes to Windows 10 Pro Education. Click **Yes**.
 5. Click **Close** in the **Success** page.
@ -304,7 +304,7 @@ You need to synchronize these identities so that users will have a *single ident
 **Figure 13** - On-premises AD DS integrated with Azure AD
-![Illustration of Azure Active Directory Connect](images/windows-ad-connect.png)
+![Illustration of Azure Active Directory Connect.](images/windows-ad-connect.png)
 For more information about integrating on-premises AD DS domains with Azure AD, see these resources:
 -   [Integrating your on-premises identities with Azure Active Directory](/azure/active-directory/hybrid/whatis-hybrid-identity)
--- a/education/windows/chromebook-migration-guide.md
+++ b/education/windows/chromebook-migration-guide.md
@ -118,7 +118,7 @@ At the end of this section, you should have a list of Chromebook user and device
 You use the Google Admin Console (as shown in Figure 1) to manage user and device settings. These settings are applied to all the Chromebook devices in your institution that are enrolled in the Google Admin Console. Review the user and device settings in the Google Admin Console and determine which settings are appropriate for your Windows devices.
-![figure 1](images/chromebook-fig1-googleadmin.png)
+![figure 1.](images/chromebook-fig1-googleadmin.png)
 Figure 1. Google Admin Console
@ -221,7 +221,7 @@ Table 3. Settings in the Security node in the Google Admin Console
 In addition to the settings configured in the Google Admin Console, users may have locally configured their devices based on their own personal preferences (as shown in Figure 2). Table 4 lists the Chromebook user and device settings that you can locally configure. Review the settings and determine which settings you will migrate to Windows. Some of the settings listed in Table 4 can only be seen when you click the **Show advanced settings** link (as shown in Figure 2).
-![figure 2](images/fig2-locallyconfig.png)
+![figure 2.](images/fig2-locallyconfig.png)
 Figure 2. Locally-configured settings on Chromebook
--- a/education/windows/configure-windows-for-education.md
+++ b/education/windows/configure-windows-for-education.md
@ -94,19 +94,19 @@ Use one of these methods to set this policy.
    - Data type:  Integer
    - Value:  0
-      ![Create an OMA URI for AllowCortana](images/allowcortana_omauri.png)
+      ![Create an OMA URI for AllowCortana.](images/allowcortana_omauri.png)
 ### Group Policy
 Set **Computer Configuration > Administrative Templates > Windows Components > Search > AllowCortana** to **Disabled**.
-![Set AllowCortana to disabled through Group Policy](images/allowcortana_gp.png)
+![Set AllowCortana to disabled through Group Policy.](images/allowcortana_gp.png)
 ### Provisioning tools
 - [Set up School PCs](use-set-up-school-pcs-app.md) always sets this policy in provisioning packages it creates.
 - [Windows Configuration Designer](/windows/configuration/provisioning-packages/provisioning-create-package) 
    - Under **Runtime settings**, click the **Policies** settings group, set **Experience > Cortana** to **No**.
-        ![Set AllowCortana to No in Windows Configuration Designer](images/allowcortana_wcd.png)
+        ![Set AllowCortana to No in Windows Configuration Designer.](images/allowcortana_wcd.png)
 ## SetEduPolicies
 **SetEduPolicies** is a policy that applies a set of configuration behaviors to Windows. It is a policy node in the [SharedPC configuration service provider](/windows/client-management/mdm/sharedpc-csp).
@ -123,7 +123,7 @@ Use one of these methods to set this policy.
    - Data type:  Boolean
    - Value:  true
-      ![Create an OMA URI for SetEduPolices](images/setedupolicies_omauri.png)
+      ![Create an OMA URI for SetEduPolices.](images/setedupolicies_omauri.png)
 ### Group Policy
 **SetEduPolicies** is not natively supported in Group Policy. Instead, use the [MDM Bridge WMI Provider](/windows/win32/dmwmibridgeprov/mdm-bridge-wmi-provider-portal) to set the policy in [MDM SharedPC](/windows/win32/dmwmibridgeprov/mdm-sharedpc). 
@ -147,7 +147,7 @@ For example:
 - [Windows Configuration Designer](/windows/configuration/provisioning-packages/provisioning-create-package) 
    - Under **Runtime settings**, click the **SharedPC** settings group, set **PolicyCustomization > SetEduPolicies** to **True**.
-        ![Set SetEduPolicies to True in Windows Configuration Designer](images/setedupolicies_wcd.png)
+        ![Set SetEduPolicies to True in Windows Configuration Designer.](images/setedupolicies_wcd.png)
 ## Ad-free search with Bing
 Provide an ad-free experience that is a safer, more private search option for K–12 education institutions in the United States. 
--- a/education/windows/deploy-windows-10-in-a-school-district.md
+++ b/education/windows/deploy-windows-10-in-a-school-district.md
@ -34,21 +34,21 @@ Proper preparation is essential for a successful district deployment. To avoid c
 As part of preparing for your district deployment, you need to plan your district configuration — the focus of this guide. Figure 1 illustrates a typical finished district configuration that you can use as a model (the blueprint in our builder analogy) for the finished state.
 > [!div class="mx-imgBorder"]
-> ![Typical district configuration for this guide](images/edu-districtdeploy-fig1.png "Typical district configuration for this guide")
+> ![Typical district configuration for this guide.](images/edu-districtdeploy-fig1.png "Typical district configuration for this guide")
 *Figure 1. Typical district configuration for this guide*
 A *district* consists of multiple schools, typically at different physical locations. Figure 2 illustrates a typical school configuration within the district that this guide uses.
 > [!div class="mx-imgBorder"]
-> ![Typical school configuration for this guide](images/edu-districtdeploy-fig2.png "Typical school configuration for this guide")
+> ![Typical school configuration for this guide.](images/edu-districtdeploy-fig2.png "Typical school configuration for this guide")
 *Figure 2. Typical school configuration for this guide*
 Finally, each school consists of multiple classrooms. Figure 3 shows the classroom configuration this guide uses.
 > [!div class="mx-imgBorder"]
-> ![Typical classroom configuration in a school](images/edu-districtdeploy-fig3.png "Typical classroom configuration in a school")
+> ![Typical classroom configuration in a school.](images/edu-districtdeploy-fig3.png "Typical classroom configuration in a school")
 *Figure 3. Typical classroom configuration in a school*
@ -181,7 +181,7 @@ The high-level process for deploying and configuring devices within individual c
 9. On the admin device, manage the Windows 10 devices and apps, the Office 365 subscription, and the AD DS–Azure AD integration.
 > [!div class="mx-imgBorder"]
-> ![How district configuration works](images/edu-districtdeploy-fig4.png "How district configuration works")
+> ![How district configuration works.](images/edu-districtdeploy-fig4.png "How district configuration works")
 *Figure 4. How district configuration works*
@ -768,7 +768,7 @@ In this method, you have an on-premises AD DS domain. As shown in Figure 5, the
 > Azure AD Connect also supports synchronization from any Lightweight Directory Access Protocol version 3 (LDAPv3)–compliant directory by using the information provided in [Generic LDAP Connector for FIM 2010 R2 Technical Reference](/previous-versions/mim/dn510997(v=ws.10)).
 > [!div class="mx-imgBorder"]
-> ![Automatic synchronization between AD DS and Azure AD](images/edu-districtdeploy-fig5.png "Automatic synchronization between AD DS and Azure AD")
+> ![Automatic synchronization between AD DS and Azure AD.](images/edu-districtdeploy-fig5.png "Automatic synchronization between AD DS and Azure AD")
 *Figure 5. Automatic synchronization between AD DS and Azure AD*
@ -779,7 +779,7 @@ For more information about how to perform this step, see the [Integrate on-premi
 In this method, you have no on-premises AD DS domain. As shown in Figure 6, you manually prepare a .csv file with the student information from your source, and then manually import the information directly into Azure AD. The .csv file must be in the format that Office 365 specifies.
 > [!div class="mx-imgBorder"]
-> ![Bulk import into Azure AD from other sources](images/edu-districtdeploy-fig6.png "Bulk import into Azure AD from other sources")
+> ![Bulk import into Azure AD from other sources.](images/edu-districtdeploy-fig6.png "Bulk import into Azure AD from other sources")
 *Figure 6. Bulk import into Azure AD from other sources*
@ -812,14 +812,14 @@ You can deploy the Azure AD Connect tool:
 - **On premises.** As shown in Figure 7, Azure AD Connect runs on premises, which has the advantage of not requiring a VPN connection to Azure. It does, however, require a virtual machine (VM) or physical server.
  > [!div class="mx-imgBorder"]
-  > ![Azure AD Connect on premises](images/edu-districtdeploy-fig7.png "Azure AD Connect on premises")
+  > ![Azure AD Connect on premises.](images/edu-districtdeploy-fig7.png "Azure AD Connect on premises")
  *Figure 7. Azure AD Connect on premises*
 - **In Azure.** As shown in Figure 8, Azure AD Connect runs on a VM in Azure AD, which has the advantages of being faster to provision (than a physical, on-premises server), offers better site availability, and helps reduce the number of on-premises servers. The disadvantage is that you need to deploy a VPN gateway on premises.
  > [!div class="mx-imgBorder"]
-  > ![Azure AD Connect in Azure](images/edu-districtdeploy-fig8.png "Azure AD Connect in Azure")
+  > ![Azure AD Connect in Azure.](images/edu-districtdeploy-fig8.png "Azure AD Connect in Azure")
  *Figure 8. Azure AD Connect in Azure*
--- a/education/windows/deploy-windows-10-in-a-school.md
+++ b/education/windows/deploy-windows-10-in-a-school.md
@ -30,13 +30,13 @@ Proper preparation is essential for a successful school deployment. To avoid com
 As part of preparing for your school deployment, you need to plan your configuration—the focus of this guide. Figure 1 illustrates a typical finished school configuration that you can use as a model (the blueprint in our builder analogy) for the finished state.
-![fig 1](images/deploy-win-10-school-figure1.png)
+![fig 1.](images/deploy-win-10-school-figure1.png)
 *Figure 1. Typical school configuration for this guide*
 Figure 2 shows the classroom configuration this guide uses.
-![fig 2](images/deploy-win-10-school-figure2.png)
+![fig 2.](images/deploy-win-10-school-figure2.png)
 *Figure 2. Typical classroom configuration in a school*
@ -112,7 +112,7 @@ The high-level process for deploying and configuring devices within individual c
 6. On the student and faculty devices, deploy Windows 10 to new or existing devices, or upgrade eligible devices to Windows 10.
 7. On the admin device, manage the Windows 10 devices and apps, the Office 365 subscription, and the AD DS and Azure AD integration.
-![fig 3](images/deploy-win-10-school-figure3.png)
+![fig 3.](images/deploy-win-10-school-figure3.png)
 *Figure 3. How school configuration works*
@ -346,7 +346,7 @@ In this method, you have an on-premises AD DS domain. As shown in Figure 4, the
 **Note**&nbsp;&nbsp;Azure AD Connect also supports synchronization from any Lightweight Directory Access Protocol version 3 (LDAPv3)–compliant directory by using the information provided in [Generic LDAP Connector for FIM 2010 R2 Technical Reference](/previous-versions/mim/dn510997(v=ws.10)?f=255&MSPPError=-2147217396).
-![fig 4](images/deploy-win-10-school-figure4.png)
+![fig 4.](images/deploy-win-10-school-figure4.png)
 *Figure 4. Automatic synchronization between AD DS and Azure AD*
@ -356,7 +356,7 @@ For more information about how to perform this step, see the [Integrate on-premi
 In this method, you have no on-premises AD DS domain. As shown in Figure 5, you manually prepare a .csv file with the student information from your source, and then manually import the information directly into Azure AD. The .csv file must be in the format that Office 365 specifies.
-![fig 5](images/deploy-win-10-school-figure5.png)
+![fig 5.](images/deploy-win-10-school-figure5.png)
 *Figure 5. Bulk import into Azure AD from other sources*
@ -383,13 +383,13 @@ You can deploy the Azure AD Connect tool by using one of the following methods:
 - **On premises.** As shown in Figure 6, Azure AD Connect runs on premises, which has the advantage of not requiring a virtual private network (VPN) connection to Azure. It does, however, require a virtual machine (VM) or physical server.
-  ![fig 6](images/deploy-win-10-school-figure6.png)
+  ![fig 6.](images/deploy-win-10-school-figure6.png)
  *Figure 6. Azure AD Connect on premises*
 - **In Azure**. As shown in Figure 7, Azure AD Connect runs on a VM in Azure AD, which has the advantages of being faster to provision (than a physical, on-premises server), offers better site availability, and helps reduce the number of on-premises servers. The disadvantage is that you need to deploy a VPN gateway on premises.
-  ![fig 7](images/deploy-win-10-school-figure7.png)
+  ![fig 7.](images/deploy-win-10-school-figure7.png)
  *Figure 7. Azure AD Connect in Azure*
--- a/education/windows/edu-deployment-recommendations.md
+++ b/education/windows/edu-deployment-recommendations.md
@ -55,11 +55,11 @@ To turn off access to contacts for all apps on individual Windows devices:
 1. On the computer, go to **Settings** and select **Privacy**.
-   ![Privacy settings](images/win10_settings_privacy.png)
+   ![Privacy settings.](images/win10_settings_privacy.png)
 2. Under the list of **Privacy** areas, select **Contacts**.
-   ![Contacts privacy settings](images/win10_settings_privacy_contacts.png)
+   ![Contacts privacy settings.](images/win10_settings_privacy_contacts.png)
 3. Turn off **Let apps access my contacts**.
@ -73,7 +73,7 @@ For IT-managed Windows devices, you can use a Group Policy to turn off the setti
 If you want to allow only certain apps to have access to contacts, you can use the switch for each app to specify which ones you want on or off.
-![Choose apps with access to contacts](images/win10_settings_privacy_contacts_apps.png)
+![Choose apps with access to contacts.](images/win10_settings_privacy_contacts_apps.png)
 The list of apps on the Windows-based device may vary from the above example. The list depends on what apps you have installed and which of these apps access contacts.
@ -83,7 +83,7 @@ To allow only certain apps to have access to contacts, you can:
 * Apply the Group Policy: **Computer Configuration** > **Administrative Templates** > **Windows Components** > **App Privacy** > **Let Windows apps access contacts** and then specify the default for each app by adding the app's Package Family Name under the default behavior you want to enforce.
-  ![App privacy Group Policy](images/gp_letwinappsaccesscontacts.png)
+  ![App privacy Group Policy.](images/gp_letwinappsaccesscontacts.png)
 ## Skype and Xbox settings
@ -109,7 +109,7 @@ Skype uses the user’s contact details to deliver important information about t
 To manage and edit your profile in the Skype UWP app, follow these steps:
-1. In the Skype UWP app, select the user profile icon ![Skype profile icon](images/skype_uwp_userprofile_icon.png)  to go to the user’s profile page.
+1. In the Skype UWP app, select the user profile icon ![Skype profile icon.](images/skype_uwp_userprofile_icon.png)  to go to the user’s profile page.
 2. In the account page, select **Manage account** for the Skype account that you want to change. This will take you to the online Skype portal.
@ -127,7 +127,7 @@ To manage and edit your profile in the Skype UWP app, follow these steps:
 6. To change the profile picture, go to the Skype app and click on the current profile picture or avatar. The **Manage Profile Picture** window pops up.
-   ![Skype profile icon](images/skype_uwp_manageprofilepic.png)
+   ![Skype profile icon.](images/skype_uwp_manageprofilepic.png)
   * To take a new picture, click the camera icon in the pop up window. To upload a new picture, click the three dots (**...**).
--- a/education/windows/education-scenarios-store-for-business.md
+++ b/education/windows/education-scenarios-store-for-business.md
@ -39,7 +39,7 @@ Admins can control whether or not teachers are automatically assigned the **Basi
 2. Click **Manage**, and then click **Settings**. 
 3. On **Shop**, select or clear **Make everyone a Basic Purchaser**.
-![manage settings to control Basic Purchaser role assignment](images/sfe-make-everyone-bp.png)
+![manage settings to control Basic Purchaser role assignment.](images/sfe-make-everyone-bp.png)
 > [!NOTE]
 > **Make everyone a Basic Purchaser** is on by default. 
@ -52,7 +52,7 @@ When **Make everyone a Basic Purchaser** is turned off, admins can manually assi
 2. Click **Manage**, and then choose **Permissions**.
 3. On **Roles**, click **Assign roles**, type and select a name, choose the role you want to assign, and then click **Save**.
-    ![Permission page for Microsoft Store for Business](images/sfe-roles.png)
+    ![Permission page for Microsoft Store for Business.](images/sfe-roles.png)
 **Blocked Basic Purchasers**
--- a/education/windows/get-minecraft-for-education.md
+++ b/education/windows/get-minecraft-for-education.md
@ -29,7 +29,7 @@ ms.topic: conceptual
 Teachers and IT administrators can now get early access to **Minecraft: Education Edition** and add it their Microsoft Store for Business for distribution. 
-<!-- ![education.minecraft.net](images/minecraft.png) -->
+<!-- ![education.minecraft.net.](images/minecraft.png) -->
 ## Prerequisites
@ -39,11 +39,11 @@ Teachers and IT administrators can now get early access to **Minecraft: Educatio
  - Office 365 Education, which includes online versions of Office apps plus 1 TB online storage. [Sign up your school for Office 365 Education.](https://products.office.com/academic/office-365-education-plan)
  - If your school has an Office 365 Education subscription, it includes a free Azure AD subscription. [Register your free Azure AD subscription.](/windows/client-management/mdm/register-your-free-azure-active-directory-subscription)
-<!-- ![teacher](images/teacher.png) --> 
+<!-- ![teacher.](images/teacher.png) --> 
 [Learn how teachers can get and distribute **Minecraft: Education Edition**](teacher-get-minecraft.md)
-<!-- ![IT administrator](images/school.png) -->
+<!-- ![IT administrator.](images/school.png) -->
 [Learn how IT administrators can get and distribute **Minecraft: Education Edition**](school-get-minecraft.md), and how to manage permissions for Minecraft.
--- a/education/windows/index.md
+++ b/education/windows/index.md
@ -14,15 +14,15 @@ ms.date: 10/13/2017
 # Windows 10 for Education
-![Windows 10 Education and Windows 10 Pro Education](images/windows-10-for-education-banner.png)
+![Windows 10 Education and Windows 10 Pro Education.](images/windows-10-for-education-banner.png)
-## ![Learn more about Windows](images/education.png) Learn
+## ![Learn more about Windows.](images/education.png) Learn
 <p><b><a href="windows-editions-for-education-customers.md" data-raw-source="[Windows 10 editions for education customers](windows-editions-for-education-customers.md)">Windows 10 editions for education customers</a></b><br />Windows 10, version 1607 introduces two editions designed for the unique needs of K-12 institutions: Windows 10 Pro Education and Windows 10 Education. These editions provide education-specific default settings for the evolving landscape in K-12 education IT environments.</p>
 <p><b><a href="https://www.microsoft.com/WindowsForBusiness/Compare" data-raw-source="[Compare each Windows edition](https://www.microsoft.com/WindowsForBusiness/Compare)">Compare each Windows edition</a></b><br />Find out more about the features and functionality we support in each edition of Windows.</p>
 <p><b><a href="https://www.microsoft.com/education/buy-license/overview-of-how-to-buy/default.aspx?tabshow=schools" data-raw-source="[Get Windows 10 Education or Windows 10 Pro Education](https://www.microsoft.com/education/buy-license/overview-of-how-to-buy/default.aspx?tabshow=schools)">Get Windows 10 Education or Windows 10 Pro Education</a></b><br />When you&#39;ve made your decision, find out how to buy Windows for your school.</p>
-## ![Plan for Windows 10 in your school](images/clipboard.png) Plan
+## ![Plan for Windows 10 in your school.](images/clipboard.png) Plan
 <p><b><a href="configure-windows-for-education.md" data-raw-source="[Windows 10 configuration recommendations for education customers](configure-windows-for-education.md)">Windows 10 configuration recommendations for education customers</a></b><br />Provides guidance on ways to customize the OS diagnostic data, consumer experiences, Cortana, search, as well as some of the preinstalled apps, so that Windows is ready for your school.</p>
 <p><b><a href="edu-deployment-recommendations.md" data-raw-source="[Deployment recommendations for school IT administrators](edu-deployment-recommendations.md)">Deployment recommendations for school IT administrators</a></b><br />Learn how to customize the OS privacy settings, Skype, and Xbox for Windows-based devices used in schools so that you can choose what information is shared with Microsoft.</p>
@ -30,14 +30,14 @@ ms.date: 10/13/2017
 <div class="side-by-side-content-right"><p><b><a href="take-tests-in-windows-10.md" data-raw-source="[Take tests in Windows 10](take-tests-in-windows-10.md)">Take tests in Windows 10</a></b><br />Take a Test is a new app that lets you create the right environment for taking tests. Learn how to use and get it set up.</p>
 <p><b><a href="chromebook-migration-guide.md" data-raw-source="[Chromebook migration guide](chromebook-migration-guide.md)">Chromebook migration guide</a></b><br />Find out how you can migrate a Chromebook-based learning environment to a Windows 10-based learning environment.</p>
-## ![Deploy Windows 10 for Education](images/PCicon.png) Deploy
+## ![Deploy Windows 10 for Education.](images/PCicon.png) Deploy
 <p><b><a href="set-up-windows-10.md" data-raw-source="[Set up Windows devices for education](set-up-windows-10.md)">Set up Windows devices for education</a></b><br />Depending on your school&#39;s device management needs, you can use the Set up School PCs app or the Windows Configuration Designer tool to quickly set up student PCs.</p>
 <p><b><a href="deploy-windows-10-in-a-school.md" data-raw-source="[Deploy Windows 10 in a school](deploy-windows-10-in-a-school.md)">Deploy Windows 10 in a school</a></b><br />Get step-by-step guidance to help you deploy Windows 10 in a school environment.</p>
 <p><b><a href="deploy-windows-10-in-a-school-district.md" data-raw-source="[Deploy Windows 10 in a school district](deploy-windows-10-in-a-school-district.md)">Deploy Windows 10 in a school district</a></b><br />Get step-by-step guidance on how to deploy Windows 10 to PCs and devices across a school district.</p>
 <p><b><a href="test-windows10s-for-edu.md" data-raw-source="[Test Windows 10 S on existing Windows 10 education devices](test-windows10s-for-edu.md)">Test Windows 10 S on existing Windows 10 education devices</a></b><br />Test Windows 10 S on a variety of Windows 10 devices (except Windows 10 Home) in your school and share your feedback with us.</p>
-## ![Switch to Windows 10 for Education](images/windows.png) Switch
+## ![Switch to Windows 10 for Education.](images/windows.png) Switch
 <p><b><a href="change-to-pro-education.md" data-raw-source="[Switch to Windows 10 Pro Education from Windows 10 Pro or Windows 10 S](change-to-pro-education.md)">Switch to Windows 10 Pro Education from Windows 10 Pro or Windows 10 S</a></b><br />If you have an education tenant and use Windows 10 Pro or Windows 10 S in your schools, find out how you can opt-in to a free switch to Windows 10 Pro Education.</p>
--- a/education/windows/school-get-minecraft.md
+++ b/education/windows/school-get-minecraft.md
@ -50,15 +50,15 @@ If you’ve been approved and are part of the Enrollment for Education Solutions
 1. Go to [https://education.minecraft.net/](https://education.minecraft.net/) and select **GET STARTED**.
-    <!-- ![Click Get the app](images/it-get-app.png) --> 
+    <!-- ![Click Get the app.](images/it-get-app.png) --> 
 2. Enter your email address, and select Educator, Administrator, or Student. </br> If your email address isn't associated to an Azure AD or Office 365 Education tenant, you'll be asked to create one.
-    <!-- ![Enter school email address](images/enter-email.png) -->
+    <!-- ![Enter school email address.](images/enter-email.png) -->
 3. Select **Get the app**. This will take you to the Microsoft Store for Education to download the app. You will also receive an email with instructions and a link to the Store.
-    <!-- ![You can get the app now](images/get-the-app.png) -->
+    <!-- ![You can get the app now.](images/get-the-app.png) -->
 4. Sign in to Microsoft Store for Education with your email address.
@ -66,7 +66,7 @@ If you’ve been approved and are part of the Enrollment for Education Solutions
 6. **Minecraft: Education Edition** opens in the Microsoft Store for Education. Select **Get the app**. This places **Minecraft: Education Edition** in your Store inventory.
-    <!-- ![Get Minecraft app in Store](images/minecraft-get-the-app.png) -->
+    <!-- ![Get Minecraft app in Store.](images/minecraft-get-the-app.png) -->
 Now that the app is in your Microsoft Store for Education inventory, you can choose how to distribute Minecraft. For more information on distribution options, see [Distribute Minecraft](#distribute-minecraft).
@ -113,11 +113,11 @@ After you've finished the purchase, you can find your invoice by checking **Mine
 2. Click **Minecraft: Education Edition** in the list of apps. 
 3. On **Minecraft: Education Edition**, click **View Bills**.
-    ![Minecraft: Education Edition app details page with view bills link highlighted](images/mcee-view-bills.png) 
+    ![Minecraft: Education Edition app details page with view bills link highlighted.](images/mcee-view-bills.png) 
 4. On **Invoice Bills**, click the invoice number to view and download your invoice. It downloads as a .pdf.
-   ![Minecraft: Education Edition app details page with view bills link highlighted](images/mcee-invoice-bills.png)
+   ![Minecraft: Education Edition app details page with view bills link highlighted.](images/mcee-invoice-bills.png)
 The **Payment Instructions** section on the first page of the invoice has information on invoice amount, due date, and how to pay with electronic funds transfer, or with a check. 
@ -133,11 +133,11 @@ Admins can also add Minecraft: Education Edition to the private store. This allo
 <!---
 Here's the page you'll see for Minecraft: Education Edition licenses purchased directly through the Microsoft Store for Business. 
-![App distribution options - individual copies](images/mc-install-for-me-teacher.png)
+![App distribution options - individual copies.](images/mc-install-for-me-teacher.png)
 Here's the page you'll see for Minecraft: Education Edition licenses purchased through volume licensing.
-![App distribution options - individual copies](images/wsfb-minecraft-vl.png)
+![App distribution options - individual copies.](images/wsfb-minecraft-vl.png)
 --->
 ### Configure automatic subscription assignment
@ -168,7 +168,7 @@ You can install the app on your PC. This gives you a chance to test the app and
 1. Sign in to [Microsoft Store for Education](https://educationstore.microsoft.com). 
 2. Click **Manage**, and then click **Install**.
-    <!-- ![Minecraft Education Edition product page](images/mc-install-for-me-teacher.png) -->
+    <!-- ![Minecraft Education Edition product page.](images/mc-install-for-me-teacher.png) -->
 3. Click **Install**.  
@ -180,33 +180,33 @@ Enter email addresses for your students, and each student will get an email with
 1. Sign in to [Microsoft Store for Education](https://educationstore.microsoft.com). 
 2. Click **Manage**.
-    ![Minecraft Education Edition product page](images/mc-install-for-me-teacher.png)
+    ![Minecraft Education Edition product page.](images/mc-install-for-me-teacher.png)
 3. Click **Invite people**.
 4. Type the name, or email address of the student or group you want to assign the app to, and then click **Assign**. 
    You can only assign the app to students with work or school accounts. If you don't find the student, you might need to add a work or school account for the student.    
-    ![Assign to people showing student name](images/minecraft-assign-to-people-name.png)
+    ![Assign to people showing student name.](images/minecraft-assign-to-people-name.png)
 **To finish Minecraft install (for students)**
 1. Students will receive an email with a link that will install the app on their PC.</br>
-    ![Email with Get the app link](images/minecraft-student-install-email.png)
+    ![Email with Get the app link.](images/minecraft-student-install-email.png)
 2. Click **Get the app** to start the app install in Microsoft Store app. 
 3. In Microsoft Store app, click **Install**. 
-    ![Microsoft Store app with Minecraft page](images/minecraft-in-windows-store-app.png)
+    ![Microsoft Store app with Minecraft page.](images/minecraft-in-windows-store-app.png)
    After installing the app, students can find Minecraft: Education Edition in Microsoft Store app under **My Library**. Microsoft Store app is preinstalled with Windows 10.
-    ![Microsoft Store app showing access to My Library](images/minecraft-private-store.png) 
+    ![Microsoft Store app showing access to My Library.](images/minecraft-private-store.png) 
    When students click **My Library** they'll find apps assigned to them.
-    ![My Library for example student](images/minecraft-my-library.png) 
+    ![My Library for example student.](images/minecraft-my-library.png) 
 ### Download for others
 Download for others allows teachers or IT admins to download an app that they can install on PCs. This will install Minecraft: Education Edition on the PC, and allows anyone with a Windows account to use the app on that PC. This option is best for students, and for shared computers. Choose this option when:
@ -225,11 +225,11 @@ Minecraft: Education Edition will not install if there are updates pending for o
 1. Start Microsoft Store app on the PC (click **Start**, and type **Store**).
 2. Click the account button, and then click **Downloads and updates**.
-      ![Microsoft Store app showing access to My Library](images/minecraft-private-store.png)
+      ![Microsoft Store app showing access to My Library.](images/minecraft-private-store.png)
 3. Click **Check for updates**, and install all available updates. 
-      ![Microsoft Store app showing access to My Library](images/mc-check-for-updates.png)
+      ![Microsoft Store app showing access to My Library.](images/mc-check-for-updates.png)
 4. Restart the computer before installing Minecraft: Education Edition.  
@ -238,7 +238,7 @@ You'll download a .zip file, extract the files, and then use one of the files to
 1. **Download Minecraft Education Edition.zip**. From the **Minecraft: Education Edition** page, click **Download for others** tab, and then click **Download**.
-    ![Microsoft Store app showing access to My Library](images/mc-dnld-others-teacher.png)
+    ![Microsoft Store app showing access to My Library.](images/mc-dnld-others-teacher.png)
 2. **Extract files**. Find the .zip file that you downloaded and extract the files. This is usually your **Downloads** folder, unless you chose to save the .zip file to a different location. Right-click the file and choose **Extract all**.
 3. **Save to USB drive**. After you've extracted the files, save the Minecraft: Education Edition folder to a USB drive, or to a network location that you can access from each PC.  
@ -257,7 +257,7 @@ However, tenant admins can control whether or not teachers automatically sign up
 To prevent educators from automatically signing up for Microsoft Store for Business
 1.  In Microsoft Store for Business, click **Settings**, and then click **Permissions**. 
-    ![Permission page for Microsoft Store for Business](images/minecraft-admin-permissions.png)
+    ![Permission page for Microsoft Store for Business.](images/minecraft-admin-permissions.png)
 2. Click **Allow educators in my organization to sign up for the Microsoft Store for Business.**
@ -269,7 +269,7 @@ Minecraft: Education Edition adds a new role for teachers: **Basic Purchaser**.
 - Acquire and manage the app
 - Info on Support page (including links to documentation and access to support through customer service)
-    ![assign roles to manage Minecraft permissions](images/minecraft-perms.png)
+    ![assign roles to manage Minecraft permissions.](images/minecraft-perms.png)
 **To assign Basic Purchaser role**
@ -280,15 +280,15 @@ Minecraft: Education Edition adds a new role for teachers: **Basic Purchaser**.
 2. Click **Settings**, and then choose **Permissions**.
-    ![Permission page for Microsoft Store for Business](images/minecraft-admin-permissions.png)
+    ![Permission page for Microsoft Store for Business.](images/minecraft-admin-permissions.png)
 3. Click **Add people**, type a name, select the correct person, choose the role you want to assign, and click **Save**.
-    ![Permission page for Microsoft Store for Business](images/minecraft-assign-roles.png)
+    ![Permission page for Microsoft Store for Business.](images/minecraft-assign-roles.png)
    Microsoft Store for Business updates the list of people and permissions. 
-    ![Permission page for Microsoft Store for Business](images/minecraft-assign-roles-2.png)
+    ![Permission page for Microsoft Store for Business.](images/minecraft-assign-roles-2.png)
 -->
--- a/education/windows/set-up-school-pcs-azure-ad-join.md
+++ b/education/windows/set-up-school-pcs-azure-ad-join.md
@ -48,7 +48,7 @@ Active Directory** \> **Devices** \> **Device settings**.
 for Azure AD by selecting **All** or **Selected**. If you choose the latter
 option, select the teachers and IT staff to allow them to connect to Azure AD.  
-![Select the users you want to let join devices to Azure AD](images/suspc-enable-shared-pc-1807.png)  
+![Select the users you want to let join devices to Azure AD.](images/suspc-enable-shared-pc-1807.png)  
 You can also create an account that holds the exclusive rights to join devices. When a student PC needs to be set up, provide the account credentials to the appropriate teachers or staff.
--- a/education/windows/set-up-students-pcs-to-join-domain.md
+++ b/education/windows/set-up-students-pcs-to-join-domain.md
@ -43,7 +43,7 @@ Follow the steps in [Provision PCs with common settings for initial deployment (
      **Figure 7** - Add the account to use for test-taking
-      ![Add the account to use for test-taking](images/wcd_settings_assignedaccess.png)
+      ![Add the account to use for test-taking.](images/wcd_settings_assignedaccess.png)
      The account can be in one of the following formats:
      - username
--- a/education/windows/set-up-students-pcs-with-apps.md
+++ b/education/windows/set-up-students-pcs-with-apps.md
@ -35,7 +35,7 @@ You can apply a provisioning package on a USB drive to off-the-shelf devices dur
 2. 
 2. On the **Finish** page, select **Switch to advanced editor**.
-  ![Switch to advanced editor](images/icd-school-adv-edit.png)
+  ![Switch to advanced editor.](images/icd-school-adv-edit.png)
 **Next steps**
 - [Add a desktop app to your package](#add-a-desktop-app-to-your-package)
@ -52,7 +52,7 @@ Use the Windows Imaging and Configuration Designer (ICD) tool included in the Wi
 2. Click **Advanced provisioning**.
-  ![ICD start options](images/icdstart-option.png)  
+  ![ICD start options.](images/icdstart-option.png)  
 3. Name your project and click **Next**.
@ -89,17 +89,17 @@ Universal apps that you can distribute in the provisioning package can be line-o
 2. For **DeviceContextApp**, specify the **PackageFamilyName** for the app. In Microsoft Store for Business, the package family name is listed in the **Package details** section of the download page.
-    ![details for offline app package](images/uwp-family.png)
+    ![details for offline app package.](images/uwp-family.png)
 3. For **ApplicationFile**, click **Browse** to find and select the target app (either an \*.appx or \*.appxbundle).
 4. For **DependencyAppxFiles**, click **Browse** to find and add any dependencies for the app. In Microsoft Store for Business, any dependencies for the app are listed in the **Required frameworks** section of the download page. 
-    ![required frameworks for offline app package](images/uwp-dependencies.png)
+    ![required frameworks for offline app package.](images/uwp-dependencies.png)
 5. For **DeviceContextAppLicense**, enter the **LicenseProductID**. In Microsoft Store for Business, you generate the license for the app on the app's download page.
-    ![generate license for offline app](images/uwp-license.png)
+    ![generate license for offline app.](images/uwp-license.png)
 [Learn more about distributing offline apps from the Microsoft Store for Business.](/microsoft-store/distribute-offline-apps)
@ -168,7 +168,7 @@ If your build is successful, the name of the provisioning package, output direct
 **During initial setup, from a USB drive**
 1. Start with a computer on the first-run setup screen. If the PC has gone past this screen, reset the PC to start over. To reset the PC, go to **Settings** > **Update & security** > **Recovery** > **Reset this PC**.
-    ![The first screen to set up a new PC](images/oobe.jpg)
+    ![The first screen to set up a new PC.](images/oobe.jpg)
 2. Insert the USB drive. Windows Setup will recognize the drive and ask if you want to set up the device. Select **Set up**.
@ -176,11 +176,11 @@ If your build is successful, the name of the provisioning package, output direct
 3. The next screen asks you to select a provisioning source. Select **Removable Media** and tap **Next**.
-    ![Provision this device](images/prov.jpg)
+    ![Provision this device.](images/prov.jpg)
 4. Select the provisioning package (\*.ppkg) that you want to apply, and tap **Next**.
-    ![Choose a package](images/choose-package.png)
+    ![Choose a package.](images/choose-package.png)
 5. Select **Yes, add it**.
@ -188,11 +188,11 @@ If your build is successful, the name of the provisioning package, output direct
 6. Read and accept the Microsoft Software License Terms.  
-    ![Sign in](images/license-terms.png)
+    ![Sign in.](images/license-terms.png)
 7. Select **Use Express settings**.
-    ![Get going fast](images/express-settings.png)
+    ![Get going fast.](images/express-settings.png)
 8. If the PC doesn't use a volume license, you'll see the **Who owns this PC?** screen. Select **My work or school owns it** and tap **Next**.
@ -200,18 +200,18 @@ If your build is successful, the name of the provisioning package, output direct
 9. On the **Choose how you'll connect** screen, select **Join Azure AD** or **Join a domain** and tap **Next**.
-    ![Connect to Azure AD](images/connect-aad.png)
+    ![Connect to Azure AD.](images/connect-aad.png)
 10. Sign in with  your domain, Azure AD,  or Office 365 account and password. When you see the progress ring, you can remove the USB drive.
-    ![Sign in](images/sign-in-prov.png)
+    ![Sign in.](images/sign-in-prov.png)
 **After setup, from a USB drive, network folder, or SharePoint site**
 On a desktop computer, navigate to **Settings** &gt; **Accounts** &gt; **Work access** &gt; **Add or remove a management package** &gt; **Add a package**, and select the package to install. 
-![add a package option](images/package.png)
+![add a package option.](images/package.png)
 -->
--- a/education/windows/set-up-windows-10.md
+++ b/education/windows/set-up-windows-10.md
@ -27,7 +27,7 @@ Choose the tool that is appropriate for how your students will sign in (Active D
 You can use the following diagram to compare the tools.
-![Which tool to use to set up Windows 10](images/suspc_wcd_featureslist.png)
+![Which tool to use to set up Windows 10.](images/suspc_wcd_featureslist.png)
 ## In this section
--- a/education/windows/take-a-test-multiple-pcs.md
+++ b/education/windows/take-a-test-multiple-pcs.md
@ -39,7 +39,7 @@ If you set up Take a Test, this adds a **Take a Test** button on the student PC'
 **Figure 1** - Configure Take a Test in the Set up School PCs app
-![Configure Take a Test in the Set up School PCs app](images/suspc_choosesettings_setuptakeatest.png)
+![Configure Take a Test in the Set up School PCs app.](images/suspc_choosesettings_setuptakeatest.png)
 ### Set up a test account in Intune for Education
 You can set up a test-taking account in Intune for Education. To do this, follow these steps:
@ -49,7 +49,7 @@ You can set up a test-taking account in Intune for Education. To do this, follow
    **Figure 2** - Add a test profile in Intune for Education
-    ![Add a test profile in Intune for Education](images/i4e_takeatestprofile_addnewprofile.png)
+    ![Add a test profile in Intune for Education.](images/i4e_takeatestprofile_addnewprofile.png)
 3. In the new profile page:
   1. Enter a name for the profile.
@ -60,7 +60,7 @@ You can set up a test-taking account in Intune for Education. To do this, follow
      **Figure 3** - Add information about the test profile
-      ![Add information about the test profile](images/i4e_takeatestprofile_newtestaccount.png)
+      ![Add information about the test profile.](images/i4e_takeatestprofile_newtestaccount.png)
      After you save the test profile, you will see a summary of the settings that you configured for Take a Test. Next, you'll need to assign the test profile to a group that will be using the test account.
@ -68,13 +68,13 @@ You can set up a test-taking account in Intune for Education. To do this, follow
   **Figure 4** - Assign the test account to a group
-   ![Assign the test account to a group](images/i4e_takeatestprofile_accountsummary.png)
+   ![Assign the test account to a group.](images/i4e_takeatestprofile_accountsummary.png)
 5. In the **Groups** page, click **Change group assignments**.
    **Figure 5** - Change group assignments
-    ![Change group assignments](images/i4e_takeatestprofile_groups_changegroupassignments.png)
+    ![Change group assignments.](images/i4e_takeatestprofile_groups_changegroupassignments.png)
 6. In the **Change group assignments** page:
   1. Select a group from the right column and click **Add Members** to select the group and assign the test-taking account to that group. You can select more than one group. 
@ -82,7 +82,7 @@ You can set up a test-taking account in Intune for Education. To do this, follow
      **Figure 6** - Select the group(s) that will use the test account
-      ![Select the groups that will use the test account](images/i4e_takeatestprofile_groupassignment_selected.png)
+      ![Select the groups that will use the test account.](images/i4e_takeatestprofile_groupassignment_selected.png)
 And that's it! When the students from the selected group sign in to the student PCs using the Take a Test user name that you selected, the PC will be locked down and Take a Test will open the assessment URL and students can start taking tests.
@ -136,7 +136,7 @@ To set up a test account through Windows Configuration Designer, follow these st
      **Figure 7** - Add the account to use for test-taking
-      ![Add the account to use for test-taking](images/wcd_settings_assignedaccess.png)
+      ![Add the account to use for test-taking.](images/wcd_settings_assignedaccess.png)
      The account can be in one of the following formats:
      - username
--- a/education/windows/take-a-test-single-pc.md
+++ b/education/windows/take-a-test-single-pc.md
@ -30,13 +30,13 @@ To configure the assessment URL and a dedicated testing account on a single PC,
   **Figure 1** - Use the Settings app to set up a test-taking account
-   ![Use the Settings app to set up a test-taking account](images/tat_settingsapp_workorschoolaccess_setuptestaccount.png)
+   ![Use the Settings app to set up a test-taking account.](images/tat_settingsapp_workorschoolaccess_setuptestaccount.png)
 4. In the **Set up an account for taking tests** window, choose an existing account to use as the dedicated testing account.
   **Figure 2** - Choose the test-taking account
-   ![Choose the test-taking account](images/tat_settingsapp_setuptesttakingaccount_1703.png) 
+   ![Choose the test-taking account.](images/tat_settingsapp_setuptesttakingaccount_1703.png) 
    > [!NOTE]  
    > If you don't have an account on the device, you can create a new account. To do this, go to **Settings > Accounts > Other people > Add someone else to this PC > I don’t have this person’s sign-in information > Add a user without a Microsoft account**.
--- a/education/windows/take-tests-in-windows-10.md
+++ b/education/windows/take-tests-in-windows-10.md
@ -32,7 +32,7 @@ Many schools use online testing for formative and summative assessments. It's cr
 ## How to use Take a Test
-![Set up and user flow for the Take a Test app](images/take_a_test_flow_dark.png)
+![Set up and user flow for the Take a Test app.](images/take_a_test_flow_dark.png)
 There are several ways to configure devices for assessments, depending on your use case:
--- a/education/windows/teacher-get-minecraft.md
+++ b/education/windows/teacher-get-minecraft.md
@ -65,7 +65,7 @@ After Minecraft: Education Edition licenses have been purchased, either directly
 - You can assign the app to others.  
 - You can download the app to distribute. 
-<!-- ![App distribution options](images/mc-install-for-me-teacher.png) -->
+<!-- ![App distribution options.](images/mc-install-for-me-teacher.png) -->
 ### Install for me
 You can install the app on your PC. This gives you a chance to work with the app before using it with your students.   
@ -73,7 +73,7 @@ You can install the app on your PC. This gives you a chance to work with the app
 1. Sign in to [Microsoft Store for Education](https://educationstore.microsoft.com). 
 2. Click **Manage**, and then click **Install**.
-    <!-- ![Minecraft Education Edition product page](images/mc-install-for-me-teacher.png) -->
+    <!-- ![Minecraft Education Edition product page.](images/mc-install-for-me-teacher.png) -->
 3. Click **Install**. 
@ -84,13 +84,13 @@ Enter email addresses for your students, and each student will get an email with
 1. Sign in to [Microsoft Store for Education](https://educationstore.microsoft.com). 
 2. Click **Manage**.
-    <!-- ![Minecraft Education Edition product page](images/mc-install-for-me-teacher.png) -->
+    <!-- ![Minecraft Education Edition product page.](images/mc-install-for-me-teacher.png) -->
 3. Click **Invite people**.
 4. Type the name, or email address of the student or group you want to assign the app to, and then click **Assign**.
-   ![Assign to people showing student name](images/minecraft-assign-to-people-name.png)
+   ![Assign to people showing student name.](images/minecraft-assign-to-people-name.png)
   You can assign the app to students with work or school accounts. </br>
   If you don't find the student, you can still assign the app to them if self-service sign up is supported for your domain. Students will receive an email with a link to Microsoft 365 admin center where they can create an account, and then install **Minecraft: Education Edition**. Questions about self-service sign up? Check with your admin. 
@ -100,20 +100,20 @@ Enter email addresses for your students, and each student will get an email with
 Students will receive an email with a link that will install the app on their PC.
-![Email with Get the app link](images/minecraft-student-install-email.png)
+![Email with Get the app link.](images/minecraft-student-install-email.png)
 1. Click **Get the app** to start the app install in Microsoft Store app. 
 2. In Microsoft Store app, click **Install**. 
-     ![Microsoft Store app with Minecraft page](images/minecraft-in-windows-store-app.png)
+     ![Microsoft Store app with Minecraft page.](images/minecraft-in-windows-store-app.png)
      After installing the app, students can find Minecraft: Education Edition in Microsoft Store app under **My Library**.
-    ![Microsoft Store app showing access to My Library](images/minecraft-private-store.png) 
+    ![Microsoft Store app showing access to My Library.](images/minecraft-private-store.png) 
      When students click **My Library** they'll find apps assigned to them.
-    ![My Library for example student](images/minecraft-my-library.png)  
+    ![My Library for example student.](images/minecraft-my-library.png)  
 ### Download for others
 Download for others allows teachers or IT admins to download a packages that they can install on student PCs. This will install Minecraft: Education Edition on the PC, and allows anyone with a Windows account to use the app on that PC. This option is best for students, and for shared computers. Choose this option when:
@ -132,11 +132,11 @@ Minecraft: Education Edition will not install if there are updates pending for o
 1. Start Microsoft Store app on the PC (click **Start**, and type **Store**).
 2. Click the account button, and then click **Downloads and updates**.
-      ![Microsoft Store app showing access to My Library](images/minecraft-private-store.png)
+      ![Microsoft Store app showing access to My Library.](images/minecraft-private-store.png)
 3. Click **Check for updates**, and install all available updates. 
-      ![Microsoft Store app showing access to My Library](images/mc-check-for-updates.png)
+      ![Microsoft Store app showing access to My Library.](images/mc-check-for-updates.png)
 4. Restart the computer before installing Minecraft: Education Edition. 
@ -145,7 +145,7 @@ You'll download a .zip file, extract the files, and then use one of the files to
 1. **Download Minecraft Education Edition.zip**. From the **Minecraft: Education Edition** page, click **Download for others** tab, and then click **Download**.
-    ![Microsoft Store app showing access to My Library](images/mc-dnld-others-teacher.png)
+    ![Microsoft Store app showing access to My Library.](images/mc-dnld-others-teacher.png)
 2. **Extract files**. Find the .zip file that you downloaded and extract the files. This is usually your **Downloads** folder, unless you chose to save the .zip file to a different location. Right-click the file and choose **Extract all**.
 3. **Save to USB drive**. After you've extracted the files, save the Minecraft: Education Edition folder to a USB drive, or to a network location that you can access from each PC.  
--- a/education/windows/use-set-up-school-pcs-app.md
+++ b/education/windows/use-set-up-school-pcs-app.md
@ -103,7 +103,7 @@ We strongly recommend that you avoid changing preset policies. Changes can slow
 The **Set up School PCs** app guides you through the configuration choices for the student PCs.  To begin, open the app on your PC and click **Get started**.   
-   ![Launch the Set up School PCs app](images/suspc_getstarted_050817.png)  
+   ![Launch the Set up School PCs app.](images/suspc_getstarted_050817.png)  
 ### Package name  
 Type a unique name to help distinguish your school's provisioning packages. The name appears:  
--- a/smb/cloud-mode-business-setup.md
+++ b/smb/cloud-mode-business-setup.md
@ -18,7 +18,7 @@ ms.topic: conceptual
 # Get started: Deploy and manage a full cloud IT solution for your business
-![Learn how to set up a full cloud infrastructure for your business](images/business-cloud-mode.png)
+![Learn how to set up a full cloud infrastructure for your business.](images/business-cloud-mode.png)
 **Applies to:**
@ -61,7 +61,7 @@ If this is the first time you're setting this up, and you'd like to see how it's
   **Figure 1** - Try or buy Office 365
-   ![Office 365 for business sign up](images/office365_tryorbuy_now.png)
+   ![Office 365 for business sign up.](images/office365_tryorbuy_now.png)
 2. Fill out the sign up form and provide information about you and your company.
 3. Create a user ID and password to use to sign into your account.
@ -76,7 +76,7 @@ If this is the first time you're setting this up, and you'd like to see how it's
   **Figure 2** - Microsoft 365 admin center
-   ![Microsoft 365 admin center](images/office365_portal.png)
+   ![Microsoft 365 admin center.](images/office365_portal.png)
 6. Select the **Admin** tile to go to the admin center.
@ -86,7 +86,7 @@ If this is the first time you're setting this up, and you'd like to see how it's
   **Figure 3** - Admin center
-   ![Microsoft 365 admin center](images/office365_admin_portal.png)
+   ![Microsoft 365 admin center.](images/office365_admin_portal.png)
 8. Go back to the <a href="https://portal.office.com/adminportal/home#/homepage" target="_blank">admin center</a> to add or buy a domain.
@ -94,14 +94,14 @@ If this is the first time you're setting this up, and you'd like to see how it's
      **Figure 4** - Option to add or buy a domain
-      ![Add or buy a domain in admin center](images/office365_buy_domain.png)
+      ![Add or buy a domain in admin center.](images/office365_buy_domain.png)
   2. In the **Home > Domains** page, you will see the Microsoft-provided domain, such as *fabrikamdesign.onmicrosoft.com*.
      **Figure 5** - Microsoft-provided domain
-      ![Microsoft-provided domain](images/office365_ms_provided_domain.png)
+      ![Microsoft-provided domain.](images/office365_ms_provided_domain.png)
      - If you already have a domain, select **+ Add domain** to add your existing domain. If you select this option, you'll be required to verify that you own the domain. Follow the steps in the wizard to verify your domain.
      - If you don't already own a domain, select **+ Buy domain**. If you're using a trial plan, you'll be required to upgrade your trial plan in order to buy a domain. Choose the subscription plan to use for your business and provide the details to complete your order.
@ -110,7 +110,7 @@ If this is the first time you're setting this up, and you'd like to see how it's
      **Figure 6** - Domains
-      ![Verify your domains in the admin center](images/office365_additional_domain.png)
+      ![Verify your domains in the admin center.](images/office365_additional_domain.png)
 ### 1.2 Add users and assign product licenses
 Once you've set up Office and added your domain, it's time to add users so they have access to Office 365. People in your organization need an account before they can sign in and access Office 365. The easiest way to add users is to add them one at a time in the Microsoft 365 admin center.
@ -123,7 +123,7 @@ When adding users, you can also assign admin privileges to certain users in your
   **Figure 7** - Add users
-   ![Add Office 365 users](images/office365_users.png)
+   ![Add Office 365 users.](images/office365_users.png)
 2. In the **Home > Active users** page, add users individually or in bulk.
   - To add users one at a time, select **+ Add a user**.
@ -132,7 +132,7 @@ When adding users, you can also assign admin privileges to certain users in your
     **Figure 8** - Add an individual user
-     ![Add an individual user](images/office365_add_individual_user.png)
+     ![Add an individual user.](images/office365_add_individual_user.png)
   - To add multiple users at once, select **More** and then choose **+ Import multiple users**. If you select this option, you'll need to create and upload a CSV file containing the list of users.
@ -140,13 +140,13 @@ When adding users, you can also assign admin privileges to certain users in your
     **Figure 9** - Import multiple users
-     ![Import multiple users](images/office365_import_multiple_users.png)
+     ![Import multiple users.](images/office365_import_multiple_users.png)
 3. Verify that all the users you added appear in the list of **Active users**. The **Status** should indicate the product licenses that were assigned to them.
   **Figure 10** - List of active users
-   ![Verify users and assigned product licenses](images/o365_active_users.png)
+   ![Verify users and assigned product licenses.](images/o365_active_users.png)
 ### 1.3 Add Microsoft Intune
 Microsoft Intune provides mobile device management, app management, and PC management capabilities from the cloud. Using Intune, organizations can provide their employees with access to apps, data, and corporate resources from anywhere on almost any device while helping to keep corporate information secure. To learn more, see <a href="/intune/understand-explore/introduction-to-microsoft-intune" target="_blank">What is Intune?</a>
@ -160,14 +160,14 @@ Microsoft Intune provides mobile device management, app management, and PC manag
   **Figure 11** - Assign Intune licenses
-   ![Assign Microsoft Intune licenses to users](images/o365_assign_intune_license.png)
+   ![Assign Microsoft Intune licenses to users.](images/o365_assign_intune_license.png)
 5. In the admin center, confirm that **Intune** shows up in the list under **Admin centers**. If it doesn't, sign out and then sign back in and then check again.
 6. Select **Intune**. This will take you to the Intune management portal.
   **Figure 12** - Microsoft Intune management portal
-   ![Microsoft Intune management portal](images/intune_portal_home.png)
+   ![Microsoft Intune management portal.](images/intune_portal_home.png)
 Intune should now be added to your tenant. We'll come back to Intune later when we [Configure Microsoft Store for Business for app distribution](#17-configure-microsoft-store-for-business-for-app-distribution).
@ -185,21 +185,21 @@ Microsoft Azure is an open and flexible cloud platform that enables you to quick
   **Figure 13** - Access to Azure AD is not available
-   ![Access to Azure AD not available](images/azure_ad_access_not_available.png)
+   ![Access to Azure AD not available.](images/azure_ad_access_not_available.png)
 3. From the error message, select the country/region for your business. This should match with the location you specified when you signed up for Office 365.
 4. Click **Azure subscription**. This will take you to a free trial sign up screen.
   **Figure 14** - Sign up for Microsoft Azure
-   ![Sign up for Microsoft Azure](images/azure_ad_sign_up_screen.png)
+   ![Sign up for Microsoft Azure.](images/azure_ad_sign_up_screen.png)
 5. In the **Free trial sign up** screen, fill in the required information and then click **Sign up**.
 6. After you sign up, you should see the message that your subscription is ready. Click **Start managing my service**.
   **Figure 15** - Start managing your Azure subscription
-   ![Start managing your Azure subscription](images/azure_ad_successful_signup.png)
+   ![Start managing your Azure subscription.](images/azure_ad_successful_signup.png)
   This will take you to the <a href="https://portal.azure.com" target="_blank">Microsoft Azure portal</a>.
@ -216,26 +216,26 @@ To add Azure AD group(s), we will use the <a href="https://manage.windowsazure.c
   **Figure 16** - Azure first sign-in screen
-   ![Select Azure AD](images/azure_portal_classic_configure_directory.png)
+   ![Select Azure AD.](images/azure_portal_classic_configure_directory.png)
 2. Select the directory (such as Fabrikam Design) to go to the directory's home page.
   **Figure 17** - Directory home page
-   ![Directory home page](images/azure_portal_classic_directory_ready.png)
+   ![Directory home page.](images/azure_portal_classic_directory_ready.png)
 3. From the menu options on top, select **Groups**.
   **Figure 18** - Azure AD groups
-   ![Add groups in Azure AD](images/azure_portal_classic_groups.png)
+   ![Add groups in Azure AD.](images/azure_portal_classic_groups.png)
 4. Select **Add a group** (from the top) or **Add group** at the bottom.
 5. In the **Add Group** window, add a name, group type, and description for the group and click the checkmark to save your changes. The new group will appear on the groups list.
   **Figure 19** - Newly added group in Azure AD
-   ![Verify the new group appears on the list](images/azure_portal_classic_all_users_group.png)
+   ![Verify the new group appears on the list.](images/azure_portal_classic_all_users_group.png)
 6. In the **Groups** tab, select the arrow next to the group (such as **All users**), add members to the group, and then save your changes.
@ -243,7 +243,7 @@ To add Azure AD group(s), we will use the <a href="https://manage.windowsazure.c
   **Figure 20** - Members in the new group
-   ![Members added to the new group](images/azure_portal_classic_members_added.png)
+   ![Members added to the new group.](images/azure_portal_classic_members_added.png)
 7. Repeat steps 2-6 to add other groups. You can add groups based on their roles in your company, based on the apps that each group can use, and so on.
@ -263,14 +263,14 @@ You can read <a href="https://blogs.technet.microsoft.com/enterprisemobility/201
   **Figure 21** - List of applications for your company
-   ![List of applications for your company](images/azure_portal_classic_applications.png)
+   ![List of applications for your company.](images/azure_portal_classic_applications.png)
 2. Select **Microsoft Intune** to configure the application.
 3. In the Microsoft Intune configuration page, click **Configure** to start automatic MDM enrollment configuration with Intune.
   **Figure 22** - Configure Microsoft Intune in Azure
-   ![Configure Microsoft Intune in Azure](images/azure_portal_classic_configure_intune_app.png)
+   ![Configure Microsoft Intune in Azure.](images/azure_portal_classic_configure_intune_app.png)
 4. In the Microsoft Intune configuration page:
   - In the **Properties** section, you should see a list of URLs for MDM discovery, MDM terms of use, and MDM compliance.
@ -289,7 +289,7 @@ You can read <a href="https://blogs.technet.microsoft.com/enterprisemobility/201
   **Figure 23** - Configure Microsoft Intune
-   ![Configure automatic MDM enrollment with Intune](images/azure_portal_classic_configure_intune_mdm_enrollment.png)
+   ![Configure automatic MDM enrollment with Intune.](images/azure_portal_classic_configure_intune_mdm_enrollment.png)
 ### 1.7 Configure Microsoft Store for Business for app distribution
 Next, you'll need to configure Microsoft Store for Business to distribute apps with a management tool such as Intune.
@ -303,7 +303,7 @@ In this part of the walkthrough, we'll be working on the <a href="https://manage
   **Figure 24** - Mobile device management
-   ![Set up mobile device management in Intune](images/intune_admin_mdm_configure.png)
+   ![Set up mobile device management in Intune.](images/intune_admin_mdm_configure.png)
 3. Sign into <a href="https://businessstore.microsoft.com/en-us/Store/Apps" target="_blank">Microsoft Store for Business</a> using the same tenant account that you used to sign into Intune.
 4. Accept the EULA.
@ -312,20 +312,20 @@ In this part of the walkthrough, we'll be working on the <a href="https://manage
   **Figure 25** - Activate Intune as the Store management tool
-   ![Activate Intune from the Store portal](images/wsfb_management_tools_activate.png)
+   ![Activate Intune from the Store portal.](images/wsfb_management_tools_activate.png)
 7. Go back to the <a href="https://manage.microsoft.com/" target="_blank">Intune management portal</a>, select **Admin > Mobile Device Management**, expand **Windows**, and then choose **Store for Business**.
 8. In the **Microsoft Store for Business** page, select **Configure Sync** to sync your Store for Business volume-purchased apps with Intune.
   **Figure 26** - Configure Store for Business sync in Intune
-   ![Configure Store for Business sync in Intune](images/intune_admin_mdm_store_sync.png)
+   ![Configure Store for Business sync in Intune.](images/intune_admin_mdm_store_sync.png)
 9. In the **Configure Microsoft Store for Business app sync** dialog box, check **Enable Microsoft Store for Business sync**. In the **Language** dropdown list, choose the language in which you want apps from the Store to be displayed in the Intune console and then click **OK**.
   **Figure 27** - Enable Microsoft Store for Business sync in Intune
-   ![Enable Store for Business sync in Intune](images/intune_configure_store_app_sync_dialog.png)
+   ![Enable Store for Business sync in Intune.](images/intune_configure_store_app_sync_dialog.png)
   The **Microsoft Store for Business** page will refresh and it will show the details from the sync.
@ -348,7 +348,7 @@ In the following example, we'll show you how to buy apps through the Microsoft S
   **Figure 28** - Shop for Store apps
-   ![Shop for Store apps](images/wsfb_shop_microsoft_apps.png)
+   ![Shop for Store apps.](images/wsfb_shop_microsoft_apps.png)
 2. Click to select an app, such as **Reader**. This opens the app page.
 3. In the app's Store page, click **Get the app**. You should see a dialog that confirms your order. Click **Close**. This will refresh the app's Store page.
@ -358,7 +358,7 @@ In the following example, we'll show you how to buy apps through the Microsoft S
   **Figure 29** - App inventory shows the purchased apps
-   ![Confirm that your inventory shows purchased apps](images/wsfb_manage_inventory_newapps.png)
+   ![Confirm that your inventory shows purchased apps.](images/wsfb_manage_inventory_newapps.png)
   > [!NOTE]
   > Sync happens automatically, but it may take up to 24 hours for your organization's private store and 12 hours for Intune to sync all your purchased apps. You can force a sync to make this process happen faster. For more info, see [To sync recently purchased apps](#forceappsync).
@ -372,7 +372,7 @@ If you need to sync your most recently purchased apps and have it appear in your
   **Figure 30** - Force a sync in Intune
-   ![Force a sync in Intune](images/intune_admin_mdm_forcesync.png)
+   ![Force a sync in Intune.](images/intune_admin_mdm_forcesync.png)
 **To view purchased apps**
 - In the <a href="https://manage.microsoft.com/" target="_blank">Intune management portal</a>, select **Apps > Apps** and then choose **Volume-Purchased Apps** to see the list of available apps. Verify that the apps you purchased were imported correctly.
@ -393,7 +393,7 @@ To set up new Windows devices, go through the Windows initial device setup or fi
   **Figure 31** - First screen in Windows device setup
-   ![First screen in Windows device setup](images/win10_hithere.png)
+   ![First screen in Windows device setup.](images/win10_hithere.png)
   > [!NOTE]  
   > During setup, if you don't have a Wi-Fi network configured, make sure you connect the device to the Internet through a wired/Ethernet connection.
@ -403,13 +403,13 @@ To set up new Windows devices, go through the Windows initial device setup or fi
   **Figure 32** - Choose how you'll connect your Windows device
-   ![Choose how you'll connect the Windows device](images/win10_choosehowtoconnect.png)
+   ![Choose how you'll connect the Windows device.](images/win10_choosehowtoconnect.png)
 4. In the **Let's get you signed in** screen, sign in using one of the user accounts you added in section [1.2 Add users and assign product licenses](#12-add-users-and-assign-product-licenses). We suggest signing in as one of the global administrators. Later, sign in on another device using one of the non-admin accounts.
   **Figure 33** - Sign in using one of the accounts you added
-   ![Sign in using one of the accounts you added](images/win10_signin_admin_account.png)
+   ![Sign in using one of the accounts you added.](images/win10_signin_admin_account.png)
 5. If this is the first time you're signing in, you will be asked to update your password. Update the password and continue with sign-in and setup.
@ -430,7 +430,7 @@ In the <a href="https://manage.microsoft.com/" target="_blank">Intune management
   **Figure 34** - Check the PC name on your device
-   ![Check the PC name on your device](images/win10_settings_pcname.png)
+   ![Check the PC name on your device.](images/win10_settings_pcname.png)
 2. Log in to the <a href="https://manage.microsoft.com/" target="_blank">Intune management portal</a>.
 3. Select **Groups** and then go to **Devices**.
@ -441,7 +441,7 @@ In the <a href="https://manage.microsoft.com/" target="_blank">Intune management
   **Figure 35** - Check that the device appears in Intune
-   ![Check that the device appears in Intune](images/intune_groups_devices_list.png)
+   ![Check that the device appears in Intune.](images/intune_groups_devices_list.png)
 ## 3. Manage device settings and features
 You can use Microsoft Intune admin settings and policies to manage features on your organization's mobile devices and computers. For more info, see [Manage settings and features on your devices with Microsoft Intune policies](/intune/deploy-use/manage-settings-and-features-on-your-devices-with-microsoft-intune-policies).
@ -460,7 +460,7 @@ In some cases, if an app is missing from the device, you need to reconfigure the
   **Figure 36** - Reconfigure an app's deployment setting in Intune
-   ![Reconfigure app deployment settings in Intune](images/intune_apps_deploymentaction.png)
+   ![Reconfigure app deployment settings in Intune.](images/intune_apps_deploymentaction.png)
 6. Click **Finish**.
 7. Repeat steps 2-6 for other apps that you want to deploy to the device(s) as soon as possible.
@ -470,7 +470,7 @@ In some cases, if an app is missing from the device, you need to reconfigure the
     **Figure 37** - Confirm that additional apps were deployed to the device
-     ![Confirm that additional apps were deployed to the device](images/win10_deploy_apps_immediately.png)
+     ![Confirm that additional apps were deployed to the device.](images/win10_deploy_apps_immediately.png)
 ### 3.2 Configure other settings in Intune
@ -486,7 +486,7 @@ In some cases, if an app is missing from the device, you need to reconfigure the
   **Figure 38** - Add a configuration policy
-   ![Add a configuration policy](images/intune_policy_disablecamera.png)
+   ![Add a configuration policy.](images/intune_policy_disablecamera.png)
 7. Click **Save Policy**. A confirmation window will pop up.
 8. On the **Deploy Policy** confirmation window, select **Yes** to deploy the policy now.
@ -495,7 +495,7 @@ In some cases, if an app is missing from the device, you need to reconfigure the
    **Figure 39** - The new policy should appear in the **Policies** list.
-    ![New policy appears on the list](images/intune_policies_newpolicy_deployed.png)
+    ![New policy appears on the list.](images/intune_policies_newpolicy_deployed.png)
 **To turn off Windows Hello and PINs during device setup**
 1. In the <a href="https://manage.microsoft.com/" target="_blank">Intune management portal</a>, select **Admin**.
@ -504,7 +504,7 @@ In some cases, if an app is missing from the device, you need to reconfigure the
   **Figure 40** - Policy to disable Windows Hello for Business
-   ![Disable Windows Hello for Business](images/intune_policy_disable_windowshello.png)
+   ![Disable Windows Hello for Business.](images/intune_policy_disable_windowshello.png)
 4. Click **Save**.
@ -531,32 +531,32 @@ For other devices, such as those personally-owned by employees who need to conne
   **Figure 41** - Add an Azure AD account to the device
-   ![Add an Azure AD account to the device](images/win10_add_new_user_join_aad.png)
+   ![Add an Azure AD account to the device.](images/win10_add_new_user_join_aad.png)
 4. In the **Let's get you signed in** window, enter the work credentials for the account and then click **Sign in** to authenticate the user.
   **Figure 42** - Enter the account details
-   ![Enter the account details](images/win10_add_new_user_account_aadwork.png)
+   ![Enter the account details.](images/win10_add_new_user_account_aadwork.png)
 5. You will be asked to update the password so enter a new password.
 6. Verify the details to make sure you're connecting to the right organization and then click **Join**.
   **Figure 43** - Make sure this is your organization
-   ![Make sure this is your organization](images/win10_confirm_organization_details.png)
+   ![Make sure this is your organization.](images/win10_confirm_organization_details.png)
 7. You will see a confirmation window that says the device is now connected to your organization. Click **Done**.
   **Figure 44** - Confirmation that the device is now connected
-   ![Confirmation that the device is now connected](images/win10_confirm_device_connected_to_org.png)
+   ![Confirmation that the device is now connected.](images/win10_confirm_device_connected_to_org.png)
 8. The **Connect to work or school** window will refresh and will now include an entry that shows you're connected to your organization's Azure AD. This means the device is now registered in Azure AD and enrolled in MDM and the account should have access to the organization's resources.
   **Figure 45** - Device is now enrolled in Azure AD
-   ![Device is enrolled in Azure AD](images/win10_device_enrolled_in_aad.png)
+   ![Device is enrolled in Azure AD.](images/win10_device_enrolled_in_aad.png)
 9. You can confirm that the new device and user are showing up as Intune-managed by going to the <a href="https://manage.microsoft.com/" target="_blank">Intune management portal</a> and following the steps in [2.3 Verify the device is Azure AD joined](#23-verify-the-device-is-azure-ad-joined). It may take several minutes before the new device shows up so check again later.
--- a/smb/index.md
+++ b/smb/index.md
@ -17,16 +17,16 @@ audience: itpro
 # Windows 10 for SMB
-![Windows 10 for SMB](images/smb_portal_banner.png)
+![Windows 10 for SMB.](images/smb_portal_banner.png)
-## ![Learn more about Windows and other resources for SMBs](images/learn.png) Learn
+## ![Learn more about Windows and other resources for SMBs.](images/learn.png) Learn
 <p><b><a href="https://business.microsoft.com/en-us/products/windows" target="_blank">Windows 10 for business</a></b><br />Learn how Windows 10 and Windows devices can help your business.</p>
 <p><b><a href="https://blogs.business.microsoft.com/" target="_blank">SMB blog</a></b><br />Read about the latest stories, technology insights, and business strategies for SMBs.</p>
 <p><b><a href="https://business.microsoft.com/en-us/products" target="_blank">How to buy</a></b><br />Go here when you&#39;re ready to buy or want to learn more about Microsoft products you can use to help transform your business.</p>
-## ![Deploy a Microsoft solution for your business](images/deploy.png) Deploy
+## ![Deploy a Microsoft solution for your business.](images/deploy.png) Deploy
 <p><b><a href="cloud-mode-business-setup.md" data-raw-source="[Get started: Deploy and manage a full cloud IT solution for your business](cloud-mode-business-setup.md)">Get started: Deploy and manage a full cloud IT solution for your business</a></b><br />Find out how easy it is to deploy and manage a full cloud IT solution for your small to midsize business using Microsoft cloud services and tools.</p>
--- a/store-for-business/acquire-apps-microsoft-store-for-business.md
+++ b/store-for-business/acquire-apps-microsoft-store-for-business.md
@ -55,7 +55,7 @@ There are a couple of things we need to know when you pay for apps. You can add
 2. Select **Manage**, and then select **Settings**. 
 3. On **Shop**, , under **Shopping behavior**, turn on or turn off **Allow users to shop**.
-![manage settings to control Basic Purchaser role assignment](images/sfb-allow-shop-setting.png)
+![manage settings to control Basic Purchaser role assignment.](images/sfb-allow-shop-setting.png)
 ## Allow app requests
--- a/store-for-business/billing-understand-your-invoice-msfb.md
+++ b/store-for-business/billing-understand-your-invoice-msfb.md
@ -51,7 +51,7 @@ invoice and descriptions for each term.
 The **Invoice Summary** is on the top of the first page and shows information about your billing profile and how you pay.
-![Invoice summary section](images/invoicesummary.png)
+![Invoice summary section.](images/invoicesummary.png)
 | Term | Description |
@ -68,7 +68,7 @@ The **Invoice Summary** is on the top of the first page and shows information ab
 The **Billing Summary**  shows the charges against the billing profile since the previous billing period, any credits that were applied, tax, and the total amount due.
-![Billing summary section](images/billingsummary.png)
+![Billing summary section.](images/billingsummary.png)
 | Term | Description |
 | --- | --- |
@ -91,7 +91,7 @@ The total amount due for each service family is calculated by subtracting Azure
 `Total = Charges/Credits - Azure Credit + Tax`
-![Details by invoice section](images/invoicesectiondetails.png)
+![Details by invoice section.](images/invoicesectiondetails.png)
 | Term |Description |
 | --- | --- |
--- a/store-for-business/microsoft-store-for-business-education-powershell-module.md
+++ b/store-for-business/microsoft-store-for-business-education-powershell-module.md
@ -91,7 +91,7 @@ Get-MSStoreInventory
 >1. Sign in to [Microsoft Store for Business](https://go.microsoft.com/fwlink/p/?LinkId=691845) or [Microsoft Store for Education](https://businessstore.microsoft.com/).
 >2. Click **Manage** and then choose **Apps & software**.
 >3. Click the line-of-business app. The URL of the page will contain the product ID and SKU as part of the URL. For example:
->![Url after apps/ is product id and next is SKU](images/lob-sku.png)
+>![Url after apps/ is product id and next is SKU.](images/lob-sku.png)
 ## View people assigned to a product
 Most items in **Products and Services** in **Microsoft Store for Business and Education** need to be assigned to people in your org. You can view the people in your org assigned to a specific product by using these commands:
--- a/store-for-business/troubleshoot-microsoft-store-for-business.md
+++ b/store-for-business/troubleshoot-microsoft-store-for-business.md
@ -36,23 +36,23 @@ The private store for your organization is a page in Microsoft Store app that co
 1.  Click the people icon in Microsoft Store app, and click **Sign in**.
-    ![Sign in to Store app with a different account](images/wsfb-wsappsignin.png)
+    ![Sign in to Store app with a different account.](images/wsfb-wsappsignin.png)
 2.  Click **Add account**, and then click **Work or school account**.
-    ![Choose an account to use](images/wsfb-wsappaddacct.png)
+    ![Choose an account to use.](images/wsfb-wsappaddacct.png)
 3.  Type the email account and password, and click **Sign in**.
-    ![Sign in for work or school account](images/wsfb-wsappworkacct.png)
+    ![Sign in for work or school account.](images/wsfb-wsappworkacct.png)
 4.  You should see the private store for your organization. In our example, the page is named **Contoso publishing**.
-    ![Private store with name highlighted](images/wsfb-wsappprivatestore.png)
+    ![Private store with name highlighted.](images/wsfb-wsappprivatestore.png)
    Click the private store to see apps in your private store.
-    ![Private store for Contoso publishing](images/wsfb-privatestoreapps.png)
+    ![Private store for Contoso publishing.](images/wsfb-privatestoreapps.png)
 ## Troubleshooting Microsoft Store for Business integration with Microsoft Endpoint Configuration Manager
--- a/store-for-business/whats-new-microsoft-store-business-education.md
+++ b/store-for-business/whats-new-microsoft-store-business-education.md
@ -26,7 +26,7 @@ Microsoft Store for Business and Education regularly releases new and improved f
 :::row:::
   :::column span="1":::
-   ![Security groups](images/security-groups-icon.png)
+   ![Security groups.](images/security-groups-icon.png)
   :::column-end:::
   :::column span="1":::
   **Use security groups with Private store apps**<br /><br /> On the details page for apps in your private store, you can set **Private store availability**. This allows you to choose which security groups can see an app in the private store. <br /><br />[Get more info](./app-inventory-management-microsoft-store-for-business.md#private-store-availability)<br /><br />**Applies to**:<br /> Microsoft Store for Business <br /> Microsoft Store for Education
@ -38,7 +38,7 @@ Microsoft Store for Business and Education regularly releases new and improved f
 We’ve been working on bug fixes and performance improvements to provide you a better experience. Stay tuned for new features!
 |  |  |
 |-----------------------|---------------------------------|
-| ![Private store performance icon](images/perf-improvement-icon.png) |**Performance improvements in private store**<br /><br /> We've made it significantly faster for you to update the private store. Many changes to the private store are available immediately after you make them. <br /><br />[Get more info](./manage-private-store-settings.md#private-store-performance)<br /><br />**Applies to**:<br /> Microsoft Store for Business <br /> Microsoft Store for Education |
+| ![Private store performance icon.](images/perf-improvement-icon.png) |**Performance improvements in private store**<br /><br /> We've made it significantly faster for you to update the private store. Many changes to the private store are available immediately after you make them. <br /><br />[Get more info](./manage-private-store-settings.md#private-store-performance)<br /><br />**Applies to**:<br /> Microsoft Store for Business <br /> Microsoft Store for Education |
 | <iframe width="288" height="232" src="https://www.youtube-nocookie.com/embed/IpLIZU_j7Z0" frameborder="0" allowfullscreen></iframe>| **Manage Windows device deployment with Windows Autopilot Deployment** <br /><br /> In Microsoft Store for Business, you can manage devices for your organization and apply an Autopilot deployment profile to your devices. When people in your organization run the out-of-box experience on the device, the profile configures Windows, based on the Autopilot deployment profile you applied to the device.<br /><br />[Get more info](add-profile-to-devices.md)<br /><br />**Applies to**:<br /> Microsoft Store for Business <br /> Microsoft Store for Education  |
 | ![Microsoft Store for Business Settings page, Distribute tab showing app requests setting.](images/msfb-wn-1709-app-request.png) |**Request an app**<br /><br />People in your organization can request additional licenses for apps in your private store, and then Admins or Purchasers can make the purchases. <br /><br />[Get more info](./acquire-apps-microsoft-store-for-business.md#request-apps)<br /><br />**Applies to**:<br /> Microsoft Store for Business <br /> Microsoft Store for Education |
 ||  ![Image showing Add a Collection.](images/msfb-add-collection.png) |**Private store collections**<br /><br> You can groups of apps in your private store with **Collections**. This can help you organize apps and help people find apps for their job or classroom. <br /><br />[Get more info](https://review.docs.microsoft.com/microsoft-store/manage-private-store-settings?branch=msfb-14856406#add-a-collection)<br /><br />**Applies to**:<br /> Microsoft Store for Business <br /> Microsoft Store for Education |
--- a/store-for-business/working-with-line-of-business-apps.md
+++ b/store-for-business/working-with-line-of-business-apps.md
@ -46,7 +46,7 @@ You'll need to set up:
 -   LOB publishers need to have an app in Microsoft Store, or have an app ready to submit to the Store.
 The process and timing look like this:
-![Process showing LOB workflow in Microsoft Store for Business. Includes workflow for MSFB admin, LOB publisher, and Developer](images/lob-workflow.png)
+![Process showing LOB workflow in Microsoft Store for Business. Includes workflow for MSFB admin, LOB publisher, and Developer.](images/lob-workflow.png)
 ## <a href="" id="add-lob-publisher"></a>Add an LOB publisher (Admin)
 Admins need to invite developer or ISVs to become an LOB publisher.
--- a/windows/application-management/app-v/appv-application-publishing-and-client-interaction.md
+++ b/windows/application-management/app-v/appv-application-publishing-and-client-interaction.md
@ -423,7 +423,7 @@ The process then configures the client for package or connection group additions
 This completes an App-V package add for the publishing refresh process. The next step is publishing the package to a specific target (machine or user).
-![Package add file and registry data](images/packageaddfileandregistrydata.png)
+![Package add file and registry data.](images/packageaddfileandregistrydata.png)
 **Package add file and registry data**
@ -454,7 +454,7 @@ During the Publishing Refresh operation, the specific publishing operation, **Pu
 Publishing an App-V Package that is part of a Connection Group is very similar to the above process. For connection groups, the path that stores the specific catalog information includes PackageGroups as a child of the Catalog Directory. Review the Machine and User Catalog information in the preceding sections for details.
-![package add file and registry data - global](images/packageaddfileandregistrydata-global.png)
+![package add file and registry data - global.](images/packageaddfileandregistrydata-global.png)
 **Package add file and registry data—global**
@ -481,7 +481,7 @@ After the Publishing Refresh process, the user launches and then relaunches an A
 7. The Application launches. For any missing files in the package store (sparse files), App-V will stream fault the files on an as-needed basis.
-    ![package add file and registry data - stream](images/packageaddfileandregistrydata-stream.png)
+    ![package add file and registry data - stream.](images/packageaddfileandregistrydata-stream.png)
    **Package add file and registry data—stream**
--- a/windows/application-management/app-v/appv-deployment-checklist.md
+++ b/windows/application-management/app-v/appv-deployment-checklist.md
@ -20,9 +20,9 @@ This checklist outlines the recommended steps and items to consider when deployi
 |Status|Task|References|Notes|
 |---|---|---|---|
-|![Checklist box](../app-v/images/checklistbox.gif)|Prepare the computing environment for App-V deployment during your planning phase.|[App-V planning checklist](appv-planning-checklist.md)||
+|![Checklist box.](../app-v/images/checklistbox.gif)|Prepare the computing environment for App-V deployment during your planning phase.|[App-V planning checklist](appv-planning-checklist.md)||
-|![Checklist box](../app-v/images/checklistbox.gif)|Review App-V's supported configurations.|[App-V supported configurations](appv-supported-configurations.md)||
+|![Checklist box.](../app-v/images/checklistbox.gif)|Review App-V's supported configurations.|[App-V supported configurations](appv-supported-configurations.md)||
-|![Checklist box](../app-v/images/checklistbox.gif)|Run App-V Setup to deploy the required App-V features for your environment.|[How to install the sequencer](appv-install-the-sequencer.md)<br>[Enable the App-V desktop client](appv-enable-the-app-v-desktop-client.md)<br>[How to deploy the App-V server](appv-deploy-the-appv-server.md)||
+|![Checklist box.](../app-v/images/checklistbox.gif)|Run App-V Setup to deploy the required App-V features for your environment.|[How to install the sequencer](appv-install-the-sequencer.md)<br>[Enable the App-V desktop client](appv-enable-the-app-v-desktop-client.md)<br>[How to deploy the App-V server](appv-deploy-the-appv-server.md)||
 >[!NOTE]
 >Keep track of server names and associated URLs you create during installation. You'll need this information throughout the installation process.
--- a/windows/application-management/app-v/appv-install-the-sequencer.md
+++ b/windows/application-management/app-v/appv-install-the-sequencer.md
@ -28,7 +28,7 @@ The App-V Sequencer is included in the Windows 10 Assessment and Deployment Kit
 1. Go to [Download the Windows ADK](https://developer.microsoft.com/windows/hardware/windows-assessment-deployment-kit).
 2. Select the **Get Windows ADK for Windows 10** button on the page to start the ADK installer. Make sure that **Microsoft Application Virtualization (App-V) Sequencer** is selected during the installation.
-    ![Selecting APP-V features in ADK](images/app-v-in-adk.png)
+    ![Selecting APP-V features in ADK.](images/app-v-in-adk.png)
 3. To open the Sequencer, go to the **Start** menu and select **Microsoft Application Virtualization (App-V) Sequencer**.
 See [Creating and managing virtual applications](appv-creating-and-managing-virtualized-applications.md) and the [Application Virtualization Sequencing Guide](https://download.microsoft.com/download/F/7/8/F784A197-73BE-48FF-83DA-4102C05A6D44/App-V%205.0%20Sequencing%20Guide.docx) for information about creating virtual applications with the Sequencer.
--- a/windows/application-management/app-v/appv-planning-checklist.md
+++ b/windows/application-management/app-v/appv-planning-checklist.md
@ -23,12 +23,12 @@ This checklist can be used to help you plan for preparing your organization for
 |Status|Task|References|Notes|
 |---|---|---|---|
-|![Checklist box](../app-v/images/checklistbox.gif)|Review the getting started information about App-V to gain a basic understanding of the product before beginning deployment planning.|[Getting started with App-V](appv-getting-started.md)||
+|![Checklist box.](../app-v/images/checklistbox.gif)|Review the getting started information about App-V to gain a basic understanding of the product before beginning deployment planning.|[Getting started with App-V](appv-getting-started.md)||
-|![Checklist box](../app-v/images/checklistbox.gif)|Plan for App-V deployment prerequisites and prepare your computing environment.|[App-V prerequisites](appv-prerequisites.md)||
+|![Checklist box.](../app-v/images/checklistbox.gif)|Plan for App-V deployment prerequisites and prepare your computing environment.|[App-V prerequisites](appv-prerequisites.md)||
-|![Checklist box](../app-v/images/checklistbox.gif)|If you plan to use the App-V management server, plan for the required roles.|[Planning for the App-V server deployment](appv-planning-for-appv-server-deployment.md)||
+|![Checklist box.](../app-v/images/checklistbox.gif)|If you plan to use the App-V management server, plan for the required roles.|[Planning for the App-V server deployment](appv-planning-for-appv-server-deployment.md)||
-|![Checklist box](../app-v/images/checklistbox.gif)|Plan for the App-V sequencer and client to create and run virtualized applications.|[Planning for the App-V Sequencer and client deployment](appv-planning-for-sequencer-and-client-deployment.md)||
+|![Checklist box.](../app-v/images/checklistbox.gif)|Plan for the App-V sequencer and client to create and run virtualized applications.|[Planning for the App-V Sequencer and client deployment](appv-planning-for-sequencer-and-client-deployment.md)||
-|![Checklist box](../app-v/images/checklistbox.gif)|If applicable, review the options and steps for migrating from a previous version of App-V.|[Migrating to App-V from a previous version](appv-migrating-to-appv-from-a-previous-version.md)||
+|![Checklist box.](../app-v/images/checklistbox.gif)|If applicable, review the options and steps for migrating from a previous version of App-V.|[Migrating to App-V from a previous version](appv-migrating-to-appv-from-a-previous-version.md)||
-|![Checklist box](../app-v/images/checklistbox.gif)|Decide whether to configure App-V clients in Shared Content Store mode.|[Deploying the App-V Sequencer and configuring the client](appv-deploying-the-appv-sequencer-and-client.md)||
+|![Checklist box.](../app-v/images/checklistbox.gif)|Decide whether to configure App-V clients in Shared Content Store mode.|[Deploying the App-V Sequencer and configuring the client](appv-deploying-the-appv-sequencer-and-client.md)||
--- a/windows/application-management/enterprise-background-activity-controls.md
+++ b/windows/application-management/enterprise-background-activity-controls.md
@ -23,15 +23,15 @@ Enterprise users want the same ability to enable or limit background activity. I
 Users have the ability to control background activity for their device through two interfaces in the **Settings** app: the **Background apps** page and the **Battery usage by app** page. The **Background apps** page has a master switch to turn background activity on or off for all apps, and provides individual switches to control each app's ability to run in the background. 
-![Background apps settings page](images/backgroundapps-setting.png)
+![Background apps settings page.](images/backgroundapps-setting.png)
 The **Battery usage by app** page allows fine-grained tuning of background activity. Users have the ability to set background activity to by **Managed By Windows**, as well as turning it on or off for each app. Only devices with a battery have this page available in the **Settings** app. Here is the set of available controls on desktop: 
-![Battery usage by app on desktop](images/battery-usage-by-app-desktop.png)
+![Battery usage by app on desktop.](images/battery-usage-by-app-desktop.png)
 Here is the set of available controls for mobile devices: 
-![Battery usage by app on mobile](images/battery-usage-by-app-mobile.png)
+![Battery usage by app on mobile.](images/battery-usage-by-app-mobile.png)
 Although the user interface differs across editions of the operating system, the policy and developer interface is consistent across Windows 10. For more information about these controls, see [Optimize background activity](/windows/uwp/debug-test-perf/optimize-background-activity).
--- a/windows/application-management/per-user-services-in-windows.md
+++ b/windows/application-management/per-user-services-in-windows.md
@ -102,19 +102,19 @@ If a per-user service can't be disabled using a the security template, you can d
 5. Right-click **Registry** > **New** > **Registry Item**.
-   ![Group Policy preferences disabling per-user services](media/gpp-per-user-services.png) 
+   ![Group Policy preferences disabling per-user services.](media/gpp-per-user-services.png) 
 6. Make sure that  HKEY_Local_Machine is selected for Hive and then click ... (the ellipses) next to Key Path.
-   ![Choose HKLM](media/gpp-hklm.png)  
+   ![Choose HKLM.](media/gpp-hklm.png)  
 7. Browse to **System\CurrentControlSet\Services\PimIndexMaintenanceSvc**. In the list of values, highlight **Start** and click **Select**.
-   ![Select Start](media/gpp-svc-start.png)   
+   ![Select Start.](media/gpp-svc-start.png)   
 8. Change **Value data** from **00000003** to **00000004** and click **OK**. Note setting the Value data to **4** = **Disabled**. 
-   ![Startup Type is Disabled](media/gpp-svc-disabled.png)   
+   ![Startup Type is Disabled.](media/gpp-svc-disabled.png)   
 9. To add the other services that cannot be managed with a Group Policy templates, edit the policy and repeat steps 5-8.  
@ -140,14 +140,14 @@ REG.EXE ADD HKLM\System\CurrentControlSet\Services\WpnUserService /v Start /t RE
 If you cannot use Group Policy preferences to manage the per-user services, you can edit the registry with regedit.exe. To disable the template services, change the Startup Type for each service to 4 (disabled):
-![Using Regedit to change servive Starup Type](media/regedit-change-service-startup-type.png) 
+![Using Regedit to change servive Starup Type.](media/regedit-change-service-startup-type.png) 
 > [!CAUTION]
 > We recommend that you do not directly edit the registry unless there is no other alternative. Modifications to the registry are not validated by the Registry Editor or by the Windows operating system before they are applied. As a result, incorrect values can be stored, and this can result in unrecoverable errors in the system. When possible, instead of editing the registry directly, use Group Policy or other Windows tools such as the Microsoft Management Console (MMC) to accomplish tasks. If you must edit the registry, use extreme caution. 
 Beginning with Windows 10, version 1709 and Windows Server, version 1709, you can prevent the per-user service from being created by setting **UserServiceFlags** to 0 under the same service configuration in the registry:
-![Create per-user services in disabled state](media/user-service-flag.png)
+![Create per-user services in disabled state.](media/user-service-flag.png)
 ### Manage template services by modifying the Windows image
@ -186,4 +186,4 @@ For example, you might see the following per-user services listed in the Service
 You can query the service configuration from the command line. The **Type** value indicates whether the service is a user-service template or user-service instance.
-![Use sc.exe to view service type](media/cmd-type.png)
+![Use sc.exe to view service type.](media/cmd-type.png)
--- a/windows/application-management/svchost-service-refactoring.md
+++ b/windows/application-management/svchost-service-refactoring.md
@ -48,11 +48,11 @@ Refactoring also makes it easier to view running processes in Task Manager. You
 For example, here are the running processes displayed in Task Manager in Windows 10 version 1607:
-![Running processes in Task Manager, version 1607](media/svchost-grouped-processes.png) 
+![Running processes in Task Manager, version 1607.](media/svchost-grouped-processes.png) 
 Compare that to the same view of running processes in Windows 10 version 1703:
-![Running processes in Task Manager, version 1703](media/svchost-separated-processes.png)
+![Running processes in Task Manager, version 1703.](media/svchost-separated-processes.png)
@ -66,7 +66,7 @@ HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services.
 The default value of **1** prevents the service from being split.
 For example, this is the registry key configuration for BFE:
-![Example of a service that cannot be separated](media/svchost-separation-disabled.png)
+![Example of a service that cannot be separated.](media/svchost-separation-disabled.png)
 ## Memory footprint
@ -77,7 +77,7 @@ Consider the following:
 |Grouped Services (< 3.5GB) | Split Services (3.5GB+)
 |--------------------------------------- | ------------------------------------------ | 
-|![Memory utilization for grouped services](media/svchost-grouped-utilization.png)   |![Memory utilization for separated services](media/svchost-separated-utilization.png)       |
+|![Memory utilization for grouped services.](media/svchost-grouped-utilization.png)   |![Memory utilization for separated services](media/svchost-separated-utilization.png)       |
 > [!NOTE]
 > The above represents the peak observed values.
--- a/windows/client-management/administrative-tools-in-windows-10.md
+++ b/windows/client-management/administrative-tools-in-windows-10.md
@ -23,11 +23,11 @@ ms.topic: article
 Administrative Tools is a folder in Control Panel that contains tools for system administrators and advanced users. 
-![Screenshot of Control Panel](images/admin-tools.png)
+![Screenshot of Control Panel.](images/admin-tools.png)
 The tools in the folder might vary depending on which edition of Windows you are using. 
-![Screenshot of folder of admin tools](images/admin-tools-folder.png)
+![Screenshot of folder of admin tools.](images/admin-tools-folder.png)
 These tools were included in previous versions of Windows. The associated documentation for each tool should help you use these tools in Windows 10. The following list provides links to documentation for each tool. The tools are located within the folder C:\Windows\System32\ or its subfolders.
--- a/windows/client-management/advanced-troubleshooting-802-authentication.md
+++ b/windows/client-management/advanced-troubleshooting-802-authentication.md
@ -41,53 +41,53 @@ Check Windows Security Event log on the NPS Server for NPS events that correspon
 In the event message, scroll to the very bottom, and then check the [Reason Code](/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/dd197570(v%3dws.10)) field and the text that's associated with it.
-   ![example of an audit failure](images/auditfailure.png)
+   ![example of an audit failure.](images/auditfailure.png)
   *Example: event ID 6273 (Audit Failure)*<br><br>
 ‎
-   ![example of an audit success](images/auditsuccess.png)
+   ![example of an audit success.](images/auditsuccess.png)
   *Example: event ID 6272 (Audit Success)*<br>
 ‎The WLAN AutoConfig operational log lists information and error events based on conditions detected by or reported to the WLAN AutoConfig service. The operational log contains information about the wireless network adapter, the properties of the wireless connection profile, the specified network authentication, and, in the event of connectivity problems, the reason for the failure. For wired network access, the Wired AutoConfig operational log is an equivalent one.
 On the client side, go to **Event Viewer (Local)\Applications and Services Logs\Microsoft\Windows\WLAN-AutoConfig/Operational** for wireless issues. For wired network access issues, go to  **..\Wired-AutoConfig/Operational**. See the following example:
-![event viewer screenshot showing wired-autoconfig and WLAN autoconfig](images/eventviewer.png)
+![event viewer screenshot showing wired-autoconfig and WLAN autoconfig.](images/eventviewer.png)
 Most 802.1X authentication issues are because of problems with the certificate that's used for client or server authentication. Examples include invalid certificate, expiration, chain verification failure, and revocation check failure. 
 First, validate the type of EAP method that's used:
-![eap authentication type comparison](images/comparisontable.png)
+![eap authentication type comparison.](images/comparisontable.png)
 If a certificate is used for its authentication method, check whether the certificate is valid. For the server (NPS) side, you can confirm what certificate is being used from the EAP property menu. In **NPS snap-in**, go to **Policies** > **Network Policies**. Select and hold (or right-click) the policy, and then select **Properties**. In the pop-up window, go to the **Constraints** tab, and then select the **Authentication Methods** section.
-![Constraints tab of the secure wireless connections properties](images/eappropertymenu.png)
+![Constraints tab of the secure wireless connections properties.](images/eappropertymenu.png)
 The CAPI2 event log is useful for troubleshooting certificate-related issues.
 By default, this log isn't enabled. To enable this log, expand **Event Viewer (Local)\Applications and Services Logs\Microsoft\Windows\CAPI2**, select and hold (or right-click) **Operational**, and then select **Enable Log**.
-![screenshot of event viewer](images/capi.png)
+![screenshot of event viewer.](images/capi.png)
 For information about how to analyze CAPI2 event logs, see
 [Troubleshooting PKI Problems on Windows Vista](/previous-versions/windows/it-pro/windows-vista/cc749296%28v=ws.10%29).
 When troubleshooting complex 802.1X authentication issues, it's important to understand the 802.1X authentication process. Here's an example of wireless connection process with 802.1X authentication:
-![authenticator flow chart](images/authenticator_flow_chart.png)
+![authenticator flow chart.](images/authenticator_flow_chart.png)
 If you [collect a network packet capture](troubleshoot-tcpip-netmon.md) on both the client and the server (NPS) side, you can see a flow like the one below. Type **EAPOL** in the Display Filter for a client-side capture, and **EAP** for an NPS-side capture. See the following examples:
-![client-side packet capture data](images/clientsidepacket_cap_data.png)
+![client-side packet capture data.](images/clientsidepacket_cap_data.png)
 *Client-side packet capture data*<br><br>
-![NPS-side packet capture data](images/NPS_sidepacket_capture_data.png) 
+![NPS-side packet capture data.](images/NPS_sidepacket_capture_data.png) 
 *NPS-side packet capture data*<br>
 ‎
 > [!NOTE]
 > If you have a wireless trace, you can also [view ETL files with network monitor](/windows/desktop/ndf/using-network-monitor-to-view-etl-files) and apply the **ONEX_MicrosoftWindowsOneX** and **WLAN_MicrosoftWindowsWLANAutoConfig** Network Monitor filters. If you need to load the required [parser](/archive/blogs/netmon/parser-profiles-in-network-monitor-3-4), see the instructions under the **Help** menu in Network Monitor. Here's an example:
-![ETL parse](images/etl.png) 
+![ETL parse.](images/etl.png) 
 ## Audit policy
--- a/windows/client-management/advanced-troubleshooting-boot-problems.md
+++ b/windows/client-management/advanced-troubleshooting-boot-problems.md
@ -50,7 +50,7 @@ The kernel passes control to the session manager process (Smss.exe) which initia
 Here is a summary of the boot sequence, what will be seen on the display, and typical boot problems at that point in the sequence. Before starting troubleshooting, you have to understand the outline of the boot process and display status to ensure that the issue is properly identified at the beginning of the engagement.
-![thumbnail of boot sequence flowchart](images/boot-sequence-thumb.png)<br>
+![thumbnail of boot sequence flowchart.](images/boot-sequence-thumb.png)<br>
 [Click to enlarge](img-boot-sequence.md)<br>
--- a/windows/client-management/advanced-troubleshooting-wireless-network-connectivity.md
+++ b/windows/client-management/advanced-troubleshooting-wireless-network-connectivity.md
@ -152,7 +152,7 @@ The important components of the MSM include:
 - Security Manager (SecMgr) - handles all pre and post-connection security operations.
 - Authentication Engine (AuthMgr) – Manages 802.1x auth requests
-    ![MSM details](images/msmdetails.png)
+    ![MSM details.](images/msmdetails.png)
 Each of these components has their own individual state machines which follow specific transitions.
 Enable the **FSM transition, SecMgr Transition,** and **AuthMgr Transition** filters in TextAnalysisTool for more detail.
@ -327,4 +327,4 @@ Copy and paste all the lines below and save them into a text file named "wifi.ta
 In the following example, the **View** settings are configured to **Show Only Filtered Lines**.
-![TAT filter example](images/tat.png)
+![TAT filter example.](images/tat.png)
--- a/windows/client-management/change-default-removal-policy-external-storage-media.md
+++ b/windows/client-management/change-default-removal-policy-external-storage-media.md
@ -54,4 +54,4 @@ To change the policy for an external storage device:
 7. Select the policy that you want to use.
-   ![Policy options for disk management](./images/change-def-rem-policy-2.png)
+   ![Policy options for disk management.](./images/change-def-rem-policy-2.png)
--- a/windows/client-management/connect-to-remote-aadj-pc.md
+++ b/windows/client-management/connect-to-remote-aadj-pc.md
@ -24,7 +24,7 @@ ms.topic: article
 From its release, Windows 10 has supported remote connections to PCs joined to Active Directory. Starting in Windows 10, version 1607, you can also connect to a remote PC that is [joined to Azure Active Directory (Azure AD)](/azure/active-directory/devices/concept-azure-ad-join). Starting in Windows 10, version 1809, you can [use biometrics to authenticate to a remote desktop session](/windows/whats-new/whats-new-windows-10-version-1809#remote-desktop-with-biometrics).
-![Remote Desktop Connection client](images/rdp.png)
+![Remote Desktop Connection client.](images/rdp.png)
 ## Set up
@ -40,7 +40,7 @@ Ensure [Remote Credential Guard](/windows/access-protection/remote-credential-gu
  2. Enable **Allow remote connections to this computer** and select **Allow connections only from computers running Remote Desktop with Network Level Authentication**.
-     ![Allow remote connections to this computer](images/allow-rdp.png)
+     ![Allow remote connections to this computer.](images/allow-rdp.png)
  3. If the user who joined the PC to Azure AD is the only one who is going to connect remotely, no additional configuration is needed. To allow additional users or groups to connect to the PC, you must allow remote connections for the specified users or groups. Users can be added either manually or through MDM policies:
--- a/windows/client-management/img-boot-sequence.md
+++ b/windows/client-management/img-boot-sequence.md
@ -14,4 +14,4 @@ ms.prod: w10
 Return to: [Advanced troubleshooting for Windows boot problems](advanced-troubleshooting-boot-problems.md)<br>
-![Full-sized boot sequence flowchart](images/boot-sequence.png)
+![Full-sized boot sequence flowchart.](images/boot-sequence.png)
--- a/windows/client-management/introduction-page-file.md
+++ b/windows/client-management/introduction-page-file.md
@ -56,13 +56,13 @@ Page files extend how much "committed memory" (also known as "virtual memory") i
 The system commit memory limit is the sum of physical memory and all page files combined. It represents the maximum system-committed memory (also known as the "system commit charge") that the system can support.
-![Task manager](images/task-manager.png)
+![Task manager.](images/task-manager.png)
 The system commit charge is the total committed or "promised" memory of all committed virtual memory in the system. If the system commit charge reaches the system commit limit, the system and processes might not get committed memory. This condition can cause freezing, crashing, and other malfunctions. Therefore, make sure that you set the system commit limit high enough to support the system commit charge during peak usage.
-![Out of memory](images/out-of-memory.png)
+![Out of memory.](images/out-of-memory.png)
-![Task Manager](images/task-manager-commit.png)
+![Task Manager.](images/task-manager-commit.png)
 The system committed charge and system committed limit can be measured on the **Performance** tab in Task Manager or by using the "\Memory\Committed Bytes" and "\Memory\Commit Limit" performance counters. The \Memory\% Committed Bytes In Use counter is a ratio of \Memory\Committed Bytes to \Memory\Commit Limit values.
--- a/windows/client-management/manage-device-installation-with-group-policy.md
+++ b/windows/client-management/manage-device-installation-with-group-policy.md
@ -212,7 +212,7 @@ This policy setting will change the evaluation order in which Allow and Prevent
 Some of these policies take precedence over other policies. The flowchart shown below illustrates how Windows processes them to determine whether a user can install a device or not, as shown in Figure below.
-![Device Installation policies flow chart](images/device-installation-flowchart.png)<br/>_Device Installation policies flow chart_
+![Device Installation policies flow chart.](images/device-installation-flowchart.png)<br/>_Device Installation policies flow chart_
@ -261,17 +261,17 @@ To find device identification strings using Device Manager
 4. Find the “Printers” section and find the target printer
-    ![Selecting the printer in Device Manager](images/device-installation-dm-printer-by-device.png)<br/>_Selecting the printer in Device Manager_
+    ![Selecting the printer in Device Manager.](images/device-installation-dm-printer-by-device.png)<br/>_Selecting the printer in Device Manager_
 5. Double-click the printer and move to the ‘Details’ tab.
-    ![‘Details’ tab](images/device-installation-dm-printer-details-screen.png)<br/>_Open the ‘Details’ tab to look for the device identifiers_
+    ![‘Details’ tab.](images/device-installation-dm-printer-details-screen.png)<br/>_Open the ‘Details’ tab to look for the device identifiers_
 6. From the ‘Value’ window, copy the most detailed Hardware ID – we will use this in the policies.
-    ![HWID](images/device-installation-dm-printer-hardware-ids.png)
+    ![HWID.](images/device-installation-dm-printer-hardware-ids.png)
-    ![Compatible ID](images/device-installation-dm-printer-compatible-ids.png)<br/>_HWID and Compatible ID_
+    ![Compatible ID.](images/device-installation-dm-printer-compatible-ids.png)<br/>_HWID and Compatible ID_
    > [!TIP]
    > You can also determine your device identification strings by using the PnPUtil command-line utility. For more information, see [PnPUtil - Windows drivers](/windows-hardware/drivers/devtest/pnputil) in Microsoft Docs.
@ -360,7 +360,7 @@ Creating the policy to prevent all printers from being installed:
 6. Enter the printer class GUID you found above with the curly braces (this is important! Otherwise, it won’t work): {4d36e979-e325-11ce-bfc1-08002be10318}
-    ![List of prevent Class GUIDs](images/device-installation-gpo-prevent-class-list.png)<br/>_List of prevent Class GUIDs_
+    ![List of prevent Class GUIDs.](images/device-installation-gpo-prevent-class-list.png)<br/>_List of prevent Class GUIDs_
 7. Click ‘OK’.
@ -399,7 +399,7 @@ Getting the right device identifier to prevent it from being installed:
 1. Get your printer’s Hardware ID – in this example we will use the identifier we found previously
-    ![Printer Hardware ID identifier](images/device-installation-dm-printer-hardware-ids.png)<br/>_Printer Hardware ID_
+    ![Printer Hardware ID identifier.](images/device-installation-dm-printer-hardware-ids.png)<br/>_Printer Hardware ID_
 2. Write down the device ID (in this case Hardware ID) – WSDPRINT\CanonMX920_seriesC1A0; Take the more specific identifier to make sure you block a specific printer and not a family of printers
@ -417,7 +417,7 @@ Creating the policy to prevent a single printer from being installed:
 5. Enter the printer device ID you found above – WSDPRINT\CanonMX920_seriesC1A0
-    ![Prevent Device ID list](images/device-installation-gpo-prevent-device-id-list-printer.png)<br/>_Prevent Device ID list_
+    ![Prevent Device ID list.](images/device-installation-gpo-prevent-device-id-list-printer.png)<br/>_Prevent Device ID list_
 6. Click ‘OK’.
@ -477,7 +477,7 @@ First create a ‘Prevent Class’ policy and then create ‘Allow Device’ one
 6. Enter the printer class GUID you found above with the curly braces (this is important! Otherwise, it won’t work): {4d36e979-e325-11ce-bfc1-08002be10318}
-    ![List of prevent Class GUIDs](images/device-installation-gpo-prevent-class-list.png)<br/>_List of prevent Class GUIDs_
+    ![List of prevent Class GUIDs.](images/device-installation-gpo-prevent-class-list.png)<br/>_List of prevent Class GUIDs_
 7. Click ‘OK’.
@ -489,7 +489,7 @@ First create a ‘Prevent Class’ policy and then create ‘Allow Device’ one
    ![Image of Local Group Policy Editor that shows the policies under "Device Installation Restrictions" and the policy named in this step.](images/device-installation-apply-layered_policy-1.png)
-    ![Image that shows the current settings of the policy named in this step, "Apply layered order of evaluation for Allow and Prevent device installation policies across all device match criteria."](images/device-installation-apply-layered-policy-2.png)<br/>_Apply layered order of evaluation policy_
+    ![Image that shows the current settings of the policy named in this step, "Apply layered order of evaluation for Allow and Prevent device installation policies across all device match criteria.".](images/device-installation-apply-layered-policy-2.png)<br/>_Apply layered order of evaluation policy_
 9. Now Open **Allow installation of devices that match any of these device IDs** policy and select the ‘Enable’ radio button.
@ -497,7 +497,7 @@ First create a ‘Prevent Class’ policy and then create ‘Allow Device’ one
 11. Enter the printer device ID you found above: WSDPRINT\CanonMX920_seriesC1A0.
-    ![Allow Printer Hardware ID](images/device-installation-gpo-allow-device-id-list-printer.png)<br/>_Allow Printer Hardware ID_
+    ![Allow Printer Hardware ID.](images/device-installation-gpo-allow-device-id-list-printer.png)<br/>_Allow Printer Hardware ID_
 12. Click ‘OK’.
@ -532,22 +532,22 @@ Getting the right device identifier to prevent it from being installed and its l
 3. Find the USB thumb-drive and select it.
-    ![Selecting the usb thumb-drive in Device Manager](images/device-installation-dm-usb-by-device.png)<br/>_Selecting the usb thumb-drive in Device Manager_
+    ![Selecting the usb thumb-drive in Device Manager.](images/device-installation-dm-usb-by-device.png)<br/>_Selecting the usb thumb-drive in Device Manager_
 4. Change View (in the top menu) to ‘Devices by connections’. This view represents the way devices are installed in the PnP tree.
-    ![Changing view in Device Manager to see the PnP connection tree](images/device-installation-dm-usb-by-connection.png)<br/>_Changing view in Device Manager to see the PnP connection tree_
+    ![Changing view in Device Manager to see the PnP connection tree.](images/device-installation-dm-usb-by-connection.png)<br/>_Changing view in Device Manager to see the PnP connection tree_
    > [!NOTE]
    > When blocking\Preventing a device that sits higher in the PnP tree, all the devices that sit under it will be blocked. For example: Preventing a “Generic USB Hub” from being installed, all the devices that lay below a “Generic USB Hub” will be blocked.
-    ![Blocking nested devices from the root](images/device-installation-dm-usb-by-connection-blocked.png)<br/>_When blocking one device, all the devices that are nested below it will be blocked as well_
+    ![Blocking nested devices from the root.](images/device-installation-dm-usb-by-connection-blocked.png)<br/>_When blocking one device, all the devices that are nested below it will be blocked as well_
 5. Double-click the USB thumb-drive and move to the ‘Details’ tab.
 6. From the ‘Value’ window, copy the most detailed Hardware ID—we will use this in the policies. In this case Device ID = USBSTOR\DiskGeneric_Flash_Disk______8.07
-    ![USB device hardware IDs](images/device-installation-dm-usb-hwid.png)<br/>_USB device hardware IDs_
+    ![USB device hardware IDs.](images/device-installation-dm-usb-hwid.png)<br/>_USB device hardware IDs_
 Creating the policy to prevent a single USB thumb-drive from being installed:
@ -563,7 +563,7 @@ Creating the policy to prevent a single USB thumb-drive from being installed:
 5. Enter the USB thumb-drive device ID you found above – USBSTOR\DiskGeneric_Flash_Disk______8.07
-    ![Prevent Device IDs list](images/device-installation-gpo-prevent-device-id-list-usb.png)<br/>_Prevent Device IDs list_
+    ![Prevent Device IDs list.](images/device-installation-gpo-prevent-device-id-list-usb.png)<br/>_Prevent Device IDs list_
 6. Click ‘OK’.
@ -620,7 +620,7 @@ As mentioned in scenario #4, it is not enough to enable only a single hardware I
 - “USB Root Hub (USB 3.0)” -> USB\ROOT_HUB30
 - “Generic USB Hub” -> USB\USB20_HUB
-![USB devices nested in the PnP tree](images/device-installation-dm-usb-by-connection-layering.png)<br/>_USB devices nested under each other in the PnP tree_
+![USB devices nested in the PnP tree.](images/device-installation-dm-usb-by-connection-layering.png)<br/>_USB devices nested under each other in the PnP tree_
 These devices are internal devices on the machine that define the USB port connection to the outside world. Enabling them should not enable any external/peripheral device from being installed on the machine.
@ -663,7 +663,7 @@ First create a ‘Prevent Class’ policy and then create ‘Allow Device’ one
 9. Open the **Apply layered order of evaluation for Allow and Prevent device installation policies across all device match criteria** policy and enable it – this policy will enable you to override the wide coverage of the ‘Prevent’ policy with a specific device.
-    ![Apply layered order of evaluation policy](images/device-installation-apply-layered_policy-1.png)<br/>_Apply layered order of evaluation policy_
+    ![Apply layered order of evaluation policy.](images/device-installation-apply-layered_policy-1.png)<br/>_Apply layered order of evaluation policy_
 10. Now Open **Allow installation of devices that match any of these device IDs** policy and select the ‘Enable’ radio button.
@ -671,7 +671,7 @@ First create a ‘Prevent Class’ policy and then create ‘Allow Device’ one
 12. Enter the full list of USB device IDs you found above including the specific USB Thumb-drive you would like to authorize for installation – USBSTOR\DiskGeneric_Flash_Disk______8.07
-    ![Image of an example list of devices that have been configured for the policy "Allow installation of devices that match any of these Device IDs."](images/device-installation-gpo-allow-device-id-list-usb.png)<br/>_Allowed USB Device IDs list_
+    ![Image of an example list of devices that have been configured for the policy "Allow installation of devices that match any of these Device IDs.".](images/device-installation-gpo-allow-device-id-list-usb.png)<br/>_Allowed USB Device IDs list_
 13. Click ‘OK’.
--- a/windows/client-management/manage-settings-app-with-group-policy.md
+++ b/windows/client-management/manage-settings-app-with-group-policy.md
@ -35,7 +35,7 @@ Policy paths:
 **User Configuration** > **Administrative Templates** > **Control Panel** > **Settings Page Visibility**.
-![Settings page visibility policy](images/settings-page-visibility-gp.png)
+![Settings page visibility policy.](images/settings-page-visibility-gp.png)
 ## Configuring the Group Policy
--- a/windows/client-management/manage-windows-10-in-your-organization-modern-management.md
+++ b/windows/client-management/manage-windows-10-in-your-organization-modern-management.md
@ -92,7 +92,7 @@ For more information about how Windows 10 and Azure AD optimize access to work r
 As you review the roles in your organization, you can use the following generalized decision tree to begin to identify users or devices that require domain join. Consider switching the remaining users to Azure AD.
-![Decision tree for device authentication options](images/windows-10-management-cyod-byod-flow.png)
+![Decision tree for device authentication options.](images/windows-10-management-cyod-byod-flow.png)
 ## Settings and Configuration
--- a/windows/client-management/mandatory-user-profile.md
+++ b/windows/client-management/mandatory-user-profile.md
@ -75,7 +75,7 @@ First, you create a default user profile with the customizations that you want,
   > [!TIP]
   > If you receive an error message that says "Sysprep was not able to validate your Windows installation", open %WINDIR%\\System32\\Sysprep\\Panther\\setupact.log and look for an entry like the following:
   >
-   > ![Microsoft Bing Translator package error](images/sysprep-error.png)
+   > ![Microsoft Bing Translator package error.](images/sysprep-error.png)
   >
   > Use the [Remove-AppxProvisionedPackage](/powershell/module/dism/remove-appxprovisionedpackage?view=win10-ps&preserve-view=true) and [Remove-AppxPackage -AllUsers](/powershell/module/appx/remove-appxpackage?view=win10-ps&preserve-view=true) cmdlet in Windows PowerShell to uninstall the app that is listed in the log.
@ -86,11 +86,11 @@ First, you create a default user profile with the customizations that you want,
 1. In **User Profiles**, click **Default Profile**, and then click **Copy To**.
-   ![Example of User Profiles UI](images/copy-to.png)
+   ![Example of User Profiles UI.](images/copy-to.png)
 1. In **Copy To**, under **Permitted to use**, click **Change**.
-   ![Example of Copy To UI](images/copy-to-change.png)
+   ![Example of Copy To UI.](images/copy-to-change.png)
 1. In **Select User or Group**, in the **Enter the object name to select** field, type `everyone`, click **Check Names**, and then click **OK**.
@ -98,11 +98,11 @@ First, you create a default user profile with the customizations that you want,
   - If the device is joined to the domain and you are signed in with an account that has permissions to write to a shared folder on the network, you can enter the shared folder path.
-   ![Example of Copy profile to](images/copy-to-path.png)
+   ![Example of Copy profile to.](images/copy-to-path.png)
   - If the device is not joined to the domain, you can save the profile locally and then copy it to the shared folder location.
-   ![Example of Copy To UI with UNC path](images/copy-to-path.png)
+   ![Example of Copy To UI with UNC path.](images/copy-to-path.png)
 1. Click **OK** to copy the default user profile.
@ -139,9 +139,9 @@ When a user is configured with a mandatory profile, Windows 10 starts as though
 | Group Policy setting | Windows 10 | Windows Server 2016 | Windows 8.1 | Windows Server 2012 |
 | --- | --- | --- | --- | --- |
-| Computer Configuration > Administrative Templates > System > Logon > **Show first sign-in animation** = Disabled | ![supported](images/checkmark.png) | ![supported](images/checkmark.png) | ![supported](images/checkmark.png) | ![supported](images/checkmark.png) |
+| Computer Configuration > Administrative Templates > System > Logon > **Show first sign-in animation** = Disabled | ![supported.](images/checkmark.png) | ![supported](images/checkmark.png) | ![supported](images/checkmark.png) | ![supported](images/checkmark.png) |
-| Computer Configuration > Administrative Templates > Windows Components > Search > **Allow Cortana** = Disabled | ![supported](images/checkmark.png) | ![supported](images/checkmark.png) | ![not supported](images/crossmark.png)  | ![not supported](images/crossmark.png)  |
+| Computer Configuration > Administrative Templates > Windows Components > Search > **Allow Cortana** = Disabled | ![supported.](images/checkmark.png) | ![supported](images/checkmark.png) | ![not supported](images/crossmark.png)  | ![not supported](images/crossmark.png)  |
-| Computer Configuration > Administrative Templates > Windows Components > Cloud Content > **Turn off Microsoft consumer experience** = Enabled | ![supported](images/checkmark.png) | ![not supported](images/crossmark.png) | ![not supported](images/crossmark.png) | ![not supported](images/crossmark.png) |
+| Computer Configuration > Administrative Templates > Windows Components > Cloud Content > **Turn off Microsoft consumer experience** = Enabled | ![supported.](images/checkmark.png) | ![not supported](images/crossmark.png) | ![not supported](images/crossmark.png) | ![not supported](images/crossmark.png) |
 > [!NOTE]
 > The Group Policy settings above can be applied in Windows 10 Professional edition.
--- a/windows/client-management/mdm/accountmanagement-csp.md
+++ b/windows/client-management/mdm/accountmanagement-csp.md
@ -22,7 +22,7 @@ AccountManagement CSP is used to configure setting in the Account Manager servic
 The following diagram shows the AccountManagement configuration service provider in tree format.
-![accountmanagement csp](images/provisioning-csp-accountmanagement.png)
+![accountmanagement csp.](images/provisioning-csp-accountmanagement.png)
 <a href="" id="accountmanagement"></a>**./Vendor/MSFT/AccountManagement**  
 Root node for the AccountManagement configuration service provider.
--- a/windows/client-management/mdm/add-an-azure-ad-tenant-and-azure-ad-subscription.md
+++ b/windows/client-management/mdm/add-an-azure-ad-tenant-and-azure-ad-subscription.md
@ -21,45 +21,45 @@ Here's a step-by-step guide to adding an Azure Active Directory tenant, adding a
 1. Sign up for Azure AD tenant from [this website](https://account.windowsazure.com/organization) by creating an administrator account for your organization.
-   ![sign up for azure ad tenant](images/azure-ad-add-tenant1.png)
+   ![sign up for azure ad tenant.](images/azure-ad-add-tenant1.png)
 2. Enter the information for your organization. Select **check availability** to verify that domain name that you selected is available.
-   ![sign up for azure ad](images/azure-ad-add-tenant2.png)
+   ![sign up for azure ad.](images/azure-ad-add-tenant2.png)
 3. Complete the login and country information. Enter a valid phone number, then select **Send text message** or **Call me**.
-   ![create azure account](images/azure-ad-add-tenant3.png)
+   ![create azure account.](images/azure-ad-add-tenant3.png)
 4. Enter the code that you receive and then select **Verify code**. After the code is verified and the continue button turns green, select **continue**.
-   ![add aad tenant](images/azure-ad-add-tenant3-b.png)
+   ![add aad tenant.](images/azure-ad-add-tenant3-b.png)
 5. After you finish creating your Azure account, you can add an Azure AD subscription.
   If you don't have a paid subscription to any Microsoft service, you can purchase an Azure AD premium subscription. Go to the Office 356 portal at https://portal.office.com/, and then sign in using the admin account that you created in Step 4 (for example, user1@contosoltd.onmicrosoftcom).
-   ![login to office 365](images/azure-ad-add-tenant4.png)
+   ![login to office 365.](images/azure-ad-add-tenant4.png)
 6. Select **Install software**.
-   ![login to office 365](images/azure-ad-add-tenant5.png)
+   ![login to office 365.](images/azure-ad-add-tenant5.png)
 7. In the Microsoft 365 admin center, select **Purchase Services** from the left navigation.
-   ![purchase service option in admin center menu](images/azure-ad-add-tenant6.png)
+   ![purchase service option in admin center menu.](images/azure-ad-add-tenant6.png)
 8. On the **Purchase services** page, scroll down until you see **Azure Active Directory Premium**, then select to purchase.
-   ![azure active directory option in purchase services page](images/azure-ad-add-tenant7.png)
+   ![azure active directory option in purchase services page.](images/azure-ad-add-tenant7.png)
 9. Continue with your purchase.
-   ![azure active directory premium payment page](images/azure-ad-add-tenant8.png)
+   ![azure active directory premium payment page.](images/azure-ad-add-tenant8.png)
 10. After the purchase is completed, you can log in to your Office 365 Admin Portal and you will see the **Azure AD** option from the Admin drop-down menu along with other services (SharePoint, Exchange, etc....).
-    ![admin center left navigation menu](images/azure-ad-add-tenant9.png)
+    ![admin center left navigation menu.](images/azure-ad-add-tenant9.png)
    When you choose Azure AD, it will take you to the Azure AD portal where you can manage your Azure AD applications.
@ -69,27 +69,27 @@ If you have paid subscriptions to Office 365, Microsoft Dynamics CRM Online, Ent
 1.  Sign in to the Microsoft 365 admin center at <https://portal.office.com> using your organization's account.
-    ![register azuread](images/azure-ad-add-tenant10.png)
+    ![register azuread.](images/azure-ad-add-tenant10.png)
 2.  On the **Home** page, select on the Admin tools icon.
-    ![register azuread](images/azure-ad-add-tenant11.png)
+    ![register azuread.](images/azure-ad-add-tenant11.png)
 3.  On the **Admin center** page, hover your mouse over the Admin tools icon on the left and then click **Azure AD**. This will take you to the Azure Active Directory sign-up page and brings up your existing Office 365 organization account information.
-    ![register azuread](images/azure-ad-add-tenant12.png)
+    ![register azuread.](images/azure-ad-add-tenant12.png)
 4.  On the **Sign up** page, make sure to enter a valid phone number and then click **Sign up**.
-    ![register azuread](images/azure-ad-add-tenant13.png)
+    ![register azuread.](images/azure-ad-add-tenant13.png)
 5.  It may take a few minutes to process the request.
-    ![register azuread](images/azure-ad-add-tenant14.png)
+    ![register azuread.](images/azure-ad-add-tenant14.png)
 6.  You will see a welcome page when the process completes.
-    ![register azuread](images/azure-ad-add-tenant15.png)
+    ![register azuread.](images/azure-ad-add-tenant15.png)
--- a/windows/client-management/mdm/applocker-csp.md
+++ b/windows/client-management/mdm/applocker-csp.md
@ -263,16 +263,16 @@ Supported operations are Get, Add, Delete, and Replace.
    The **Device Portal** page opens on your browser.
-    ![device portal screenshot](images/applocker-screenshot1.png)
+    ![device portal screenshot.](images/applocker-screenshot1.png)
 8.  On the desktop **Device Portal** page, click **Apps** to open the **App Manager**.
 9.  On the **App Manager** page under **Running apps**, you will see the **Publisher** and **PackageFullName** of apps.
-    ![device portal app manager](images/applocker-screenshot3.png)
+    ![device portal app manager.](images/applocker-screenshot3.png)
 10. If you do not see the app that you want, look under **Installed apps**. Using the drop- down menu, click on the application and you get the Version, Publisher, and PackageFullName displayed.
-    ![app manager](images/applocker-screenshot2.png)
+    ![app manager.](images/applocker-screenshot2.png)
 The following table shows the mapping of information to the AppLocker publisher rule field.
--- a/windows/client-management/mdm/appv-deploy-and-config.md
+++ b/windows/client-management/mdm/appv-deploy-and-config.md
@ -23,7 +23,7 @@ manager: dansimp
 [EnterpriseAppVManagement CSP reference](./enterpriseappvmanagement-csp.md)
-![enterpriseappvmanagement csp](images/provisioning-csp-enterpriseappvmanagement.png)
+![enterpriseappvmanagement csp.](images/provisioning-csp-enterpriseappvmanagement.png)
 <p>(./User/Vendor/MSFT/EnterpriseAppVManagement) contains the following sub-nodes.</p>
--- a/windows/client-management/mdm/azure-active-directory-integration-with-mdm.md
+++ b/windows/client-management/mdm/azure-active-directory-integration-with-mdm.md
@ -90,7 +90,7 @@ After the users accepts the Terms of Use, the device is registered in Azure AD a
 The following diagram illustrates the high-level flow involved in the actual enrollment process. The device is first registered with Azure AD. This process assigns a unique device identifier to the device and presents the device with the ability to authenticate itself with Azure AD (device authentication). Subsequently, the device is enrolled for management with the MDM. This is done by calling the enrollment endpoint and requesting enrollment for the user and device. At this point, the user has been authenticated and device has been registered and authenticated with Azure AD. This information is made available to the MDM in the form of claims within an access token presented at the enrollment endpoint.
-![azure ad enrollment flow](images/azure-ad-enrollment-flow.png)
+![azure ad enrollment flow.](images/azure-ad-enrollment-flow.png)
 The MDM is expected to use this information about the device (Device ID) when reporting device compliance back to Azure AD using the [Azure AD Graph API](/azure/active-directory/develop/active-directory-graph-api). A sample for reporting device compliance is provided later in this topic.
@ -173,7 +173,7 @@ IT administrators use the Azure AD app gallery to add an MDM for their organizat
 The following image illustrates how MDM applications will show up in the Azure app gallery in a category dedicated to MDM software.
-![azure ad add an app for mdm](images/azure-ad-app-gallery.png)
+![azure ad add an app for mdm.](images/azure-ad-app-gallery.png)
 ### Add cloud-based MDM to the app gallery
@ -732,7 +732,7 @@ Response:
 When a user is enrolled into MDM through Azure Active Directory Join and then disconnects the enrollment, there is no warning that the user will lose Windows Information Protection (WIP) data. The disconnection message does not indicate the loss of WIP data.
-![aadj unenrollment](images/azure-ad-unenrollment.png)
+![aadj unenrollment.](images/azure-ad-unenrollment.png)
 ## Error codes
--- a/windows/client-management/mdm/azure-ad-and-microsoft-intune-automatic-mdm-enrollment-in-the-new-portal.md
+++ b/windows/client-management/mdm/azure-ad-and-microsoft-intune-automatic-mdm-enrollment-in-the-new-portal.md
@ -20,10 +20,10 @@ manager: dansimp
 2. Select **Mobility (MDM and MAM)**, and find the Microsoft Intune app.
 3. Select **Microsoft Intune** and configure the blade. 
-![How to get to the Blade](images/azure-mdm-intune.png) 
+![How to get to the Blade.](images/azure-mdm-intune.png) 
 Configure the blade                                                                      
-![Configure the Blade](images/azure-intune-configure-scope.png) 
+![Configure the Blade.](images/azure-intune-configure-scope.png) 
 You can specify settings to allow all users to enroll a device and make it Intune ready, or choose to allow some users (and then add a group of users). 
--- a/windows/client-management/mdm/bootstrap-csp.md
+++ b/windows/client-management/mdm/bootstrap-csp.md
@ -27,7 +27,7 @@ The BOOTSTRAP configuration service provider sets the Trusted Provisioning Serve
 The following image shows the BOOTSTRAP configuration service provider in tree format as used by Open Mobile Alliance (OMA) Client Provisioning. The OMA Device Management protocol is not supported with this configuration service provider.
-![bootstrap csp (cp)](images/provisioning-csp-bootstrap-cp.png)
+![bootstrap csp (cp).](images/provisioning-csp-bootstrap-cp.png)
 <a href="" id="context-allow"></a>**CONTEXT-ALLOW**  
 Optional. Specifies a context for the TPS. Only one context is supported, so this parameter is ignored and "0" is assumed for its value.
--- a/windows/client-management/mdm/browserfavorite-csp.md
+++ b/windows/client-management/mdm/browserfavorite-csp.md
@ -30,7 +30,7 @@ This configuration service provider requires the ID\_CAP\_CSP\_FOUNDATION and ID
 The following diagram shows the BrowserFavorite configuration service provider in tree format as used by Open Mobile Alliance Device (OMA) Client Provisioning. The OMA Device Management protocol is not supported with this configuration service provider.
-![browserfavorite csp (cp)](images/provisioning-csp-browserfavorite-cp.png)
+![browserfavorite csp (cp).](images/provisioning-csp-browserfavorite-cp.png)
 <a href="" id="favorite-name-------------"></a>***favorite name***   
 Required. Specifies the user-friendly name of the favorite URL that is displayed in the Favorites list of Internet Explorer.
--- a/windows/client-management/mdm/bulk-enrollment-using-windows-provisioning-tool.md
+++ b/windows/client-management/mdm/bulk-enrollment-using-windows-provisioning-tool.md
@ -57,7 +57,7 @@ Using the WCD, create a provisioning package using the enrollment information re
 1. Open the WCD tool.
 2. Click **Advanced Provisioning**.
-   ![icd start page](images/bulk-enrollment7.png)
+   ![icd start page.](images/bulk-enrollment7.png)
 3. Enter a project name and click **Next**.
 4. Select **All Windows editions**, since Provisioning CSP is common to all Windows editions, then click **Next**.
 5. Skip **Import a provisioning package (optional)** and click **Finish**.
@ -74,20 +74,20 @@ Using the WCD, create a provisioning package using the enrollment information re
   For detailed descriptions of these settings, see [Provisioning CSP](provisioning-csp.md).
   Here is the screenshot of the WCD at this point.
-    ![bulk enrollment screenshot](images/bulk-enrollment.png)
+    ![bulk enrollment screenshot.](images/bulk-enrollment.png)
 9. Configure the other settings, such as the Wi-Fi connections so that the device can join a network before joining MDM (e.g., **Runtime settings** &gt; **ConnectivityProfiles** &gt; **WLANSetting**).
 10. When you are done adding all the settings, on the **File** menu, click **Save**.
 11. On the main menu click **Export** &gt; **Provisioning package**.
-    ![icd menu for export](images/bulk-enrollment2.png)
+    ![icd menu for export.](images/bulk-enrollment2.png)
 12. Enter the values for your package and specify the package output location.
-    ![enter package information](images/bulk-enrollment3.png)
+    ![enter package information.](images/bulk-enrollment3.png)
-    ![enter additional information for package information](images/bulk-enrollment4.png)
+    ![enter additional information for package information.](images/bulk-enrollment4.png)
-    ![specify file location](images/bulk-enrollment6.png)
+    ![specify file location.](images/bulk-enrollment6.png)
 13. Click **Build**.
-    ![icb build window](images/bulk-enrollment5.png)
+    ![icb build window.](images/bulk-enrollment5.png)
 14. Apply the package to some test devices and verify that they work. For more information, see [Apply a provisioning package](#apply-a-provisioning-package).
 15. Apply the package to your devices.
@ -108,7 +108,7 @@ Using the WCD, create a provisioning package using the enrollment information re
   5.  Set **ExportCertificate** to False.
   6.  For **KeyLocation**, select **Software only**.
-   ![icd certificates section](images/bulk-enrollment8.png)
+   ![icd certificates section.](images/bulk-enrollment8.png)
 7. Specify the workplace settings.
   1. Got to **Workplace** &gt; **Enrollments**.
   2. Enter the **UPN** for the enrollment and then click **Add**.
--- a/windows/client-management/mdm/cellularsettings-csp.md
+++ b/windows/client-management/mdm/cellularsettings-csp.md
@ -21,7 +21,7 @@ The CellularSettings configuration service provider is used to configure cellula
 The following image shows the CellularSettings CSP in tree format as used by Open Mobile Alliance Client Provisioning (OMA CP). The OMA DM protocol is not supported with this configuration service provider.
-![provisioning for cellular settings](images/provisioning-csp-cellularsettings.png)
+![provisioning for cellular settings.](images/provisioning-csp-cellularsettings.png)
 <a href="" id="dataroam"></a>**DataRoam**  
 <p style="margin-left: 20px"> Optional. Integer. Specifies the default roaming value. Valid values are:</p>
--- a/windows/client-management/mdm/cm-cellularentries-csp.md
+++ b/windows/client-management/mdm/cm-cellularentries-csp.md
@ -20,7 +20,7 @@ This configuration service provider requires the ID\_CAP\_NETWORKING\_ADMIN capa
 The following diagram shows the CM\_CellularEntries configuration service provider management object in tree format as used by Open Mobile Alliance Client Provisioning (OMA CP). The OMA DM protocol is not supported with this configuration service provider.
-![cm\-cellularentries csp](images/provisioning-csp-cm-cellularentries.png)
+![cm\-cellularentries csp.](images/provisioning-csp-cm-cellularentries.png)
 <a href="" id="entryname"></a>***entryname***  
 <p style="margin-left: 20px">Defines the name of the connection.</p>
--- a/windows/client-management/mdm/configuration-service-provider-reference.md
+++ b/windows/client-management/mdm/configuration-service-provider-reference.md
@ -2555,36 +2555,36 @@ The following list shows the CSPs supported in HoloLens devices:
 | Configuration service provider        | HoloLens (1st gen) Development Edition      | HoloLens (1st gen) Commercial Suite | HoloLens 2 |
 |------|--------|--------|--------|
-| [AccountManagement CSP](accountmanagement-csp.md)   | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>4</sup>       | ![check mark](images/checkmark.png)
+| [AccountManagement CSP](accountmanagement-csp.md)   | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>4</sup>       | ![check mark](images/checkmark.png)
-| [Accounts CSP](accounts-csp.md)    | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) |
+| [Accounts CSP](accounts-csp.md)    | ![check mark.](images/checkmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) |
-| [ApplicationControl CSP](applicationcontrol-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) |  ![check mark](images/checkmark.png) |
+| [ApplicationControl CSP](applicationcontrol-csp.md) | ![cross mark.](images/crossmark.png) | ![cross mark](images/crossmark.png) |  ![check mark](images/checkmark.png) |
-| [AppLocker CSP](applocker-csp.md)      | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![cross mark](images/crossmark.png) |
+| [AppLocker CSP](applocker-csp.md)      | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![cross mark](images/crossmark.png) |
-| [AssignedAccess CSP](assignedaccess-csp.md)      | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>4</sup>       | ![check mark](images/checkmark.png) |
+| [AssignedAccess CSP](assignedaccess-csp.md)      | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>4</sup>       | ![check mark](images/checkmark.png) |
-| [CertificateStore CSP](certificatestore-csp.md)    | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)| ![check mark](images/checkmark.png) |
+| [CertificateStore CSP](certificatestore-csp.md)    | ![check mark.](images/checkmark.png) | ![check mark](images/checkmark.png)| ![check mark](images/checkmark.png) |
-| [ClientCertificateInstall CSP](clientcertificateinstall-csp.md)  | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [ClientCertificateInstall CSP](clientcertificateinstall-csp.md)  | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [DevDetail CSP](devdetail-csp.md)   | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [DevDetail CSP](devdetail-csp.md)   | ![check mark.](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [DeveloperSetup CSP](developersetup-csp.md)   | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>2</sup>   (runtime provisioning via provisioning packages only; no MDM support)| ![check mark](images/checkmark.png) |
+| [DeveloperSetup CSP](developersetup-csp.md)   | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>2</sup>   (runtime provisioning via provisioning packages only; no MDM support)| ![check mark](images/checkmark.png) |
-| [DeviceManageability CSP](devicemanageability-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) |
+| [DeviceManageability CSP](devicemanageability-csp.md) | ![cross mark.](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) |
-| [DeviceStatus CSP](devicestatus-csp.md)  | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)  | ![check mark](images/checkmark.png) |
+| [DeviceStatus CSP](devicestatus-csp.md)  | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)  | ![check mark](images/checkmark.png) |
-| [DevInfo CSP](devinfo-csp.md)  | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [DevInfo CSP](devinfo-csp.md)  | ![check mark.](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [DiagnosticLog CSP](diagnosticlog-csp.md)  | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [DiagnosticLog CSP](diagnosticlog-csp.md)  | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [DMAcc CSP](dmacc-csp.md)      | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [DMAcc CSP](dmacc-csp.md)      | ![check mark.](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [DMClient CSP](dmclient-csp.md)    | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [DMClient CSP](dmclient-csp.md)    | ![check mark.](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [EnrollmentStatusTracking CSP](enrollmentstatustracking-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>10</sup>  |
+| [EnrollmentStatusTracking CSP](enrollmentstatustracking-csp.md) | ![cross mark.](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>10</sup>  |
-| [EnterpriseModernAppManagement CSP](enterprisemodernappmanagement-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [EnterpriseModernAppManagement CSP](enterprisemodernappmanagement-csp.md) | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [NetworkProxy CSP](networkproxy-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) |
+| [NetworkProxy CSP](networkproxy-csp.md) | ![cross mark.](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) |
-| [NetworkQoSPolicy CSP](networkqospolicy-csp.md)  | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png)       | ![check mark](images/checkmark.png) <sup>8</sup>|
+| [NetworkQoSPolicy CSP](networkqospolicy-csp.md)  | ![cross mark.](images/crossmark.png) | ![cross mark](images/crossmark.png)       | ![check mark](images/checkmark.png) <sup>8</sup>|
-| [NodeCache CSP](nodecache-csp.md)  | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [NodeCache CSP](nodecache-csp.md)  | ![check mark.](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-[PassportForWork CSP](passportforwork-csp.md) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) |
+[PassportForWork CSP](passportforwork-csp.md) | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png) |
-| [Policy CSP](policy-configuration-service-provider.md)    | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [Policy CSP](policy-configuration-service-provider.md)    | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [RemoteFind CSP](remotefind-csp.md)    | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>4</sup>       | ![check mark](images/checkmark.png) |
+| [RemoteFind CSP](remotefind-csp.md)    | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>4</sup>       | ![check mark](images/checkmark.png) |
-| [RemoteWipe CSP](remotewipe-csp.md) (**doWipe** and **doWipePersistProvisionedData** nodes only)  | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>4</sup>       | ![check mark](images/checkmark.png) |
+| [RemoteWipe CSP](remotewipe-csp.md) (**doWipe** and **doWipePersistProvisionedData** nodes only)  | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>4</sup>       | ![check mark](images/checkmark.png) |
-| [RootCATrustedCertificates CSP](rootcacertificates-csp.md)   | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [RootCATrustedCertificates CSP](rootcacertificates-csp.md)   | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [TenantLockdown CSP](tenantlockdown-csp.md) | ![cross mark](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>10</sup>  |
+| [TenantLockdown CSP](tenantlockdown-csp.md) | ![cross mark.](images/crossmark.png) | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png) <sup>10</sup>  |
-| [Update CSP](update-csp.md)     | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [Update CSP](update-csp.md)     | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [VPNv2 CSP](vpnv2-csp.md)    | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [VPNv2 CSP](vpnv2-csp.md)    | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [WiFi CSP](wifi-csp.md)     | ![cross mark](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
+| [WiFi CSP](wifi-csp.md)     | ![cross mark.](images/crossmark.png) | ![check mark](images/checkmark.png)       | ![check mark](images/checkmark.png) |
-| [WindowsLicensing CSP](windowslicensing-csp.md)   | ![check mark](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![cross mark](images/crossmark.png) |
+| [WindowsLicensing CSP](windowslicensing-csp.md)   | ![check mark.](images/checkmark.png) | ![check mark](images/checkmark.png)       | ![cross mark](images/crossmark.png) |
 ## <a href="" id="surfacehubcspsupport"></a>CSPs supported in Microsoft Surface Hub
--- a/windows/client-management/mdm/device-update-management.md
+++ b/windows/client-management/mdm/device-update-management.md
@ -42,7 +42,7 @@ For more information about the CSPs, see [Update CSP](update-csp.md) and the upd
 The following diagram provides a conceptual overview of how this works:
-![mobile device update management](images/mdm-update-sync.png)
+![mobile device update management.](images/mdm-update-sync.png)
 The diagram can be roughly divided into three areas:
@ -56,7 +56,7 @@ The Microsoft Update Catalog is huge and contains many updates that are not need
 This section describes how this is done. The following diagram shows the server-server sync protocol process.
-![mdm server-server sync](images/deviceupdateprocess2.png)
+![mdm server-server sync.](images/deviceupdateprocess2.png)
 MSDN provides much information about the Server-Server sync protocol. In particular:
@ -140,7 +140,7 @@ The enterprise IT can configure auto-update polices via OMA DM using the [Policy
 The following diagram shows the Update policies in a tree format.
-![update policies](images/update-policies.png)
+![update policies.](images/update-policies.png)
 <a href="" id="update-activehoursend"></a>**Update/ActiveHoursEnd**
 > [!NOTE]
@ -676,7 +676,7 @@ Example
 The enterprise IT can configure the set of approved updates and get compliance status via OMA DM using the [Update CSP](update-csp.md). The following diagram shows the Update CSP in tree format..
-![provisioning csp update](images/provisioning-csp-update.png)
+![provisioning csp update.](images/provisioning-csp-update.png)
 <a href="" id="update"></a>**Update**
 The root node.
@ -889,9 +889,9 @@ Here is the list of older policies that are still supported for backward compati
 The following screenshots of the administrator console show the list of update titles, approval status, and additional metadata fields.
-![mdm update management screenshot](images/deviceupdatescreenshot1.png)
+![mdm update management screenshot.](images/deviceupdatescreenshot1.png)
-![mdm update management metadata screenshot](images/deviceupdatescreenshot2.png)
+![mdm update management metadata screenshot.](images/deviceupdatescreenshot2.png)
 ## <a href="" id="syncmlexample"></a>SyncML example
@ -945,5 +945,5 @@ Set auto update to notify and defer.
 The following diagram and screenshots show the process flow of the device update process using Windows Server Update Services and Microsoft Update Catalog.
-![mdm device update management screenshot3](images/deviceupdatescreenshot3.png)![mdm device update management screenshot4](images/deviceupdatescreenshot4.png)![mdm device update management screenshot5](images/deviceupdatescreenshot5.png)![mdm device update management screenshot6](images/deviceupdatescreenshot6.png)![mdm device update management screenshot7](images/deviceupdatescreenshot7.png)![mdm device update management screenshot8](images/deviceupdatescreenshot8.png)![mdm device update management screenshot9](images/deviceupdatescreenshot9.png)
+![mdm device update management screenshot3.](images/deviceupdatescreenshot3.png)![mdm device update management screenshot4](images/deviceupdatescreenshot4.png)![mdm device update management screenshot5](images/deviceupdatescreenshot5.png)![mdm device update management screenshot6](images/deviceupdatescreenshot6.png)![mdm device update management screenshot7](images/deviceupdatescreenshot7.png)![mdm device update management screenshot8](images/deviceupdatescreenshot8.png)![mdm device update management screenshot9](images/deviceupdatescreenshot9.png)
--- a/windows/client-management/mdm/deviceinstanceservice-csp.md
+++ b/windows/client-management/mdm/deviceinstanceservice-csp.md
@ -26,7 +26,7 @@ The DeviceInstance CSP is only supported in Windows 10 Mobile.
 The following diagram shows the DeviceInstanceService configuration service provider in tree format.
-![provisioning\-csp\-deviceinstanceservice](images/provisioning-csp-deviceinstanceservice.png)
+![provisioning\-csp\-deviceinstanceservice.](images/provisioning-csp-deviceinstanceservice.png)
 <a href="" id="roaming"></a>**Roaming**  
 A boolean value that specifies the roaming status of the device. In dual SIM mode when the device supports two different phone numbers, querying SIM 1 explicitly with ./Vendor/MSFT/DeviceInstanceService/Identify1/Roaming is functionally equivalent to using ./Vendor/MSFT/DeviceInstanceService/Roaming.
--- a/windows/client-management/mdm/devicelock-csp.md
+++ b/windows/client-management/mdm/devicelock-csp.md
@ -32,7 +32,7 @@ The DevicePasswordEnabled setting must be set to 0 (device password is enabled)
 The following image shows the DeviceLock configuration service provider in tree format.
-![devicelock csp](images/provisioning-csp-devicelock.png)
+![devicelock csp.](images/provisioning-csp-devicelock.png)
 <a href="" id="provider"></a>**Provider**  
 Required. An interior node to group all policy providers. Scope is permanent. Supported operation is Get.
--- a/windows/client-management/mdm/diagnose-mdm-failures-in-windows-10.md
+++ b/windows/client-management/mdm/diagnose-mdm-failures-in-windows-10.md
@ -20,13 +20,13 @@ To help diagnose enrollment or device management issues in Windows 10 devices m
 1. On your managed device go to **Settings** > **Accounts** > **Access work or school**.
 1. Click your work or school account, then click **Info.**  
-   ![Access work or school page in Settings](images/diagnose-mdm-failures15.png)
+   ![Access work or school page in Settings.](images/diagnose-mdm-failures15.png)
 1. At the bottom of the **Settings** page, click **Create report**.  
-   ![Access work or school page and then Create report](images/diagnose-mdm-failures16.png)
+   ![Access work or school page and then Create report.](images/diagnose-mdm-failures16.png)
 1. A window opens that shows the path to the log files. Click **Export**.
-   ![Access work or school log files](images/diagnose-mdm-failures17.png)
+   ![Access work or school log files.](images/diagnose-mdm-failures17.png)
 1. In File Explorer, navigate to c:\Users\Public\Documents\MDMDiagnostics to see the report.
@ -59,7 +59,7 @@ Starting with the Windows 10, version 1511, MDM logs are captured in the Event
 Here's a screenshot:
-![mdm event viewer](images/diagnose-mdm-failures1.png)
+![mdm event viewer.](images/diagnose-mdm-failures1.png)
 In this location, the **Admin** channel logs events by default. However, if you need more details logs you can enable **Debug** logs by choosing **Show Analytic and Debug** logs option in **View** menu in Event Viewer.
@ -238,26 +238,26 @@ For best results, ensure that the PC or VM on which you are viewing logs matches
 1.  Open eventvwr.msc.
 2.  Right-click on **Event Viewer(Local)** and select **Open Saved Log**.
-    ![event viewer screenshot](images/diagnose-mdm-failures9.png)
+    ![event viewer screenshot.](images/diagnose-mdm-failures9.png)
 3.  Navigate to the etl file that you got from the device and then open the file.
 4.  Click **Yes** when prompted to save it to the new log format.
-    ![event viewer prompt](images/diagnose-mdm-failures10.png)
+    ![event viewer prompt.](images/diagnose-mdm-failures10.png)
-    ![diagnose mdm failures](images/diagnose-mdm-failures11.png)
+    ![diagnose mdm failures.](images/diagnose-mdm-failures11.png)
 5.  The new view contains traces from the channel. Click on **Filter Current Log** from the **Actions** menu.
-    ![event viewer actions](images/diagnose-mdm-failures12.png)
+    ![event viewer actions.](images/diagnose-mdm-failures12.png)
 6.  Add a filter to Event sources by selecting **DeviceManagement-EnterpriseDiagnostics-Provider** and click **OK**.
-    ![event filter for Device Management](images/diagnose-mdm-failures13.png)
+    ![event filter for Device Management.](images/diagnose-mdm-failures13.png)
 7.  Now you are ready to start reviewing the logs.
-    ![event viewer review logs](images/diagnose-mdm-failures14.png)
+    ![event viewer review logs.](images/diagnose-mdm-failures14.png)
 ## Collect device state data
--- a/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md
+++ b/windows/client-management/mdm/disconnecting-from-mdm-unenrollment.md
@ -137,7 +137,7 @@ You can only use the Work Access page to unenroll under the following conditions
 When a user is enrolled into MDM through Azure Active Directory Join and then disconnects the enrollment, there is no warning that the user will lose Windows Information Protection (WIP) data. The disconnection message does not indicate the loss of WIP data.
-![aadj unenerollment](images/azure-ad-unenrollment.png)
+![aadj unenerollment.](images/azure-ad-unenrollment.png)
 When a device is enrolled into MDM through Azure Active Directory Join and then remotely unenrolled, the device may get into a state where it must be re-imaged. When devices are remotely unenrolled from MDM, the AAD association is also removed. This safeguard is in place to avoid leaving the corporated devices in unmanaged state.
--- a/windows/client-management/mdm/eap-configuration.md
+++ b/windows/client-management/mdm/eap-configuration.md
@ -24,35 +24,35 @@ To get the EAP configuration from your desktop using the rasphone tool that is s
 1.  Run rasphone.exe.
-    ![vpnv2 rasphone](images/vpnv2-csp-rasphone.png)
+    ![vpnv2 rasphone.](images/vpnv2-csp-rasphone.png)
 1.  If you don't currently have a VPN connection and you see the following message, select **OK**.
-    ![vpnv2 csp network connections](images/vpnv2-csp-networkconnections.png)
+    ![vpnv2 csp network connections.](images/vpnv2-csp-networkconnections.png)
 1.  In the wizard, select **Workplace network**.
-    ![vpnv2 csp set up connection](images/vpnv2-csp-setupnewconnection.png)
+    ![vpnv2 csp set up connection.](images/vpnv2-csp-setupnewconnection.png)
 1.  Enter an Internet address and connection name. These can be fake since it does not impact the authentication parameters.
-    ![vpnv2 csp set up connection 2](images/vpnv2-csp-setupnewconnection2.png)
+    ![vpnv2 csp set up connection 2.](images/vpnv2-csp-setupnewconnection2.png)
 1.  Create a fake VPN connection. In the UI shown here, select **Properties**.
-    ![vpnv2 csp choose nw connection](images/vpnv2-csp-choosenetworkconnection.png)
+    ![vpnv2 csp choose nw connection.](images/vpnv2-csp-choosenetworkconnection.png)
 1.  In the **Test Properties** dialog, select the **Security** tab.
-    ![vpnv2 csp test props](images/vpnv2-csp-testproperties.png)
+    ![vpnv2 csp test props.](images/vpnv2-csp-testproperties.png)
 1.  On the **Security** tab, select **Use Extensible Authentication Protocol (EAP)**.
-    ![vpnv2 csp test props2](images/vpnv2-csp-testproperties2.png)
+    ![vpnv2 csp test props2.](images/vpnv2-csp-testproperties2.png)
 1.  From the drop-down menu, select the EAP method that you want to configure, and then select **Properties** to configure as needed.
-    ![vpnv2 csp test props3](images/vpnv2-csp-testproperties3.png)![vpnv2 csp test props4](images/vpnv2-csp-testproperties4.png)
+    ![vpnv2 csp test props3.](images/vpnv2-csp-testproperties3.png)![vpnv2 csp test props4](images/vpnv2-csp-testproperties4.png)
 1.  Switch over to PowerShell and use the following cmdlets to retrieve the EAP configuration XML.
@ -267,7 +267,7 @@ Alternatively, you can use the following procedure to create an EAP configuratio
 1.  Follow steps 1 through 7 in the EAP configuration article.
 1.  In the **Microsoft VPN SelfHost Properties** dialog box, select **Microsoft: Smart Card or other Certificate** from the drop-down menu (this selects EAP TLS).
-    ![vpn self host properties window](images/certfiltering1.png)
+    ![vpn self host properties window.](images/certfiltering1.png)
    > [!NOTE]
    > For PEAP or TTLS, select the appropriate method and continue following this procedure.
@ -277,11 +277,11 @@ Alternatively, you can use the following procedure to create an EAP configuratio
 1.  Select the **Properties** button underneath the drop-down menu.
 1.  On the **Smart Card or other Certificate Properties** menu, select the **Advanced** button.
-    ![smart card or other certificate properties window](images/certfiltering2.png)
+    ![smart card or other certificate properties window.](images/certfiltering2.png)
 1.  On the **Configure Certificate Selection** menu, adjust the filters as needed.
-    ![configure certificate window](images/certfiltering3.png)
+    ![configure certificate window.](images/certfiltering3.png)
 1.  Select **OK** to close the windows and get back to the main rasphone.exe dialog box.
 1.  Close the rasphone dialog box.
--- a/windows/client-management/mdm/enable-admx-backed-policies-in-mdm.md
+++ b/windows/client-management/mdm/enable-admx-backed-policies-in-mdm.md
@ -47,19 +47,19 @@ See [Support Tip: Ingesting Office ADMX-backed policies using Microsoft Intune](
    2. Under **Best match**, click **Edit group policy** to launch it.  
-       ![GPEdit search](images/admx-gpedit-search.png)
+       ![GPEdit search.](images/admx-gpedit-search.png)
    3. In **Local Computer Policy** navigate to the policy you want to configure.  
       In this example, navigate to **Administrative Templates >  System > App-V**.
-       ![App-V policies](images/admx-appv.png)
+       ![App-V policies.](images/admx-appv.png)
    4. Double-click **Enable App-V Client**.  
       The **Options** section is empty, which means there are no parameters necessary to enable the policy. If the **Options** section is not empty, follow the procedure in [Enable a policy that requires parameters](#enable-a-policy-that-requires-parameters)
-       ![Enable App-V client](images/admx-appv-enableapp-vclient.png)
+       ![Enable App-V client.](images/admx-appv-enableapp-vclient.png)
 3.  Create the SyncML to enable the policy that does not require any parameter.  
@ -99,15 +99,15 @@ See [Support Tip: Ingesting Office ADMX-backed policies using Microsoft Intune](
   1. Double-click **Publishing Server 2 Settings** to see the parameters you need to configure when you enable this policy.
-      ![Enable publishing server 2 policy](images/admx-appv-publishingserver2.png)
+      ![Enable publishing server 2 policy.](images/admx-appv-publishingserver2.png)
-      ![Enable publishing server 2 settings](images/admx-app-v-enablepublishingserver2settings.png)
+      ![Enable publishing server 2 settings.](images/admx-app-v-enablepublishingserver2settings.png)
   2. Find the variable names of the parameters in the ADMX file.
      You can find the ADMX file name in the policy description in Policy CSP. In this example, the filename appv.admx is listed in [AppVirtualization/PublishingAllowServer2](policy-configuration-service-provider.md#appvirtualization-publishingallowserver2).
-      ![Publishing server 2 policy description](images/admx-appv-policy-description.png)
+      ![Publishing server 2 policy description.](images/admx-appv-policy-description.png)
   3. Navigate to **C:\Windows\PolicyDefinitions** (default location of the admx files) and open appv.admx.
--- a/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md
+++ b/windows/client-management/mdm/enable-offline-updates-for-windows-embedded-8-1-handheld-devices-to-windows-10.md
@ -84,7 +84,7 @@ After the upgrade to Windows 10 is complete, if you decide to push down a new we
 The following diagram shows a high-level overview of the process.
-![update process for windows embedded 8.1 devices](images/windowsembedded-update.png)
+![update process for windows embedded 8.1 devices.](images/windowsembedded-update.png)
 ## Step 1: Prepare a test device to download updates from Microsoft Update
@ -107,15 +107,15 @@ Trigger the device to check for updates either manually or using Microsoft Endpo
 1.  Remotely trigger a scan of the test device by deploying a Trigger Scan configuration baseline.
-    ![device scan using Configuration Manager](images/windowsembedded-update2.png)
+    ![device scan using Configuration Manager.](images/windowsembedded-update2.png)
 2.  Set the value of this OMA-URI by going to **Configuration Item**, and then selecting the newly created Trigger Scan settings from the previous step.
-    ![device scan using Configuration Manager](images/windowsembedded-update3.png)
+    ![device scan using Configuration Manager.](images/windowsembedded-update3.png)
 3.  Ensure that the value that is specified for this URI is greater than the value on the device(s), and that the **Remediate noncompliant rules when supported** option is selected. For the first time, any value that is greater than 0 will work, but for subsequent configurations, ensure that you specify an incremented value.
-    ![device scan using Configuration Manager](images/windowsembedded-update4.png)
+    ![device scan using Configuration Manager.](images/windowsembedded-update4.png)
 4.  Create a configuration baseline for Trigger Scan and Deploy. We recommend that this configuration baseline be deployed after the Controlled Updates baseline has been applied to the device. (The corresponding files are deployed on the device through a device sync session.)
 5.  Follow the prompts for downloading the updates, but do not install the updates on the device.
@ -216,11 +216,11 @@ The deployment process has three parts:
 1.  Create a configuration item. In the **Browse Settings** window, select **Device File** as a filter, and then select **Select**.
-    ![embedded device update](images/windowsembedded-update18.png)
+    ![embedded device update.](images/windowsembedded-update18.png)
 2.  Browse to the DUControlledUpdates.xml that was created from the test device, and then specify the file path and name on the device as `NonPersistent\DUControlledUpdates.xml`.
-    ![embedded device update](images/windowsembedded-update19.png)
+    ![embedded device update.](images/windowsembedded-update19.png)
 3.  Select **Remediate noncompliant settings**, and then select **OK**.
@ -231,7 +231,7 @@ The deployment process has three parts:
 1.  Create a configuration item and specify the file path and name on the device as `NonPersistent\DUCustomContentURIs.xml`
 2.  Select **Remediate noncompliant settings**.
-    ![embedded device update](images/windowsembedded-update21.png)
+    ![embedded device update.](images/windowsembedded-update21.png)
 3.  Select **OK**.
@ -242,11 +242,11 @@ The deployment process has three parts:
 1.  Create a configuration baseline item and give it a name (such as ControlledUpdates).
 2.  Add the DUControlledUpdates and DUCustomContentURIs configuration items, and then select **OK**.
-    ![embedded device update](images/windowsembedded-update22.png)
+    ![embedded device update.](images/windowsembedded-update22.png)
 3.  Deploy the configuration baseline to the appropriate device or device collection.
-    ![embedded device update](images/windowsembedded-update23.png)
+    ![embedded device update.](images/windowsembedded-update23.png)
 4.  Select **OK**.
@ -472,57 +472,57 @@ Use this procedure for pre-GDR1 devices:
 2.  In Microsoft Endpoint Configuration Manager, under **Assets and Compliance** > **Compliance Settings**, right-click **Configuration Items**.
 3.  Select **Create Configuration Item**.
-    ![device update using Configuration Manager](images/windowsembedded-update5.png)
+    ![device update using Configuration Manager.](images/windowsembedded-update5.png)
 4.  Enter a filename (such as GetDUReport), and then select **Mobile Device**.
 5.  On the **Mobile Device Settings** page, select **Configure Additional Settings that are not in the default settings group**, and then select **Next**.
-    ![device update using Configuration Manager](images/windowsembedded-update6.png)
+    ![device update using Configuration Manager.](images/windowsembedded-update6.png)
 6.  On the **Additional Settings** page, select **Add**.
-    ![device update using Configuration Manager](images/windowsembedded-update7.png)
+    ![device update using Configuration Manager.](images/windowsembedded-update7.png)
 7.  On the **Browse Settings** page, select **Create Setting**.
-    ![device update](images/windowsembedded-update8.png)
+    ![device update.](images/windowsembedded-update8.png)
 8.  Enter a unique **Name**. For **Setting type**, select **OMA-URI**, and for **Data type**, select **String**.
 9.  In the **OMA-URI** text box, enter `./Vendor/MSFT/EnterpriseExt/DeviceUpdate/UpdatesResultXml`, and then select **OK**.
-    ![handheld device update](images/windowsembedded-update9.png)
+    ![handheld device update.](images/windowsembedded-update9.png)
 10. On the **Browse Settings** page, select **Close**.
 11. On the **Create Configuration Item Wizard** page, select **All Windows Embedded 8.1 Handheld** as the supported platform, and then select **Next**.
-    ![embedded device update](images/windowsembedded-update10.png)
+    ![embedded device update.](images/windowsembedded-update10.png)
 12. Close the **Create Configuration Item Wizard** page.
 13. Right-click on the newly create configuration item, and then select the **Compliance Rules** tab.
 14. Select the new created mobile device setting (such as DUReport), and then select **Select**.
 15. Enter a dummy value (such as zzz) that is different from the one on the device.
-    ![embedded device update](images/windowsembedded-update11.png)
+    ![embedded device update.](images/windowsembedded-update11.png)
 16. Disable remediation by deselecting the **Remediate noncompliant rules when supported** option.
 17. Select **OK** to close the **Edit Rule** page.
 18. Create a new configuration baseline. Under **Assets and Compliance** > **Compliance Settings**, right-click **Configuration Baselines**.
 19. Select **Create Configuration Item**.
-    ![embedded device update](images/windowsembedded-update12.png)
+    ![embedded device update.](images/windowsembedded-update12.png)
 20. Enter a baseline name (such as RetrieveDUReport).
 21. Add the configuration item that you just created. Select **Add**, and then select the configuration item that you just created (such as DUReport).
-    ![embedded device update](images/windowsembedded-update13.png)
+    ![embedded device update.](images/windowsembedded-update13.png)
 22. Select **OK**, and then select **OK** again to complete the configuration baseline.
 23. Deploy the newly created configuration baseline to the appropriate device collection. Right-click on the configuration baseline that you created, and then select **Deploy**.
-    ![embedded device update](images/windowsembedded-update14.png)
+    ![embedded device update.](images/windowsembedded-update14.png)
 24. Select **Remediate noncompliant rules when supported**.
 25. Select the appropriate device collection and define the schedule.
-    ![device update](images/windowsembedded-update15.png)
+    ![device update.](images/windowsembedded-update15.png)
 26. To view the DUReport content, select the appropriate deployment for the configuration baseline that you created. Right-click on the deployment, and then select **View Status**.
 27. Select **Run Summarization**, and then select **Refresh**. The test device(s) should be listed on the **Non-Compliant** tab.
 28. Under **Asset Details**, right-click on the test device, and then select **Mode Details**.
-    ![device update](images/windowsembedded-update16.png)
+    ![device update.](images/windowsembedded-update16.png)
 29. On the **Non-compliant** tab, you can see the DUReport, but you cannot retrieve the content from here.
-    ![device update](images/windowsembedded-update17.png)
+    ![device update.](images/windowsembedded-update17.png)
 30. To retrieve the DUReport, open C:\\Program Files\\SMS\_CCM\\SMS\_DM.log.
 31. In the log file, search from the bottom for "./Vendor/MSFT/EnterpriseExt/DeviceUpdate/UpdatesResultXml" RuleExression="Equals zzz," where zzz is the dummy value. Just above this, copy the information for UpdateData and use this information to create the DUControlledUpdates.xml.
--- a/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy.md
+++ b/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy.md
@ -46,11 +46,11 @@ To ensure that the auto-enrollment feature is working as expected, you must veri
 The following steps demonstrate required settings using the Intune service:
 1. Verify that the user who is going to enroll the device has a valid Intune license.
-    ![Intune license verification](images/auto-enrollment-intune-license-verification.png)
+    ![Intune license verification.](images/auto-enrollment-intune-license-verification.png)
 2. Verify that auto-enrollment is activated for those users who are going to enroll the devices into Intune. For additional details, see [Azure AD and Microsoft Intune: Automatic MDM enrollment in the new Portal](./azure-ad-and-microsoft-intune-automatic-mdm-enrollment-in-the-new-portal.md).
-    ![Auto-enrollment activation verification](images/auto-enrollment-activation-verification.png)
+    ![Auto-enrollment activation verification.](images/auto-enrollment-activation-verification.png)
    > [!IMPORTANT]
    > For BYOD devices, the MAM user scope takes precedence if both MAM user scope and MDM user scope (automatic MDM enrollment) are enabled for all users (or the same groups of users). The device will use Windows Information Protection (WIP) Policies (if you configured them) rather than being MDM enrolled.
@ -62,23 +62,23 @@ The following steps demonstrate required settings using the Intune service:
    You can confirm that the device is properly hybrid-joined if both **AzureAdJoined** and **DomainJoined** are set to **YES**.
-    ![Auto-enrollment device status result](images/auto-enrollment-device-status-result.png)
+    ![Auto-enrollment device status result.](images/auto-enrollment-device-status-result.png)
    Additionally, verify that the SSO State section displays **AzureAdPrt** as **YES**.
-    ![Auto-enrollment Azure AD prt verification](images/auto-enrollment-azureadprt-verification.png)
+    ![Auto-enrollment Azure AD prt verification.](images/auto-enrollment-azureadprt-verification.png)
    This information can also be found on the Azure AD device list.
-    ![Azure AD device list](images/azure-ad-device-list.png)
+    ![Azure AD device list.](images/azure-ad-device-list.png)
 5. Verify that the MDM discovery URL during auto-enrollment is https://enrollment.manage.microsoft.com/enrollmentserver/discovery.svc
-    ![MDM discovery URL](images/auto-enrollment-mdm-discovery-url.png)
+    ![MDM discovery URL.](images/auto-enrollment-mdm-discovery-url.png)
 6. Some tenants might have both **Microsoft Intune** and **Microsoft Intune Enrollment** under **Mobility**. Make sure that your auto-enrollment settings are configured under **Microsoft Intune** instead of **Microsoft Intune Enrollment**.
-    ![Mobility setting MDM intune](images/auto-enrollment-microsoft-intune-setting.png)
+    ![Mobility setting MDM intune.](images/auto-enrollment-microsoft-intune-setting.png)
 7. Verify that the *Enable Automatic MDM enrollment using default Azure AD credentials* group policy (**Local Group Policy Editor > Computer Configuration > Policies > Administrative Templates > Windows Components > MDM**) is properly deployed to all devices which should be enrolled into Intune.
 You may contact your domain administrators to verify if the group policy has been deployed successfully.
@ -87,7 +87,7 @@ You may contact your domain administrators to verify if the group policy has bee
 9. Verify that Microsoft Intune should allow enrollment of Windows devices.
-    ![Enrollment of Windows devices](images/auto-enrollment-enrollment-of-windows-devices.png)
+    ![Enrollment of Windows devices.](images/auto-enrollment-enrollment-of-windows-devices.png)
 ## Configure the auto-enrollment Group Policy for a single PC
@ -102,18 +102,18 @@ Requirements:
    Click Start, then in the text box type gpedit.
-    ![GPEdit desktop app search result](images/autoenrollment-gpedit.png)
+    ![GPEdit desktop app search result.](images/autoenrollment-gpedit.png)
 2. Under **Best match**, click **Edit group policy** to launch it.
 3. In **Local Computer Policy**, click **Administrative Templates** > **Windows Components** > **MDM**.
    > [!div class="mx-imgBorder"]
-    > ![MDM policies](images/autoenrollment-mdm-policies.png)
+    > ![MDM policies.](images/autoenrollment-mdm-policies.png)
 4. Double-click **Enable automatic MDM enrollment using default Azure AD credentials** (previously called **Auto MDM Enrollment with AAD Token** in Windows 10, version 1709). For ADMX files in Windows 10, version 1903 and later, select **User Credential** as the Selected Credential Type to use.
-   ![MDM autoenrollment policy](images/autoenrollment-policy.png)
+   ![MDM autoenrollment policy.](images/autoenrollment-policy.png)
 5. Click **Enable**, and select **User Credential** from the dropdown **Select Credential Type to Use**, then click **OK**.
@ -129,7 +129,7 @@ Requirements:
    If two-factor authentication is required, you will be prompted to complete the process. Here is an example screenshot.
-    ![Two-factor authentication notification](images/autoenrollment-2-factor-auth.png)
+    ![Two-factor authentication notification.](images/autoenrollment-2-factor-auth.png)
    > [!Tip]
    > You can avoid this behavior by using Conditional Access Policies in Azure AD.
@ -139,7 +139,7 @@ Requirements:
 7. Click **Info** to see the MDM enrollment information.
-    ![Work School Settings](images/autoenrollment-settings-work-school.png)
+    ![Work School Settings.](images/autoenrollment-settings-work-school.png)
    If you do not see the **Info** button or the enrollment information, it is possible that the enrollment failed. Check the status in [Task Scheduler app](#task-scheduler-app).
@ -148,13 +148,13 @@ Requirements:
 1. Click **Start**, then in the text box type **task scheduler**.
-   ![Task Scheduler search result](images/autoenrollment-task-schedulerapp.png)
+   ![Task Scheduler search result.](images/autoenrollment-task-schedulerapp.png)
 2. Under **Best match**, click **Task Scheduler** to launch it.
 3. In **Task Scheduler Library**, open **Microsoft > Windows** , then click **EnterpriseMgmt**.
-    ![Auto-enrollment scheduled task](images/autoenrollment-scheduled-task.png)
+    ![Auto-enrollment scheduled task.](images/autoenrollment-scheduled-task.png)
    To see the result of the task, move the scroll bar to the right to see the **Last Run Result**. Note that **0x80180026** is a failure message (MENROLL\_E_DEVICE\_MANAGEMENT_BLOCKED). You can see the logs in the **History** tab.
@ -239,13 +239,13 @@ To collect Event Viewer logs:
 3. Search for event ID 75, which represents a successful auto-enrollment. Here is an example screenshot that shows the auto-enrollment completed successfully:
-    ![Event ID 75](images/auto-enrollment-troubleshooting-event-id-75.png)
+    ![Event ID 75.](images/auto-enrollment-troubleshooting-event-id-75.png)
    If you cannot find event ID 75 in the logs, it indicates that the auto-enrollment failed. This can happen because of the following reasons:
    - The enrollment failed with error. In this case, search for event ID 76, which represents failed auto-enrollment. Here is an example screenshot that shows that the auto-enrollment failed:
-      ![Event ID 76](images/auto-enrollment-troubleshooting-event-id-76.png)
+      ![Event ID 76.](images/auto-enrollment-troubleshooting-event-id-76.png)
      To troubleshoot, check the error code that appears in the event. See [Troubleshooting Windows device enrollment problems in Microsoft Intune](https://support.microsoft.com/en-ph/help/4469913/troubleshooting-windows-device-enrollment-problems-in-microsoft-intune) for more information.
@ -253,7 +253,7 @@ To collect Event Viewer logs:
      The auto-enrollment process is triggered by a task (**Microsoft > Windows > EnterpriseMgmt**) within the task-scheduler. This task appears if the *Enable automatic MDM enrollment using default Azure AD credentials* group policy (**Computer Configuration > Policies > Administrative Templates > Windows Components > MDM**) is successfully deployed to the target machine as shown in the following screenshot:
-      ![Task scheduler](images/auto-enrollment-task-scheduler.png)
+      ![Task scheduler.](images/auto-enrollment-task-scheduler.png)
    > [!Note]
    > This task isn't visible to standard users - run Scheduled Tasks with administrative credentials to find the task.
@ -262,24 +262,24 @@ To collect Event Viewer logs:
    **Applications and Services Logs > Microsoft > Windows > Task Scheduler > Operational**.
    Look for an entry where the task scheduler created by enrollment client for automatically enrolling in MDM from AAD is triggered by event ID 107.
-    ![Event ID 107](images/auto-enrollment-event-id-107.png)
+    ![Event ID 107.](images/auto-enrollment-event-id-107.png)
    When the task is completed, a new event ID 102 is logged.
-    ![Event ID 102](images/auto-enrollment-event-id-102.png)
+    ![Event ID 102.](images/auto-enrollment-event-id-102.png)
    Note that the task scheduler log displays event ID 102 (task completed) regardless of the auto-enrollment success or failure. This means that the task scheduler log is only useful to confirm if the auto-enrollment task is triggered or not. It does not indicate the success or failure of auto-enrollment.
    If you cannot see from the log that task Schedule created by enrollment client for automatically enrolling in MDM from AAD is initiated, there is possibly issue with the group policy. Immediately run the command `gpupdate /force` in command prompt to get the GPO applied. If this still does not help, further troubleshooting on the Active Directory is required.
    One frequently seen error is related to some outdated enrollment entries in the registry on the target client device (**HKLM > Software > Microsoft > Enrollments**). If a device has been enrolled (can be any MDM solution and not only Intune), some enrollment information added into the registry is seen:
-    ![Outdated enrollment entries](images/auto-enrollment-outdated-enrollment-entries.png)
+    ![Outdated enrollment entries.](images/auto-enrollment-outdated-enrollment-entries.png)
    By default, these entries are removed when the device is un-enrolled, but occasionally the registry key remains even after un-enrollment. In this case, `gpupdate /force` fails to initiate the auto-enrollment task and error code 2149056522 is displayed in the **Applications and Services Logs > Microsoft > Windows > Task Scheduler > Operational** event log file under event ID 7016.
    A resolution to this issue is to remove the registry key manually. If you do not know which registry key to remove, go for the key which displays most entries as the screenshot above. All other keys will display fewer entries as shown in the following screenshot:
-    ![Manually deleted entries](images/auto-enrollment-activation-verification-less-entries.png)
+    ![Manually deleted entries.](images/auto-enrollment-activation-verification-less-entries.png)
 ### Related topics
--- a/windows/client-management/mdm/enterprise-app-management.md
+++ b/windows/client-management/mdm/enterprise-app-management.md
@ -41,7 +41,7 @@ These classifications are represented as nodes in the EnterpriseModernAppManagem
 The following diagram shows the EnterpriseModernAppManagement CSP in a tree format.
-![enterprisemodernappmanagement csp diagram](images/provisioning-csp-enterprisemodernappmanagement.png)
+![enterprisemodernappmanagement csp diagram.](images/provisioning-csp-enterprisemodernappmanagement.png)
 Each app displays one package family name and 1-n package full names for installed apps. The apps are categorized based on their origin (Store, nonStore, System).
--- a/windows/client-management/mdm/enterpriseappmanagement-csp.md
+++ b/windows/client-management/mdm/enterpriseappmanagement-csp.md
@ -23,7 +23,7 @@ The EnterpriseAppManagement enterprise configuration service provider is used to
 The following diagram shows the EnterpriseAppManagement configuration service provider in tree format.
-![enterpriseappmanagement csp](images/provisioning-csp-enterpriseappmanagement.png)
+![enterpriseappmanagement csp.](images/provisioning-csp-enterpriseappmanagement.png)
 <a href="" id="enterpriseid"></a>***EnterpriseID***
 Optional. A dynamic node that represents the EnterpriseID as a GUID. It is used to enroll or unenroll enterprise applications.
--- a/windows/client-management/mdm/filesystem-csp.md
+++ b/windows/client-management/mdm/filesystem-csp.md
@ -24,7 +24,7 @@ The FileSystem configuration service provider is used to query, add, modify, and
 The following diagram shows the FileSystem configuration service provider management object in tree format as used by OMA DM. The OMA Client Provisioning protocol is not supported by this configuration service provider.
-![filesystem csp (dm)](images/provisioning-csp-filesystem-dm.png)
+![filesystem csp (dm).](images/provisioning-csp-filesystem-dm.png)
 <a href="" id="filesystem"></a>**FileSystem**
 Required. Defines the root of the file system management object. It functions as the root directory for file system queries.
--- a/windows/client-management/mdm/healthattestation-csp.md
+++ b/windows/client-management/mdm/healthattestation-csp.md
@ -104,7 +104,7 @@ The following is a list of functions performed by the Device HealthAttestation C
 - Receives an encrypted blob (DHA-EncBlob) from DHA-Service, and stores it in a local cache on the device</li>
 - Receives attestation requests (DHA-Requests) from a DHA-Enabled-MDM, and replies with a device health report (DHA-Report)</li>
-![healthattestation service diagram](images/healthattestation_2.png)
+![healthattestation service diagram.](images/healthattestation_2.png)
 <table> 
 <col width="20%" />
--- a/windows/client-management/mdm/hotspot-csp.md
+++ b/windows/client-management/mdm/hotspot-csp.md
@ -27,7 +27,7 @@ The HotSpot configuration service provider is used to configure and enable Inter
 The following diagram shows the HotSpot configuration service provider management object in tree format as used by OMA Client Provisioning. The OMA DM protocol is not supported by this configuration service provider.
-![hotspot csp (cp)](images/provisioning-csp-hotspot-cp.png)
+![hotspot csp (cp).](images/provisioning-csp-hotspot-cp.png)
 <a href="" id="enabled"></a>**Enabled**
 Required. Specifies whether to enable Internet sharing on the device. The default is false.
--- a/windows/client-management/mdm/implement-server-side-mobile-application-management.md
+++ b/windows/client-management/mdm/implement-server-side-mobile-application-management.md
@ -44,7 +44,7 @@ To make applications WIP-aware, app developers need to include the following dat
 MAM enrollment requires integration with Azure AD. The MAM service provider needs to publish the Management MDM app to the Azure AD app gallery. Starting with Azure AD in Windows 10, version 1703, the same cloud-based Management MDM app will support both MDM and MAM enrollments. If you have already published your MDM app, it needs to be updated to include MAM Enrollment and Terms of use URLs. The screenshot below illustrates the management app for an IT admin configuration.  
-![Mobile application management app](images/implement-server-side-mobile-application-management.png)
+![Mobile application management app.](images/implement-server-side-mobile-application-management.png)
 MAM and MDM services in an organization could be provided by different vendors. Depending on the company configuration, IT admin typically needs to add one or two Azure AD Management apps to configure MAM and MDM policies. For example, if both MAM and MDM are provided by the same vendor, then an IT Admin needs to add one Management app from this vendor that will contain both MAM and MDM policies for the organization. Alternatively, if the MAM and MDM services in an organization are provided by two different vendors, then two Management apps from the two vendors need to be configured for the company in Azure AD: one for MAM and one for MDM. Please note: if the MDM service in an organization is not integrated with Azure AD and uses auto-discovery, only one Management app for MAM needs to be configured.  
--- a/windows/client-management/mdm/management-tool-for-windows-store-for-business.md
+++ b/windows/client-management/mdm/management-tool-for-windows-store-for-business.md
@ -59,13 +59,13 @@ The Store for Business provides services that enable a management tool to synchr
 The following diagram provides an overview of app distribution from acquisition of an offline-licensed application to distribution to a client. Once synchronized from the Store for Business, the management tool can use the Windows management framework to distribute applications to devices.
-![business store offline app distribution](images/businessstoreportalservices2.png)
+![business store offline app distribution.](images/businessstoreportalservices2.png)
 ### Online-licensed application distribution
 The following diagram provides an overview of app distribution from acquisition of an online-licensed application to distribution to a client. Once synchronized from the Store for Business, the management tool can use the Windows management framework to distribute applications to devices. For online-licensed applications, the management tool calls back into the Store for Business management services to assign an application prior to issuing the policy to install the application.
-![business store online app distribution](images/businessstoreportalservices3.png)
+![business store online app distribution.](images/businessstoreportalservices3.png)
 ## Integrate with Azure Active Directory
@ -105,7 +105,7 @@ After registering your management tool with Azure AD, the management tool can ca
 The diagram below shows the call patterns for acquiring a new or updated application.
-![business store portal service flow diagram](images/businessstoreportalservicesflow.png)
+![business store portal service flow diagram.](images/businessstoreportalservicesflow.png)
 **Here is the list of available operations**:
--- a/windows/client-management/mdm/mdm-enrollment-of-windows-devices.md
+++ b/windows/client-management/mdm/mdm-enrollment-of-windows-devices.md
@ -25,7 +25,7 @@ In today’s cloud-first world, enterprise IT departments increasingly want to l
 You can connect corporate-owned devices to work by either joining the device to an Active Directory domain, or to an Azure Active Directory (Azure AD) domain. Windows 10 does not require a personal Microsoft account on devices joined to Azure AD or an on-premises Active Directory domain.
-![active directory azure ad signin](images/unifiedenrollment-rs1-1.png)
+![active directory azure ad signin.](images/unifiedenrollment-rs1-1.png)
 ### Connect your device to an Active Directory domain (join a domain)
@ -40,15 +40,15 @@ Joining your device to an Active Directory domain during the out-of-box-experien
 1.  On the **Who Owns this PC?** page, select **My work or school owns it**.
-    ![oobe local account creation](images/unifiedenrollment-rs1-2.png)
+    ![oobe local account creation.](images/unifiedenrollment-rs1-2.png)
 2.  Next, select **Join a domain**.
-    ![select domain or azure ad](images/unifiedenrollment-rs1-3.png)
+    ![select domain or azure ad.](images/unifiedenrollment-rs1-3.png)
 3.  You'll see a prompt to set up a local account on the device. Enter your local account details, and then select **Next** to continue.
-    ![create pc account](images/unifiedenrollment-rs1-4.png)
+    ![create pc account.](images/unifiedenrollment-rs1-4.png)
 ### Use the Settings app
@ -56,27 +56,27 @@ To create a local account and connect the device:
 1.  Launch the Settings app.
-    ![windows settings page](images/unifiedenrollment-rs1-5.png)
+    ![windows settings page.](images/unifiedenrollment-rs1-5.png)
 2.  Next, select **Accounts**.
-    ![windows settings accounts select](images/unifiedenrollment-rs1-6.png)
+    ![windows settings accounts select.](images/unifiedenrollment-rs1-6.png)
 3.  Navigate to **Access work or school**.
-    ![select access work or school](images/unifiedenrollment-rs1-7.png)
+    ![select access work or school.](images/unifiedenrollment-rs1-7.png)
 4.  Select **Connect**.
-    ![connect to work or school](images/unifiedenrollment-rs1-8.png)
+    ![connect to work or school.](images/unifiedenrollment-rs1-8.png)
 5.  Under **Alternate actions**, select **Join this device to a local Active Directory domain**.
-    ![join account to active directory domain](images/unifiedenrollment-rs1-9.png)
+    ![join account to active directory domain.](images/unifiedenrollment-rs1-9.png)
 6.  Type in your domain name, follow the instructions, and then select **Next** to continue. After you complete the flow and restart your device, it should be connected to your Active Directory domain. You can now sign in to the device using your domain credentials.
-    ![type in domain name](images/unifiedenrollment-rs1-10.png)
+    ![type in domain name.](images/unifiedenrollment-rs1-10.png)
 ### Help with connecting to an Active Directory domain
@ -101,11 +101,11 @@ To join a domain:
 1.  Select **My work or school owns it**, then select **Next.**
-    ![oobe local account creation](images/unifiedenrollment-rs1-11.png)
+    ![oobe local account creation.](images/unifiedenrollment-rs1-11.png)
 2.  Select **Join Azure AD**, and then select **Next.**
-    ![select domain or azure ad](images/unifiedenrollment-rs1-12.png)
+    ![select domain or azure ad.](images/unifiedenrollment-rs1-12.png)
 3.  Type in your Azure AD username. This is the email address you use to log into Microsoft Office 365 and similar services.
@ -113,7 +113,7 @@ To join a domain:
    Based on IT policy, you may also be prompted to provide a second factor of authentication at this point. If your Azure AD tenant has auto-enrollment configured, your device will also be enrolled into MDM during this flow. For more information, see [these steps](azure-ad-and-microsoft-intune-automatic-mdm-enrollment-in-the-new-portal.md). If your tenant is not configured for auto-enrollment, you will have to go through the enrollment flow a second time to connect your device to MDM. After you complete the flow, your device will be connected to your organization’s Azure AD domain.
-    ![azure ad signin](images/unifiedenrollment-rs1-13.png)
+    ![azure ad signin.](images/unifiedenrollment-rs1-13.png)
 ### Use the Settings app
@ -121,27 +121,27 @@ To create a local account and connect the device:
 1.  Launch the Settings app.
-    ![windows settings page](images/unifiedenrollment-rs1-14.png)
+    ![windows settings page.](images/unifiedenrollment-rs1-14.png)
 2.  Next, navigate to **Accounts**.
-    ![windows settings accounts select](images/unifiedenrollment-rs1-15.png)
+    ![windows settings accounts select.](images/unifiedenrollment-rs1-15.png)
 3.  Navigate to **Access work or school**.
-    ![select access work or school](images/unifiedenrollment-rs1-16.png)
+    ![select access work or school.](images/unifiedenrollment-rs1-16.png)
 4.  Select **Connect**.
-    ![connect to work or school](images/unifiedenrollment-rs1-17.png)
+    ![connect to work or school.](images/unifiedenrollment-rs1-17.png)
 5.  Under **Alternate Actions**, selct **Join this device to Azure Active Directory**.
-    ![join work or school account to azure ad](images/unifiedenrollment-rs1-18.png)
+    ![join work or school account to azure ad.](images/unifiedenrollment-rs1-18.png)
 6.  Type in your Azure AD username. This is the email address you use to log into Office 365 and similar services.
-    ![azure ad sign in](images/unifiedenrollment-rs1-19.png)
+    ![azure ad sign in.](images/unifiedenrollment-rs1-19.png)
 7.  If the tenant is a cloud-only, password hash sync, or pass-through authentication tenant, this page changes to show the organization's custom branding, and you can enter your password directly on this page. If the tenant is part of a federated domain, you are redirected to the organization's on-premises federation server, such as AD FS, for authentication.
@ -151,7 +151,7 @@ To create a local account and connect the device:
    After you reach the end of the flow, your device should be connected to your organization’s Azure AD domain. You may now log out of your current account and sign in using your Azure AD username.
-    ![corporate sign in](images/unifiedenrollment-rs1-20.png)
+    ![corporate sign in.](images/unifiedenrollment-rs1-20.png)
 ### Help with connecting to an Azure AD domain
@ -183,19 +183,19 @@ To create a local account and connect the device:
 1.  Launch the Settings app, and then select **Accounts** >**Start** > **Settings** > **Accounts**.
-    ![windows settings page](images/unifiedenrollment-rs1-21-b.png)
+    ![windows settings page.](images/unifiedenrollment-rs1-21-b.png)
 2.  Navigate to **Access work or school**.
-    ![select access work or school](images/unifiedenrollment-rs1-23-b.png)
+    ![select access work or school.](images/unifiedenrollment-rs1-23-b.png)
 3.  Select **Connect**.
-    ![connect to work or school](images/unifiedenrollment-rs1-24-b.png)
+    ![connect to work or school.](images/unifiedenrollment-rs1-24-b.png)
 4.  Type in your Azure AD username. This is the email address you use to log into Office 365 and similar services.
-    ![join work or school account to azure ad](images/unifiedenrollment-rs1-25-b.png)
+    ![join work or school account to azure ad.](images/unifiedenrollment-rs1-25-b.png)
 5.  If the tenant is a cloud-only, password hash sync, or pass-through authentication tenant, this page changes to show the organization's custom branding, and can enter your password directly into the page. If the tenant is part of a federated domain, you are redirected to the organization's on-premises federation server, such as AD FS, for authentication.
@ -205,11 +205,11 @@ To create a local account and connect the device:
    Starting in Windows 10, version 1709, you will see the status page that shows the progress of your device being set up.
-    ![corporate sign in](images/unifiedenrollment-rs1-26.png)
+    ![corporate sign in.](images/unifiedenrollment-rs1-26.png)
 6.  After you complete the flow, your Microsoft account will be connected to your work or school account.
-    ![account successfully added](images/unifiedenrollment-rs1-27.png)
+    ![account successfully added.](images/unifiedenrollment-rs1-27.png)
 ### Connect to MDM on a desktop (enrolling in device management)
@ -221,29 +221,29 @@ To create a local account and connect the device:
 1. Launch the Settings app.
-   ![windows settings page](images/unifiedenrollment-rs1-28.png)
+   ![windows settings page.](images/unifiedenrollment-rs1-28.png)
 2. Next, navigate to **Accounts**.
-   ![windows settings accounts page](images/unifiedenrollment-rs1-29.png)
+   ![windows settings accounts page.](images/unifiedenrollment-rs1-29.png)
 3. Navigate to **Access work or school**.
-   ![access work or school](images/unifiedenrollment-rs1-30.png)
+   ![access work or school.](images/unifiedenrollment-rs1-30.png)
 4. Select the **Enroll only in device management** link (available in servicing build 14393.82, KB3176934). For older builds, see [Connect your Windows 10-based device to work using a deep link](mdm-enrollment-of-windows-devices.md#connect-your-windows-10-based-device-to-work-using-a-deep-link).
-   ![connect to work or school](images/unifiedenrollment-rs1-31.png)
+   ![connect to work or school.](images/unifiedenrollment-rs1-31.png)
 5. Type in your work email address.
-   ![set up work or school account](images/unifiedenrollment-rs1-32.png)
+   ![set up work or school account.](images/unifiedenrollment-rs1-32.png)
 6. If the device finds an endpoint that only supports on-premises authentication, this page will change and ask you for your password. If the device finds an MDM endpoint that supports federated authentication, you’ll be presented with a new window that will ask you for additional authentication information.
   Based on IT policy, you may also be prompted to provide a second factor of authentication at this point. Starting in Windows 10, version 1709, you will see the enrollment progress on screen.
-   ![corporate sign in](images/unifiedenrollment-rs1-33-b.png)
+   ![corporate sign in.](images/unifiedenrollment-rs1-33-b.png)
   After you complete the flow, your device will be connected to your organization’s MDM.
@ -300,7 +300,7 @@ To connect your devices to MDM using deep links:
    - IT admins can add this link to a welcome email that users can select to enroll into MDM.
-      ![using enrollment deeplink in email](images/deeplinkenrollment1.png)
+      ![using enrollment deeplink in email.](images/deeplinkenrollment1.png)
    - IT admins can also add this link to an internal web page that users refer to enrollment instructions.
@ -308,20 +308,20 @@ To connect your devices to MDM using deep links:
    Type in your work email address.
-    ![set up work or school account](images/deeplinkenrollment3.png)
+    ![set up work or school account.](images/deeplinkenrollment3.png)
 3.  If the device finds an endpoint that only supports on-premises authentication, this page will change and ask you for your password. If the device finds an MDM endpoint that supports federated authentication, you’ll be presented with a new window that will ask you for additional authentication information. Based on IT policy, you may also be prompted to provide a second factor of authentication at this point.
    After you complete the flow, your device will be connected to your organization's MDM.
-    ![corporate sign in](images/deeplinkenrollment4.png)
+    ![corporate sign in.](images/deeplinkenrollment4.png)
 ## Manage connections
 To manage your work or school connections, select **Settings** > **Accounts** > **Access work or school**. Your connections will show on this page and selecting one will expand options for that connection.
-![managing work or school account](images/unifiedenrollment-rs1-34-b.png)
+![managing work or school account.](images/unifiedenrollment-rs1-34-b.png)
 ### Info
@ -335,7 +335,7 @@ Selecting the **Info** button will open a new page in the Settings app that prov
 Starting in Windows 10, version 1709, selecting the **Info** button will show a list of policies and line-of-business apps installed by your organization. Here is an example screenshot.
-![work or school info](images/unifiedenrollment-rs1-35-b.png)
+![work or school info.](images/unifiedenrollment-rs1-35-b.png)
 > [!NOTE]
 > Starting in Windows 10, version 1709, the **Manage** button is no longer available. 
@ -357,7 +357,7 @@ You can collect diagnostic logs around your work connections by going to **Setti
 Starting in Windows 10, version 1709, you can get the advanced diagnostic report by going to **Settings** > **Accounts** > **Access work or school**, and selecting the **Info** button. At the bottom of the Settings page, you will see the button to create a report, as shown here.
-![collecting enrollment management log files](images/unifiedenrollment-rs1-37-c.png)
+![collecting enrollment management log files.](images/unifiedenrollment-rs1-37-c.png)
--- a/windows/client-management/mdm/messaging-csp.md
+++ b/windows/client-management/mdm/messaging-csp.md
@ -17,7 +17,7 @@ The Messaging configuration service provider is used to configure the ability to
 The following diagram shows the Messaging configuration service provider in tree format.
-![messaging csp](images/provisioning-csp-messaging.png)
+![messaging csp.](images/provisioning-csp-messaging.png)
 <a href="" id="--user-msft-applocker"></a>**./User/Vendor/MSFT/Messaging**  
--- a/windows/client-management/mdm/mobile-device-enrollment.md
+++ b/windows/client-management/mdm/mobile-device-enrollment.md
@ -68,7 +68,7 @@ Devices that are joined to an on-premises Active Directory can enroll into MDM v
 Starting in Windows 10, version 1607, IT admin can disable MDM enrollments for domain-joined PCs using Group Policy. Using the GP editor, the path is **Computer configuration** &gt; **Administrative Templates** &gt; **Windows Components** &gt; **MDM** &gt; **Disable MDM Enrollment**.
-![Disable MDM enrollment policy in GP Editor](images/mdm-enrollment-disable-policy.png)
+![Disable MDM enrollment policy in GP Editor.](images/mdm-enrollment-disable-policy.png)
 Here is the corresponding registry key:
--- a/windows/client-management/mdm/napdef-csp.md
+++ b/windows/client-management/mdm/napdef-csp.md
@ -27,11 +27,11 @@ The NAPDEF configuration service provider is used to add, modify, or delete WAP
 The following diagram shows the NAPDEF configuration service provider management object in tree format as used by OMA Client Provisioning for **initial bootstrapping of the phone**. The OMA DM protocol is not supported by this configuration service provider.
-![napdef csp (cp) (initial bootstrapping)](images/provisioning-csp-napdef-cp.png)
+![napdef csp (cp) (initial bootstrapping).](images/provisioning-csp-napdef-cp.png)
 The following diagram shows the NAPDEF configuration service provider management object in tree format as used by OMA Client Provisioning for **updating the bootstrapping of the phone**. The OMA DM protocol is not supported by this configuration service provider.
-![napdef csp (cp) (update bootstrapping)](images/provisioning-csp-napdef-cp-2.png)
+![napdef csp (cp) (update bootstrapping).](images/provisioning-csp-napdef-cp-2.png)
 <a href="" id="napauthinfo"></a>**NAPAUTHINFO**  
 Defines a group of authentication settings.
--- a/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
+++ b/windows/client-management/mdm/new-in-windows-mdm-enrollment-management.md
@ -240,7 +240,7 @@ Passing CDATA in data in SyncML to ConfigManager and CSPs does not work in Windo
 The certificate setting under "SSL Settings" in the IIS server for SCEP must be set to "Ignore" in Windows 10. In Windows Phone 8.1, when you set the client certificate to "Accept," it works fine.
-![ssl settings](images/ssl-settings.png)
+![ssl settings.](images/ssl-settings.png)
 ### MDM enrollment fails on the mobile device when traffic is going through proxy
@ -439,7 +439,7 @@ Alternatively you can use the following procedure to create an EAP Configuration
 1.  Follow steps 1 through 7 in the [EAP configuration](eap-configuration.md) article.
 2.  In the Microsoft VPN SelfHost Properties dialog box, select **Microsoft : Smart Card or other Certificate** from the drop down (this selects EAP TLS.)
-    ![vpn selfhost properties window](images/certfiltering1.png)
+    ![vpn selfhost properties window.](images/certfiltering1.png)
    > [!NOTE]
    > For PEAP or TTLS, select the appropriate method and continue following this procedure.
@ -447,10 +447,10 @@ Alternatively you can use the following procedure to create an EAP Configuration
 3.  Click the **Properties** button underneath the drop down menu.
 4.  In the **Smart Card or other Certificate Properties** menu, select the **Advanced** button.
-    ![smart card or other certificate properties window](images/certfiltering2.png)
+    ![smart card or other certificate properties window.](images/certfiltering2.png)
 5.  In the **Configure Certificate Selection** menu, adjust the filters as needed.
-    ![configure certificate selection window](images/certfiltering3.png)
+    ![configure certificate selection window.](images/certfiltering3.png)
 6.  Click **OK** to close the windows to get back to the main rasphone.exe dialog box.
 7.  Close the rasphone dialog box.
 8.  Continue following the procedure in the [EAP configuration](eap-configuration.md) article from Step 9 to get an EAP TLS profile with appropriate filtering.
@ -492,7 +492,7 @@ No. Only one MDM is allowed.
 4.  Click **Configure**.
 5.  Set quota to unlimited.
-    ![aad maximum joined devices](images/faq-max-devices.png)
+    ![aad maximum joined devices.](images/faq-max-devices.png)
 ### **What is dmwappushsvc?**
--- a/windows/client-management/mdm/passportforwork-csp.md
+++ b/windows/client-management/mdm/passportforwork-csp.md
@ -23,13 +23,13 @@ The PassportForWork configuration service provider is used to provision Windows
 The following diagram shows the PassportForWork configuration service provider in tree format.
-![passportforwork csp](images/provisioning-csp-passportforwork.png)
+![passportforwork csp.](images/provisioning-csp-passportforwork.png)
 ### Device configuration diagram
 The following diagram shows the PassportForWork configuration service provider in tree format.
-![passportforwork diagram](images/provisioning-csp-passportforwork2.png)
+![passportforwork diagram.](images/provisioning-csp-passportforwork2.png)
 <a href="" id="passportforwork"></a>**PassportForWork**  
 Root node for PassportForWork configuration service provider.
--- a/Show More
+++ b/Show More
`@ -54,4 +54,4 @@ To change the policy for an external storage device:`

	`7. Select the policy that you want to use.`	`7. Select the policy that you want to use.`

	`![Policy options for disk management](./images/change-def-rem-policy-2.png)`	`![Policy options for disk management.](./images/change-def-rem-policy-2.png)`
`@ -14,4 +14,4 @@ ms.prod: w10`

	`Return to: [Advanced troubleshooting for Windows boot problems](advanced-troubleshooting-boot-problems.md)<br>`	`Return to: [Advanced troubleshooting for Windows boot problems](advanced-troubleshooting-boot-problems.md)<br>`

	`![Full-sized boot sequence flowchart](images/boot-sequence.png)`	`![Full-sized boot sequence flowchart.](images/boot-sequence.png)`