From f28337748aff2e2e4ebce6573cd565ed39246254 Mon Sep 17 00:00:00 2001
From: Justin Hall <Justinha@microsoft.com>
Date: Thu, 15 Mar 2018 10:38:17 -0700
Subject: [PATCH] added WDSC steps

---
 ...zation-based-protection-of-code-integrity.md | 17 +++++++++++++----
 1 file changed, 13 insertions(+), 4 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-exploit-guard/enable-virtualization-based-protection-of-code-integrity.md b/windows/security/threat-protection/windows-defender-exploit-guard/enable-virtualization-based-protection-of-code-integrity.md
index 160c8f20a1..807f81aa66 100644
--- a/windows/security/threat-protection/windows-defender-exploit-guard/enable-virtualization-based-protection-of-code-integrity.md
+++ b/windows/security/threat-protection/windows-defender-exploit-guard/enable-virtualization-based-protection-of-code-integrity.md
@@ -25,15 +25,24 @@ If this happens, see [Troubleshooting](#troubleshooting) for remediation steps.
 
 ## How to turn on HVCI in Windows 10 version 1803
 
-Beginning with Windows 10, version 1803, HVCI can be enabled using any of these options:
-- Windows Defender Security Center 
+Beginning with Windows 10, version 1803, HVCI is enabled automatically on devices that support virtualization based security (VBS). HVCI can also be enabled using any of these options:
+- [Windows Defender Security Center](#enable-hvci-using-windows-defender-security-center) 
 - [Group Policy](#enable-hvci-using-group-policy)
 - Windows Intune (or another MDM provider)
 - [System Center Configuration Manager](https://cloudblogs.microsoft.com/enterprisemobility/2015/10/30/managing-windows-10-device-guard-with-configuration-manager/) 
 
 
+### Enable HVCI using Windows Defender Security Center
+
+You can use Windows Defender Security Center to enable HVCI on a workgroup computer beginning with Windows 10, version 1803.
+
+1. Click **Start** > **Settings** > **Update & security** > **Windows Security** > **Open Windows Defender Security Center**.
+2. In Windows Defender security center, click **Device Security** > **Core isolation** > **Memory integrity**. 
+
 ### Enable HVCI using Group Policy
 
+You can use Group Policy to enable HVCI across an enterprise.
+
 1. Use Group Policy Editor (gpedit.msc) to either edit an existing GPO or create a new one.
 2. Navigate to **Computer Configuration** > **Administrative Templates** > **System** > **Device Guard**.  
 3. Double-click **Turn on Virtualization Based Security**.
@@ -41,9 +50,9 @@ Beginning with Windows 10, version 1803, HVCI can be enabled using any of these
 
    ![Enable HVCI using Group Policy](images\enable-hvci-gp.png)
 
-5. Click *Ok** to close the editor.
+5. Click **Ok** to close the editor.
 
-To apply the new policy on a domain-joined computer, either restart or run `gpupdate \force` in an elevated command prompt. 
+To apply the new policy on a domain-joined computer, either restart or run `gpupdate /force` in an elevated command prompt. 
 
 ## How to turn on HVCI in Windows 10 Fall Creators Update (version 1709)