(AzureCXP) fixes MicrosoftDocs/azure-docs#427550

PesalaPavan · web-flow · commit 0a93be0a085f · 2025-05-06T12:21:38.000+05:30
Update by adding line no: 48 - 51 with "1. Navigate to **Microsoft Intune admin center**.
2. Go to **Endpoint security &gt; Attack surface reduction**, and select **+ Create Policy**."
diff --git a/defender-endpoint/enable-controlled-folders.md b/defender-endpoint/enable-controlled-folders.md
@@ -45,6 +45,10 @@ You can enable controlled folder access by using any of these methods:
   - [PowerShell](#powershell)
   - [See also](#see-also)
 
+1. Navigate to **Microsoft Intune admin center**.
+
+2. Go to **Endpoint security > Attack surface reduction**, and select **+ Create Policy**.
+
 3. Select **Platform**, choose **Windows 10, Windows 11, and Windows Server**, and select the profile **Attack Surface Reduction rules** > **Create**.
 
 4. Name the policy and add a description. Select **Next**.
