diff --git a/ATPDocs/toc.yml b/ATPDocs/toc.yml
index 8251fd1ec2..ae91cc7a74 100644
--- a/ATPDocs/toc.yml
+++ b/ATPDocs/toc.yml
@@ -199,7 +199,7 @@ items:
          href: security-assessment-unsecure-domain-configurations.md
      - name: Certificates
        items: 
-       - name: Enforce encryption for RPC certificate enrollment interface  (ESC8)
+       - name: Enforce encryption for RPC certificate enrollment interface (ESC11)
          href: security-assessment-enforce-encryption-rpc.md
        - name: Insecure ADCS certificate enrollment IIS endpoints (ESC8)
          href: security-assessment-insecure-adcs-certificate-enrollment.md
diff --git a/defender-xdr/microsoft-secure-score-whats-new.md b/defender-xdr/microsoft-secure-score-whats-new.md
index d09c9b8c04..3b416a75dc 100644
--- a/defender-xdr/microsoft-secure-score-whats-new.md
+++ b/defender-xdr/microsoft-secure-score-whats-new.md
@@ -129,7 +129,7 @@ New Active Directory Certificate Services (ADCS) related recommendations:**
 - **Certificate authority recommended actions** :
   - [Edit vulnerable Certificate Authority setting](/defender-for-identity/security-assessment-edit-vulnerable-ca-setting)
   - [Edit misconfigured Certificate Authority ACL (ESC7)](/defender-for-identity/security-assessment-edit-misconfigured-ca-acl)
-  - [Enforce encryption for RPC certificate enrollment interface (ESC8)](/defender-for-identity/security-assessment-enforce-encryption-rpc)
+  - [Enforce encryption for RPC certificate enrollment interface (ESC11)](/defender-for-identity/security-assessment-enforce-encryption-rpc)
 
 For more information, see [Microsoft Defender for Identity's security posture assessments](/defender-for-identity/security-assessment).