From 8e1b9cb17779c1fe0a23172e0a1938ba1b8bb06f Mon Sep 17 00:00:00 2001
From: Kent 'picat' Gruber <kent@hashicorp.com>
Date: Thu, 5 Nov 2020 16:30:00 -0500
Subject: [PATCH] Add link to default_policy with code format to ACLs
 requirement section

---
 website/pages/docs/security/security-models/core.mdx | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/website/pages/docs/security/security-models/core.mdx b/website/pages/docs/security/security-models/core.mdx
index 39cc7099e..c08c14a45 100644
--- a/website/pages/docs/security/security-models/core.mdx
+++ b/website/pages/docs/security/security-models/core.mdx
@@ -143,8 +143,10 @@ environment and adapt these configurations accordingly.
 
 - **ACLs** - The access control list (ACL) system provides a capability-based control mechanism for Consul 
   administrators to define scoped, custom roles (typically within Vault) tied to an individual human, or machine 
-  operator identity. To ultimately secure the ACL system, administrators should configure the default_policy to 
-  "deny". The system is comprised of five major components:
+  operator identity. To ultimately secure the ACL system, administrators should configure the 
+  [`default_policy`](/docs/agent/options#acl_default_policy) to "deny". 
+
+  The system is comprised of five major components:
 
   - **🗝 Token** - API key associated with policies, roles, or service identities.