diff --git a/docs/reference/treyresearch/README.md b/docs/reference/treyresearch/README.md
index a91656c4..0db7f5db 100644
--- a/docs/reference/treyresearch/README.md
+++ b/docs/reference/treyresearch/README.md
@@ -73,6 +73,8 @@ By default, all recommendations are enabled. You must explicitly disable them if
     - Enforce encryption for Azure SQL
     - Enforce auditing for Azure SQL
     - Enforce secure access (HTTPS) to storage accounts
+
+  **Note:** You may notice the creation of different *managed identities* after deploying the policies described above. This is because a policy with effect *deployIfNotExists (DINE) or modify* will be enforced when enabling a recommendation. These kind of policy effects use managed identities in order to remediate resources that are not compliant. To learn more about what policies are included in ALZ reference implementations, refer to [ALZ Policies](https://github.com/Azure/Enterprise-Scale/wiki/ALZ-Policies).   
   
 ![Trey Research](./media/es-lite.png)