diff --git a/README.md b/README.md
index a574288..aaa356c 100644
--- a/README.md
+++ b/README.md
@@ -34,5 +34,6 @@ The resulting cluster will be missing the following items:
 * [Bootstrapping Kubernetes Workers](docs/05-kubernetes-worker.md)
 * [Configuring the Kubernetes Client - Remote Access](docs/06-kubectl.md)
 * [Managing the Container Network Routes](docs/07-network.md)
-* [Smoke Test](docs/08-smoke-test.md)
-* [Cleaning Up](docs/09-cleanup.md)
\ No newline at end of file
+* [Deploying the DNS Add-on](docs/08-dns-addon.md)
+* [Smoke Test](docs/09-smoke-test.md)
+* [Cleaning Up](docs/10-cleanup.md)
\ No newline at end of file
diff --git a/authorization-policy.jsonl b/authorization-policy.jsonl
index d08fa95..00b4dfe 100644
--- a/authorization-policy.jsonl
+++ b/authorization-policy.jsonl
@@ -2,3 +2,4 @@
 {"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"user":"admin", "namespace": "*", "resource": "*", "apiGroup": "*"}}
 {"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"user":"scheduler", "namespace": "*", "resource": "*", "apiGroup": "*"}}
 {"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"user":"kubelet", "namespace": "*", "resource": "*", "apiGroup": "*"}}
+{"apiVersion": "abac.authorization.kubernetes.io/v1beta1", "kind": "Policy", "spec": {"group":"system:serviceaccounts", "namespace": "*", "resource": "*", "apiGroup": "*", "nonResourcePath": "*"}}
diff --git a/docs/08-dns-addon.md b/docs/08-dns-addon.md
new file mode 100644
index 0000000..5f2f0ab
--- /dev/null
+++ b/docs/08-dns-addon.md
@@ -0,0 +1,16 @@
+# Deploying the DNS Add-on
+
+In this lab you will deploy the DNS add-on which is required for every Kubernetes cluster. Without the DNS add-on the following things will not work:
+
+* DNS based service discovery 
+* DNS lookups from containers running in pods
+
+## Deploy the Cluster DNS Add-on
+
+```
+kubectl create -f https://raw.githubusercontent.com/kelseyhightower/kubernetes-the-hard-way/master/skydns-svc.yaml
+```
+
+```
+kubectl create -f https://raw.githubusercontent.com/kelseyhightower/kubernetes-the-hard-way/master/skydns-rc.yaml
+```
\ No newline at end of file
diff --git a/docs/08-smoke-test.md b/docs/09-smoke-test.md
similarity index 100%
rename from docs/08-smoke-test.md
rename to docs/09-smoke-test.md
diff --git a/docs/09-cleanup.md b/docs/10-cleanup.md
similarity index 100%
rename from docs/09-cleanup.md
rename to docs/10-cleanup.md
diff --git a/configs/skydns-rc.yaml b/skydns-rc.yaml
similarity index 100%
rename from configs/skydns-rc.yaml
rename to skydns-rc.yaml
diff --git a/configs/skydns-svc.yaml b/skydns-svc.yaml
similarity index 100%
rename from configs/skydns-svc.yaml
rename to skydns-svc.yaml