diff --git a/Start-C4bSetup.ps1 b/Start-C4bSetup.ps1
index 7b729d0..dd31323 100644
--- a/Start-C4bSetup.ps1
+++ b/Start-C4bSetup.ps1
@@ -140,6 +140,7 @@ try {
 
     # Set Choco Server Chocolatey Configuration
     Invoke-Choco feature enable --name="'excludeChocolateyPackagesDuringUpgradeAll'"
+    Invoke-Choco feature enable --name="'usePackageHashValidation'"
 
     # Convert license to a "choco-license" package, and install it locally to test
     Write-Host "Creating a 'chocolatey-license' package, and testing install." -ForegroundColor Green
diff --git a/scripts/ClientSetup.ps1 b/scripts/ClientSetup.ps1
index 2371808..9b12a73 100644
--- a/scripts/ClientSetup.ps1
+++ b/scripts/ClientSetup.ps1
@@ -145,6 +145,9 @@ choco feature enable --name="'useBackgroundServiceWithNonAdministratorsOnly'"
 choco feature enable --name="'allowBackgroundServiceUninstallsFromUserInstallsOnly'"
 choco config set --name="'backgroundServiceAllowedCommands'" --value="'install,upgrade,uninstall'"
 
+# Enable Package Hash Validation (Good security practice)
+choco feature enable --name="'usePackageHashValidation'"
+
 # CCM Check-in Configuration
 choco config set CentralManagementServiceUrl "https://${hostName}:24020/ChocolateyManagementService"
 if ($ClientSalt) {