Policies define how Malwarebytes behaves when running a scheduled scan, using Real-Time Protection, or monitoring Suspicious Activity. Policies are applied at the group level; all endpoints in a group use the same policy. Unless you specify otherwise, endpoints belong to the Default Group, which uses the Default Policy.
Policies are customizable and have many options. This article covers the Policy Information section and policy Endpoint Interface options for all endpoint platforms.
You may also be interested in these articles:
- Configure policy General options in Malwarebytes Cloud Platform
- Configure policy Settings options in Malwarebytes Cloud Platform
The Policy Information section presents details for the selected policy. You can rename a policy by editing the Policy Name field. Every policy must have a unique name.
Endpoint Interface Options
Endpoint Interface Options enables you to customize how endpoint users interact with the Malwarebytes interface. These policy settings are applied to all endpoints in the group. Below this section you can set additional options that only apply to specific operating systems.
Options in this section are as follows:
- Show icon in Notification area: Shows the Malwarebytes program icon in the Windows taskbar or Mac menu bar.
- User Threat Scan: Allows users to run Threat Scans with all detected threats automatically quarantined. Users may cancel their own Threat Scans, but cannot cancel scheduled scans or administrator initiated on-demand scans. Threat Scans run by users show as “On demand” scans in the console Events screen.
- Threat Scan Shortcuts: Creates Start Menu and desktop shortcuts for users on Windows endpoints. User Threat Scan must be enabled to use this setting.
- Context Menu Scans (Windows only): Allows users to scan files by right-clicking them. These scans share the same properties as User Threat Scan, above.
- Real-time Notifications: Shows notifications in the corner of your screen for Real-Time Protection options that are enabled. See Real-Time Protection options for Windows and Mac below.
- Limit Endpoint Agent Interactions (Windows only): Disables the Malwarebytes “Endpoint Agent Tray” process from loading on Standard-level user accounts and only allows it to load for Administrator-level users. This feature is useful for running Malwarebytes in a more silent manner or in a multi-user environment, such as Microsoft Terminal Services. Only available for endpoints running Windows Vista and above, or Windows Server 2008 and above.