Configure policy Endpoint Interface options in Malwarebytes Cloud Platform

Document created by bgoddard Employee on Oct 2, 2019Last modified by bgoddard Employee on Oct 11, 2019
Version 21Show Document
  • View in full screen mode

Policies define how Malwarebytes behaves when running a scheduled scan, using Real-Time Protection, or monitoring Suspicious Activity. Policies are applied at the group level; all endpoints in a group use the same policy. Unless you specify otherwise, endpoints belong to the Default Group, which uses the Default Policy. 


Policies are customizable and have many options. This article covers the Policy Information section and policy Endpoint Interface options for all endpoint platforms. 


You may also be interested in these articles:


To view policy settings, go to Settings > Policies. Click Default Policy to view the options described below.


Policy Information

The Policy Information section presents details for the selected policy. You can rename a policy by editing the Policy Name field. Every policy must have a unique name.


Endpoint Interface Options

Endpoint Interface Options enables you to customize how endpoint users interact with the Malwarebytes interface. These policy settings are applied to all endpoints in the group. Below this section you can set additional options that only apply to specific operating systems.


Options in this section are as follows:

  • Show icon in Notification area: Shows the Malwarebytes program icon in the Windows taskbar or Mac menu bar.
  • User Threat Scan: Allows users to run Threat Scans with all detected threats automatically quarantined. Users may cancel their own Threat Scans, but cannot cancel scheduled scans or administrator initiated on-demand scans. Threat Scans run by users show as “On demand” scans in the console Events screen.
    • Threat Scan Shortcuts: Creates Start Menu and desktop shortcuts for users on Windows endpoints. User Threat Scan must be enabled to use this setting.
  • Context Menu Scans (Windows only): Allows users to scan files by right-clicking them. These scans share the same properties as User Threat Scan, above.
  • Real-time Notifications: Shows notifications in the corner of your screen for Real-Time Protection options that are enabled. See Real-Time Protection options for Windows and Mac below.
  • Limit Endpoint Agent Interactions (Windows only): Disables the Malwarebytes “Endpoint Agent Tray” process from loading on Standard-level user accounts and only allows it to load for Administrator-level users. This feature is useful for running Malwarebytes in a more silent manner or in a multi-user environment, such as Microsoft Terminal Services. Only available for endpoints running Windows Vista and above, or Windows Server 2008 and above.