Policies define how Malwarebytes behaves when running a scheduled scan, using Real-Time Protection, or monitoring Suspicious Activity. Policies are applied at the group level, and all endpoints in a group use the same policy. By default, endpoints added to the console belong to the Default Group, and the Default Policy.
Policies are customizable and have many options. This article covers policy options for:
- Tamper Protection
- Software Updates
Tamper Protection keeps endpoints protected by limiting end user ability to uninstall Malwarebytes software.
- Require Uninstall Password (Windows only): Stops all endpoint users from uninstalling Malwarebytes agent software by requiring a separate uninstall password. When enabled, you are prompted to create a Tamper Protection password. Endpoint users who attempt to uninstall the endpoint agent cannot proceed without this password.
Note: This feature does not support Windows XP endpoints.
Software Updates allows control over when endpoints receive Malwarebytes application updates. These settings do not affect Malwarebytes Protection Updates.
- Pause Software Updates (Windows only): Stops software updates from being applied on endpoints for up to 31 days. After 31 days, endpoints resume receiving software updates when they are released. When enabled, the policy screen shows the date and time when updates will continue.
Return to the Malwarebytes Nebula platform Administrator Guide.