The Malwarebytes Management Console requires TLS 1.0 for initial installation. To successfully setup the Management Console, temporarily enable this protocol to perform the installation.
Configure TLS 1.1 and 1.2 after installation. Support for these configurations below.
Post-install TLS 1.1 and 1.2 configuration
Client deployment and install package creation
- Edit file C:\Program Files (x86)\Malwarebytes Management Server\PackageTemplate\SCComm.xml
- Look for the following line:
<supportedRuntime version="v2.0.50727" />
Change the version value to:<supportedRuntime version="v4.0.30319" />
.Net requirements for Management Console server and client's OS
Installs using TLS 1.1 and 1.2 require .NET 4.6 or a fully patched .NET 4.5 to be installed.
SQL connection setup
Default Embedded SQL Express
Malwarebytes Management Console comes bundled with SQL Express 2008 R2. In order to support TLS 1.1 and 1.2:
- Ensure SQL Server 2008 R2 is updated to Service Pack 4. See the following Microsoft page for download: https://www.microsoft.com/en-us/download/details.aspx?id=44278
- Check that the SQL Server 2008 R2 is fully patched to version 10.50.6542.0 or later. See the following Microsoft page for update information: https://support.microsoft.com/en-us/help/4057113/security-update-for-vulnerabilities-in-sql-server
- The latest version is currently 10.50.6560.0, released Jan 5th 2018. See the following Microsoft page for the latest SQL Server Security Update: Download Security Update for SQL Server 2008 R2 SP3 (KB4057113) from Official Microsoft Download Center
External SQL Full
Refer to the following Microsoft update information to support TLS 1.1 and 1.2 on the SQL Server and Server OS versions in use: https://support.microsoft.com/en-us/kb/3135244
Finalize Management Console installation
After installing updates/patches, disable TLS 1.0 on the server and reboot. Management Console should now function using TLS 1.1 and 1.2.