Syslog - Malwarebytes Endpoint Security CEF

Device Details

Prerequisites

Endpoint configuration changes must be implemented to facilitate installation of a Malwarebytes managed client to those endpoints. Similar methods are required for the various operating systems, and they are grouped accordingly.

Windows Server Endpoint Preparation for All Supported Versions

1. From the Windows Start Menu, launch the Control Panel.

2. Launch Network and Sharing Center by double-clicking its icon.

3. On the left side of the screen, select Change advanced sharing settings.

4. Click the arrow to the right of All Networks or Domain, (dependent on network environment).

5. Turn on Network discovery, File sharing and Printer sharing.

6. Click Save changes.

7. Close the Control Panel.

8. Launch the Server Manager by clicking its Icon.

9. Select Administrative Tools, Add Feature, and then .Net 3.5. 

10. Continue through the installation.

11. WORKGROUP ONLY: Enable the built-in administrator account by opening a command prompt as administrator, and typing the following command: net user administrator /active:yes

Windows 7/8/8.1/10 Endpoint Preparation

1. From the Windows Start Menu, launch the Control Panel.

2. Launch Network and Sharing Center by double-clicking its icon.

3. On the left side of the screen, select Change advanced sharing settings.

4. Click the arrow to the right of All Networks or Domain, (dependent on network environment).

5. Turn on Network discovery, File sharing and Printer sharing.

6. Click Save changes.

7. Close the Control Panel.

8. WORKGROUP ONLY: Enable the built-in administrator account by opening a command prompt as administrator, and typing the following command: net user administrator /active:yes

Windows Vista Endpoint Preparation

1. From the Windows Start Menu, launch the Control Panel.

2. Launch Network and Sharing Center by double-clicking its icon.

3. In the section titled Sharing and Discovery, turn on Network discovery, File sharing and Printer sharing.

4. Close the Control Panel.

5. WORKGROUP ONLY: Enable the built-in administrator account by opening a command prompt as administrator, and typing the following command: net user administrator /active:yes

Windows XP Endpoint Preparation

1. From the Windows Start Menu, launch the Control Panel.

2. Launch Network and Sharing Center by double-clicking its icon.

3. Click the Exceptions tab.

4. Check the checkboxes for File and Printer Sharing.

5. To close the Windows Firewall screen, click OK.

6. Launch Administrative Tools by double-clicking on its icon.

7. Launch Local Security Policy by double-clicking on its icon.
   The Local Security Settings screen opens.

8. In the left panel, click Local Policies.
   The main panel refreshes to show relevant settings.

9. Scroll down to Network access: Sharing and security model for local accounts.

10. Double click this setting.

11. Change the value to Classic – local users authenticate as themselves.

12. To save the changes, click OK.

13. Close the Local Security Settings window, the Administrative Tools window, and the Control Panel.

If your company’s Internet access is controlled by a firewall or other access-limiting device, you must grant access for Malwarebytes Management Console to reach Malwarebytes services. These are: 

Currently Supported Log Types

Parsed Metadata Fields