Malwarebytes On-Premise to Cloud Migration: Upgrading Endpoint Security to Endpoint Protection

Malwarebytes recommend that you setup your environment by following each ordered step:

1. Policies |  2. Exclusions |  3. Add endpoint groups |  4. Add endpoints |  5. Scheduled endpoint scans |  6. Users |  7. Email notifications | 8. Syslog | 9. Network proxy.

1. Policies

A policy defines the security settings for the endpoint (e.g executing a scheduled scan, type of scan, applying real-time protection, or enabling Anomaly Detection Machine Learning.)

Note policy configurations in Malwarebytes Management Console

  1. Select Policy on the left pane of the Malwarebytes Management Console app window.
  2. Double-click any policies you wish to move to Malwarebytes Endpoint Protection and note the following configurations for each:
    • General
    • Protection
    • Scanner
    • Scheduler
    • Updater
    • Communication
    • Anti-Exploit
    • Anti-Ransomware (with Exclusion List)
  3. Login to the Malwarebytes cloud console
  4. Click Add to create a new policy for each policy you wish to migrate from Malwarebytes Endpoint Security to Malwarebytes Endpoint Protection.

2. Exclusions

Option 1: Migrate exclusions with Malwarebytes Cloud Excel Add-In

Use the Malwarebytes community utility Malwarebytes Cloud Excel Add-In to automate the conversion.

  1. Once the MSI file is downloaded, open Excel and go to Malwarebytes > Misc Functions > Load Exclusions.
  2. Select Import from Malwarebytes Endpoint Security.

Option 2: Manually migrate exclusions

In Malwarebytes Endpoint Security, exclusions are established per policy. In Malwarebytes Endpoint Protection, exclusions are applied on a global basis.

Take note of each exclusion found in the following policy tabs of Malwarebytes Endpoint Security:

Ignore List - Malwarebytes Anti-Malware
Anti-Exploit Exclusion List
Anti-Ransomware (with Exclusion List)

Manually add those exclusions to Malwarebytes Endpoint Protection

You can do this under Settings > Exclusions > Add.

3. Add endpoint groups

Option 1: Sync Active Directory

Synchronise the Active Directory structure with Malwarebytes Endpoint Protection groups. See Download the Malwarebytes Discovery and Deployment Tool for download instructions.

  1. Open the Tool & select Active Directory Import.
  2. Select all Organisational Units you wish to import.
  3. Endpoints are automatically placed into the Active Directory group structure.

Option 2: Preserve groupings of endpoints in Malwarebytes Endpoint Security

Install Malwarebytes Endpoint Security Excel Add-In.

  1. Open Excel, select Malwarebytes Endpoint Security login > Client Computers.
  2. Use the generated list to create groups & add the endpoints: IP Address, GroupName, PolicyName.
  3. In Malwarebytes Endpoint protection, create new groups & select the policies desired for each new group. Go to Settings>Groups>New.

Option 3: Start over from scratch

Settings > Groups > New.

4. Add endpoints

Option 1: Use a software distribution method

After installing the Endpoint Agent, endpoints show up in the Default Group. You can then manually move endpoints to another group. Automatically assign endpoints to groups during the installation process by:

  1. Automatically assign endpoints to a group during installation by specifying the corresponding Group ID. Go to Settings > Groups and create a new group structure.
  2. Find Group ID within the cloud console and going to Endpoints > Add Endpoints > Managed Endpoint Installers > How to Automatically Specify Group Assignment.

Option 2: Use Malwarebytes Discovery and Deployment Tool

  1. In the Malwarebytes cloud console, go to Endpoints > Add Endpoints > Download Malwarebytes Discovery and Deployment Tool.
  2. See Malwarebytes Cloud Console Administrator Guide  and Malwarebytes Endpoint Protection quick start installation  for detailed install and use information.
  3. All endpoints show up in the Malwarebytes cloud console in the Default Group. Manually move endpoints to other groups if desired.

5. Scheduled endpoint scans

  1. Review & document schedules in Malwarebytes Endpoint Security.(Date/time, functions performed, scheduled groups)
  2. Enter it into Malwarebytes Endpoint Protection to create new scheduled scans.
  3. Create a spreadsheet to map previous settings to Malwarebytes Endpoint Protection.

6. Users

  1. Gather information on existing Users (also known as administrators) from Malwarebytes Endpoint Security.
  2. Create new users in the Malwarebytes cloud console. Go to Settings > Users > New.

Malwarebytes Endpoint Security: Admin/Users.
Malwarebytes Endpoint Protection: Super Admin, Administrator, Users.

7. Email notifications

When using Malwarebytes Endpoint Protection, each user configures their own preferences for notifications. There is no global setting to enable all users to receive the same notifications. There is no need to configure an SMTP server, by clicking User Name > Profile > Notifications in the upper-right of the webpage and checking the desired boxes.

8. Syslog

  1. In the Malwarebytes cloud console, select Settings > Syslog Logging.
  2. Select one 'always on' endpoint that resides within the local area network that has access to the Syslog Server.
  3. Select Add and enter the requested information to match the Syslog Server.

9. Network proxy

Use one of the following two methods to add a network proxy.

Add network proxy via command line option during installation

msiexec /quiet /i Setup.MBEndpointAgent.msi NEBULA_PROXY_SERVER=http://<IP> NEBULA_PROXY_PORT=<port> GROUP=<group_ID>

Use Malwarebytes Discovery and Deployment Tool

A Proxy Settings button is at the lower right corner of the login screen, needed when a proxy server is required to access the Internet.

Click Proxy Settings to enter proxy specifications. No settings are enabled until Use Proxy is checked, and settings are ignored if Use Proxy is unchecked.

After installation via Command line on each endpoint

MBCloudEA.exe -proxy.server <IP> -proxy.port <port> -proxy.user <domain\user> -proxy.password <password>

Upgrade today!

Considering upgrading? Check out our Malwarebytes Product Comparison Guide or check out the complete Malwarebytes solution, Malwarebytes Endpoint Protection & Response.

Don't have Malwarebytes and unsure on how protected you really are? Try Malwarebytes FREE for 30-days with the Malwarebytes FREE Trial or request a FREE threat assessment report on your current AV.

For more information on Malwarebytes solutions or if you require a demo, please contact us.

Require further support?

Search all Knowledgebase articles

Send a Support Request to The Idency Support Team

In good company: some of Idency's clients