NOTICE - On October 18, 2022, this product was renamed Remediation Connector Solution.
TIP - This is an example of the Remediation Connector Solution configured with CrowdStrike Falcon®.
CrowdStrike and CrowdStrike Falcon are registered trademarks of CrowdStrike, Inc.
Remediation Connector Solution is not associated with, or endorsed by, CrowdStrike Holdings, Inc. or its affiliates.
See this article for Remediation Connector Solution, product, and target endpoint requirements.
Software Requirements
- Endpoint running the Remediation Connector Solution Applet
- Minimum Microsoft .NET Framework version 4.6 is required to run the Remediation Connector Solution applet.
- An active Remediation Connector Solution subscription.
- Active Internet Connection for license validation and threat signature updates.
- CrowdStrike Falcon
- An active CrowdStrike Falcon® Enterprise subscription.
- The Falcon Administrator role is required for executing scripts on remote hosts.
- High Risk Commands must be enabled for your CrowdStrike API client in the Falcon Download and setup section. For details, see Setup Remediation Connector Solution.
- High Risk Commands must be enabled to:
- put: Send script files to remote hosts via the CrowdStrike Falcon RTR commands.
- run: Run script files on remote hosts.
System Requirements for the Remote Host Being Remediated
Remediation Connector Solution requires the following to scan and remediate Windows endpoints.
Operating Systems:
- Windows 11 (32/64-bit)
- Windows 10 (32/64-bit)
- Windows 8.1 (32/64-bit)
- Windows 8 (32/64-bit)
- Windows 7 (32/64-bit) (Service Pack 1 or later)
- Windows Server 2019
- Windows Server 2016
- Windows Server 2012/2012 R2 (64-bit only)
- Windows Small Business Server 2011 (64-bit only)
- Windows Server 2008 R2 (64 bit) – TLS 1.2 enabled
Note: Windows servers using the Server Core Installation process are specifically excluded
Windows Hardware:
- CPU: 800 MHz or faster
- RAM: 512 MB (1 GB or more recommended)
- Free Disk Space: 200 MB
- Screen Resolution: 800x600 or higher
Network Access Requirements
Allow the following addresses through your firewall or other security software. You must allow or exclude all addresses on port 443, outbound.
Address | Date Added |
https://cdn.mwbsys.com | 2021 |
https://hubble.mb-cosmos.com | 2021 |
https://keystone.mwbsys.com | 2021 |
https://sirius.mwbsys.com | 2021 |
https://telemetry.malwarebytes.com | 2021 |
https://blitz.mb-cosmos.com | 2021 |
https://downloads.malwarebytes.com | 2021 |
https://data-cdn.mbamupdates.com | 2021 |
https://downloads-static.malwarebytes.com | 2021 |
https://data-cdn-static.mbamupdates.com | 2021 |
https://brix.threatdown.com | 10/24/2024 |