Note: For organizations deploying to a large amount of endpoints, ThreatLocker recommends using a staggered deployment approach. Organizations that deploy to a large number of endpoints at once may experience increased bandwidth usage as Windows Core and application definitions are downloaded to each endpoint. QOS can be used to limit bandwidth to corecdn.threatlocker.com and apps.threatlocker.com
This article is based on documentation from Microsoft and has not been verified by the ThreatLocker team.
Source: https://docs.microsoft.com/en-us/mem/intune/apps/intune-management-extension
- Log into the ThreatLocker portal.
- Make sure you are managing the correct organization, or switch organizations using the Organizations page.
- Click on the Computers page.
- Select Install Computer.
- Select Manual Deployemnt, choose a group which you would like to install to, and download the PowerShell Script for the group you are installing.
Add into Microsoft InTune.
Sign in to the Microsoft Endpoint Manager Admin Center.
- Select Devices > PowerShell scripts > Add.
- Enter a script name and description and select Next.
- Script Location: Browse to the location of your ThreatLockerPS1 Script and select Next.
- Select No under the "Enforce script signature check" section and select Next.
- Select No (default) runs the script in a 32-bit PowerShell host and select Next.
- Assign any Scope tags (Not required).
- Select Groups, you wish to assign to.
- Click next and Click Add to Add the Script.
Please note: The endpoint will require a reboot in order for ThreatLocker to install.