Deploying ThreatLocker to MAC using VMWare Workspace ONE UEM

2 min. readlast update: 12.20.2024

Note: For organizations deploying to a large amount of endpoints, ThreatLocker recommends using a staggered deployment approach. Organizations that deploy to a large number of endpoints at once may experience increased bandwidth usage as macOS Core and application definitions are downloaded to each endpoint. QOS can be used to limit bandwidth to macapps.threatlocker.com.

Below are the steps for MAC deployment through VMWare Workspace ONE UEM.

Step 1: Import the ThreatLocker Configuration Profile

Once logged into the Workspace ONE UEM portal, navigate to the Profiles page under Resources > Profiles & Baselines > Profiles.

Click on the 'ADD' dropdown and select 'Upload Profile'.

 Select 'Apple macOS' and upload the ThreatLocker Configuration Profile, which can be downloaded from the following link:
https://static.threatlocker.com/deployment/A/ThreatLockerConfigurationProfile.zip

Save the script and continue to the next page. Modify the deployment of the configuration profile to your organization's needs, and then save and publish the profile.

The profile will now appear in your UEM portal.

Note: The Configuration Profile needs to be installed onto the Mac devices before the script is run. Otherwise, permissions for the agent must be granted manually.

Step 2: Import the Deployment Script

Next, navigate to the Scripts page under Resources > Scripts.

Click on the 'ADD' dropdown and select 'macOS'.

Give the script a name and description, and enter or upload the MDM deployment script downloaded from the ThreatLocker portal into the 'Details' section of the New Script window.

To see where to get the latest version of our MDM script, please see the 'RMM Deployment' section of Deploying ThreatLocker | ThreatLocker Help Center (kb.help)

Replace the value of the GroupKey variable with your GroupKey, which can be found here: Locate your GroupKey

Once you've entered the GroupKey, save the script to add it to your portal.

Step 3: Assigning the Deployment Script

Once the script is added to your portal, click on the radial button next to it to select it and click on 'ASSIGN' to assign the script.

Create a new assignment in the window that appears.

Give the assignment a name and select the group to which it will be applied. Then, select the 'Run Once Immediately' trigger on the' Deployment' page to deploy ThreatLocker immediately.

Once you're done building out your assignments, click 'Save and Publish' to publish the assignments. ThreatLocker will be deployed to your groups according to your assignments.

Was this article helpful?