Help Center
Note: For organizations deploying to a large amount of endpoints, ThreatLocker recommends using a staggered deployment approach. Organizations that deploy to a large number of endpoints at once may experience increased bandwidth usage as Windows Core and application definitions are downloaded to each endpoint. QOS can be used to limit bandwidth to corecdn.threatlocker.com and apps.threatlocker.com
The ThreatLocker agent can be deployed using the ConnectWise RMM provided your license supports the ability to run commands.
You will need to download the PowerShell script located here. After downloading the script, we must modify 2 specific areas of the script:
Under ## Variables, you will need to replace Insert Organization Name with the name of the organization you wish to deploy to enclosed in apostrophes as shown in the second screenshot below.
Changed to an example of the following:
Note: If you are deploying to an existing Organization, that name must match the Identifier in your ThreatLocker portal.
Under ## Attempt Install, replace the following XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX with your Unique Identifier for the Parent Organization.
To locate your Unique Identifier within the ThreatLocker Portal, navigate to the Computers Page > Click on the Install New Computer button located at the top of the page. The RMM and Script Deployment window will open. Your Unique Identifier is located on line 5 as shown in the photo below:
Once you have modified your script as needed, save it as a PowerShell Script. Within the ConnectWise RMM, navigate to Automation on the left side > Click on Tasks > Click on Add > Choose the PowerShell Script option > Name your Powershell Script.
Name your Deployment Script and Copy & Paste the script on the box to the right, and click on Save & Run
On the new page, choose the Site you want to deploy to > Choose the option to Run Now > Then Click Run
Within a few minutes, ThreatLocker should deploy on your machines and the task should reflect as Success under the Status column in the ConnectWise RMM Portal once it's complete.
