Is the Scripted action to install ThreatLocker working for anyone? It seems to me ThreatLocker might have added an authentication requirement that is causing it to fail. I get the Failed to get GroupId result. I tried piecing together the Invoke-RestMethod piece, and running it in Powershell, and I got this error:
401 - Unauthorized: Access is denied due to invalid credentials.
Weirdly, if I put in a new $ThreatLockerOrgName, the organization was added in the ThreatLocker portal. I just wasn't getting the response needed to build $GroupId.
I htink I have a workaround though. I'm going to download the generic stub installer and run it with parameters to set the instance, company, and key.
Comments (3 comments)