The ThinLinc server bundle provides a web administration interface called tlwebadm, which can be used to configure various aspects of the ThinLinc server. This interface runs on port 1010 of the ThinLinc master server, and is protected by a username and password.
By default, the username is admin, however this can be changed using the /tlwebadm/username parameter. The password is set by tl-setup when installing ThinLinc. You will be prompted for this during installation, and it is stored in the parameter /tlwebadm/password.
The password is not stored in plain-text, however, as this would be insecure. Instead, it is stored as a hash. So in order to set a new password for the web administration interface, you first need to generate one using the required hash.
ThinLinc ships with a tool called tl-gen-auth which is used for this purpose. Running this tool on the command line with the desired password will produce a hash of the type required by tlwebadm:
/opt/thinlinc/sbin/tl-gen-auth supersecretpassword
$6$d2a71655142b6517$7F3Mzy2QRLq8DG6d7oy/NyqSKushXKe2Qd.E78EBwmDs2hbbI/tUim8at.IEToHY/zRJ2BlJy/U/zFKdXSiPd/
You can then paste this hash into the configuration file manually, or combine it with tl-config to generate and set the password in one step:
/opt/thinlinc/bin/tl-config /tlwebadm/password=$(tl-gen-auth)
Password:
You may need to restart the tlwebaccess service after making this change for the new password to take effect.
For more information on securing the web administration interface, see also Hardening TLS configuration