Top  Previous  Next


The ApiKey is a secret value, known only by Thinfinity® Remote Desktop Server and a corporate application that connects to it.

By sending the ApiKey, the corporate application is identifying itself as trusted. In some cases, Thinfinity® Remote Desktop Server will recognize the user who is authenticating as logged on the corporate network, so that the password would not be required.

This method is useful for applications that do not keep the user's passwords and only authenticate their users against Windows or a network Active Directory Server.


The ApiKey is a configurable value. It is set in the Thinfinity® Remote Desktop Server ini configuration file. The location of this file depends on the Windows version Thinfinity® Remote Desktop Server is running at:


Windows XP, 2003: C:\Documents and Settings\All Users\Application Data\Cybele Software\Thinfinity\Remote Desktop Server\Thinfinity.RemoteDesktop.Server.ini

Windows 7, 8, 2008, 2012: C:\ProgramData\Cybele Software\Thinfinity\Remote Desktop Server\Thinfinity.RemoteDesktop.Server.ini


Inside the ini file, the apikey information should be appended following the format below:



Key = 3884F316-3429-49A0-9282-AF0C52B62107

Ips =; ...


You should use a personal value for the ApiKey setting, as long as it follows the pattern shown above in the 'Key' parameter and matches the value sent by the external application.

Do not use the example value shown above, as this content is public on the internet.

Filter access. Grant access to a set of desired ips by adding them in the 'Ips' parameter. This will restrict the rest of ips from connecting.


If the ApiKey does not exist in the ini configuration file, the server won't be able to authenticate external applications or establish connections using the One-Time-URL .


Read more:

Diffie Hellman Key Exchange