What you need before starting
OpenClaw requires Node.js 22 or higher, a Mac (M1+), Linux machine, or Windows with WSL2. You'll also need an API key from an LLM provider — Anthropic (Claude), OpenAI (GPT), Google (Gemini), or a local model via Ollama. Budget 15-30 minutes for a basic setup if you're comfortable with the command line. Most people spend significantly longer on troubleshooting and security configuration.
Installation
The official installer handles most of the heavy lifting. Run the install command, then use 'openclaw onboard' to walk through the interactive setup wizard. The wizard configures your LLM provider, API key, and initial messaging channel. Common issues: PATH problems after npm install, permission errors requiring sudo, and Node.js version conflicts. If the models list is empty after setup, your API key is usually the culprit.
Channel setup
Telegram is the fastest channel to get running — create a bot via BotFather, add the token, and you're chatting from your phone in minutes. WhatsApp requires Baileys QR pairing, which can be finicky. Slack uses Bolt webhooks. Discord requires a bot created in the Developer Portal. Each channel has its own setup quirks, which is why many people get stuck at this stage.
Security hardening (don't skip this)
The default OpenClaw configuration is not production-ready. The Gateway binds to all interfaces (0.0.0.0) by default, which exposes your agent to your entire network — or the internet if you're on a VPS. You need to bind to localhost, enable token authentication, set up Docker sandboxing, configure exec allowlists, and review any ClawHub skills before installing them. 30,000+ instances were found publicly exposed because people skipped this step. Follow our security guide and security checklist to lock down your deployment.
When to hire a professional
If you're spending more than a few hours troubleshooting, or if you need the agent for business use where security matters, hiring a professional setup service saves significant time. A professional handles installation, security hardening, integrations, and documentation — and gets it right the first time. The typical cost ($499-$4,500) is recovered quickly if your time is worth more than $25/hour.