Most OpenClaw setup guides assume you know Linux, Docker, and API configuration. This one does not. This guide walks through every step in plain English, with time estimates so you can decide at each stage whether to continue DIY or hand it off to a professional.
OpenClaw needs 4 things to run. None of them are complicated on their own. The complexity comes from connecting them together and making sure nothing is exposed to the internet without proper security.
Total ongoing cost after setup: $20 to $43 per month. Full cost breakdown in the OpenClaw setup cost guide.
Total DIY setup time: 20 to 40 hours depending on your technical comfort level. Here is roughly how that time breaks down:
| Step | What It Involves | Time | Difficulty |
|---|---|---|---|
| 1. Get a server | Sign up for a VPS, choose a plan | 30 min | Easy |
| 2. Access the server | SSH connection, basic terminal | 30-60 min | Medium |
| 3. Install OpenClaw | Node.js, clone repo, run installer | 1-2 hours | Medium |
| 4. Connect an AI model | Get API key, configure in OpenClaw | 30-60 min | Easy |
| 5. Connect messaging | Set up Telegram/WhatsApp/Slack bot | 2-4 hours | Medium-Hard |
| 6. Harden security | Docker, firewall, credentials | 3-5 hours | Hard |
| 7. Configure workflows | Skills, heartbeat, custom rules | 5-15 hours | Medium-Hard |
| 8. Test everything | End-to-end testing, troubleshooting | 3-8 hours | Medium |
Tip: Read through the entire guide first before starting. If steps 5, 6, and 7 feel over your head, that is the decision point where hiring professional help makes financial sense. Your time at $100/hour means DIY "free" setup costs $2,000 to $4,000 in labor.
OpenClaw needs a computer that stays on 24/7. Your laptop will not work for this because it sleeps, restarts, and moves between networks. You need a VPS (Virtual Private Server), which is a small computer in a data center that runs around the clock.
For business OpenClaw workflows, you need at least:
Three providers that work well for OpenClaw:
Sign up, pick a plan with Ubuntu as the operating system, and create your server. The provider gives you an IP address and a password. Write both down.
Tip: Pick Ubuntu 22.04 LTS as your operating system. Almost every OpenClaw guide and troubleshooting resource assumes Ubuntu. Picking a different OS means every command in every tutorial needs to be translated. Save yourself the headache.
This is where most non-technical users hit their first wall. You need to connect to your server using SSH (Secure Shell), which is a way to type commands on a remote computer.
On Mac or Linux, open Terminal and type:
ssh root@your-ip-address
On Windows, download a free tool called PuTTY, enter your IP address, and click Connect.
Either way, you will see a blinking cursor on a black screen. That is your server. Everything from here happens by typing commands.
Tip: If you have never used a terminal before, spend 15 minutes reading a "Linux terminal basics" tutorial first. You only need 5 commands for the entire OpenClaw setup: cd (change directory), ls (list files), nano (edit text files), sudo (run as admin), and cp (copy files). That is it.
OpenClaw runs on Node.js, so you need to install that first, then install OpenClaw itself. Here is the sequence:
The onboarding wizard asks you a series of questions: which AI model to use, what name to give your agent, which messaging platform to connect. Answer each one and OpenClaw generates the configuration files for you.
At this point, OpenClaw is installed but not connected to anything useful yet. Think of it as a car with an engine but no wheels.
OpenClaw does not include its own AI. You connect it to an external model through an API key. The 3 most common choices:
| Model | How to Get API Key | Monthly Cost | Best For |
|---|---|---|---|
| Claude (Anthropic) | Sign up at console.anthropic.com | $15-30 | Most business workflows |
| GPT-4 (OpenAI) | Sign up at platform.openai.com | $15-30 | General-purpose |
| DeepSeek | Sign up at platform.deepseek.com | $2-5 | Budget workflows |
After signing up, you get an API key (a long string of characters). Paste that key into OpenClaw's configuration file. The onboarding wizard usually handles this step, but if you need to change models later, you edit the config file directly.
Tip: Start with Claude Haiku ($1/$5 per million tokens). It handles email triage, document routing, and daily briefings well and costs 3 to 5x less than Claude Sonnet. You can always upgrade to a more expensive model later for specific workflows that need deeper reasoning.
This step tells OpenClaw how to receive messages from you and send messages back. The 3 most common options, ranked by setup difficulty:
Open Telegram, search for @BotFather, send /newbot, give your bot a name. BotFather gives you a token. Paste it into OpenClaw's Telegram configuration. Done. Telegram is free, has no message limits, and the bot API is straightforward. This is the best option for your first setup.
Create a Slack app at api.slack.com, configure OAuth permissions (chat:write, channels:read, channels:history), install the app to your workspace, and paste the bot token into OpenClaw. Slack works well for teams that already live in Slack because OpenClaw can send briefings, alerts, and summaries directly into channels your team already watches.
WhatsApp requires a Business API account through a provider like Twilio, 360dialog, or the official WhatsApp Cloud API. You need a phone number, business verification, and webhook configuration. It is the most natural interface (feels like texting your assistant) but the setup takes the longest and WhatsApp charges per conversation.
Tip: Start with Telegram even if you plan to use WhatsApp or Slack long-term. Get OpenClaw working on Telegram first, confirm your workflows run correctly, then add WhatsApp or Slack as a second channel. Debugging workflow issues and messaging issues at the same time is twice as frustrating as doing them separately.
This Is Usually Where DIY Gets Frustrating
Steps 6 and 7 involve security hardening and custom workflow design. If you are not comfortable with Docker and API configuration, this is a good point to hand it off.
This is the step most DIY guides gloss over and the one that matters most for business use. Running OpenClaw without security hardening means your API keys, business emails, and CRM credentials are accessible to anyone who scans your server's open ports.
Here is what needs to happen, in plain English:
Docker is a container that isolates OpenClaw from the rest of your server. If OpenClaw gets compromised, the attacker cannot access your full server. Without Docker, OpenClaw has access to every file on your machine.
Never paste API keys directly into config files. Config files can get accidentally shared, committed to Git, or read by other processes. Environment variables store keys in memory where only OpenClaw can access them.
Your server has dozens of ports open by default. OpenClaw only needs 2 or 3. A firewall blocks everything else. The most common setup: allow SSH (port 22), allow your messaging platform's webhook port, block everything else inbound.
OpenClaw should only be able to reach the domains it actually needs: your LLM API provider, your messaging platform, and your business tools. Block everything else outbound. This prevents a compromised skill from sending your data somewhere unexpected.
36% of community-built skills on ClawHub have known vulnerabilities, based on independent security analysis. Do not install random skills. Read the SKILL.md file. Check what commands it runs. Stick to the verified registry or build custom skills.
Tip: Run openclaw security audit after completing your setup. OpenClaw includes a built-in security checker that flags common misconfigurations. For a deeper scan, run openclaw security audit --deep. Fix every issue it finds before connecting business tools.
This is where OpenClaw goes from "installed software" to "working AI agent." A workflow tells OpenClaw what to do, when to do it, and what tools to use.
For your first workflow, start with email triage. It is the simplest to set up and gives the most immediate value. Here is what you configure:
The time range here (5 to 15 hours) depends on how many workflows you configure. Email triage alone takes 3 to 5 hours. Adding a daily briefing takes another 2 to 3 hours. Each additional workflow (CRM updates, document routing, vendor coordination) adds 2 to 5 hours of configuration and testing.
Tip: Write your workflow rules as simple "if/then" statements before touching any config file. "If an email contains the word 'invoice' and is from a new sender, flag it to the CFO." "If a client email has not been responded to in 4 hours, send me a Slack alert." Having these written in plain English first makes the technical configuration much faster because you are translating logic, not inventing it on the fly.
Before trusting OpenClaw with real business communications, test every workflow end to end:
Testing takes longer than you expect. Budget a full day. Most issues surface in the connection between tools (the email skill works, but the Slack notification does not arrive because a permission is missing). These are fixable, just time-consuming.
Here is a simple way to think about it:
| DIY makes sense if... | Professional setup makes sense if... |
|---|---|
| You enjoy tinkering with servers and APIs | Your time is worth more than the setup fee |
| You have 20-40 free hours to invest | You need OpenClaw running within days, not weeks |
| You want to learn how OpenClaw works internally | You want custom workflows designed around your operations |
| You are comfortable with Docker and Linux | Security hardening is outside your expertise |
| You are setting up a single personal workflow | You are deploying for a team of 5+ people |
There is no shame in starting DIY and switching to professional help at step 6. Many Mixbit clients start that way. They get OpenClaw installed, realize the security and workflow configuration is a bigger project than expected, and bring in Mixbit to finish the deployment properly.
Got Halfway Through and Need Help?
Mixbit picks up from wherever you stopped. Security hardening, workflow configuration, team training, and hypercare support included.
Once OpenClaw is running and your first workflow is tested:
From Mixbit's experience deploying OpenClaw for dozens of businesses, here are the 5 mistakes that cause the most wasted hours during DIY setup:
OpenClaw is installed and running. Now the question is what to do with it.
Prefer Someone Else to Handle the Setup?
Mixbit deploys OpenClaw with security hardening, custom workflows, and live training. Your agent is live in 3 days. Your time: a 30-minute kickoff call.
Jeel Patel is the Founder of Mixbit, where he helps businesses reclaim 10–15 hours a week lost to manual operations. Most teams struggle with email overload, CRM admin, reporting, and missed follow-ups. OpenClaw can automate this, but without the right workflows and secure setup, it breaks or creates risk. Jeel solves this by turning business processes into fully deployed OpenClaw agents that are built, secured, and running on your own infrastructure in days. His focus is simple: replace manual operations with systems that run 24/7.
