Open Claw Manager Rig

A script to create more open claws

Automationopenclawdigitalocean1passwordprovisioningautomation

Quick Install

Run one command in your project directory.

PowerShell (Windows)

irm https://raw.githubusercontent.com/hal-ai-agent/openclaw-manager/main//install.ps1 | iex

Bash (macOS / Linux)

curl -fsSL https://raw.githubusercontent.com/hal-ai-agent/openclaw-manager/main//install.sh | bash

About

This is design to have an Open Claw Manager that runs through creation headlessly. User action is still required to setup the correct keys / access for certain services up front.

What It Does

Given an agent configuration file, this rig creates a new DigitalOcean droplet, installs OpenClaw, configures channels (Telegram, Gmail), and stores all secrets in 1Password. The manager reads shared secrets (like Anthropic API keys) from 1Password and creates agent-specific entries prefixed with the agent name. After provisioning, the new agent is running and reachable via its configured channels.

Use Cases

Spin up a new AI team member with one command
Manage a fleet of OpenClaw agents across projects
Reproducible agent provisioning with secrets in 1Password

What the Installer Does

For transparency, here is exactly what the installer does:

1
Install manager tools
Installs doctl, op, jq, and yq if not already present. Verifies authentication for doctl and op.
2
Download rig files
Downloads create-agent.sh, preflight.sh, and templates to ~/.openclaw-manager/rig/

Verifying It Works

After installation, follow these steps to confirm everything is working:

1
Run preflight.sh to verify all prerequisites
Expected: All checks pass: doctl authenticated, op authenticated, SSH keys found, Anthropic key in vault, 0 failures.
2
Run preflight.sh with an agent config file
Expected: Config validates: name set, vault accessible, channel config valid.
3
Run create-agent.sh with the config
Expected: Droplet created, OpenClaw installed, agent responds to test prompt.

Based On

Builds on the openclaw-droplet rig by marshellis. This rig automates the provisioning process for programmatic use by manager agents.

OpenClaw Documentation Source Repository

Prerequisites

What you need before installing

Linux machine with SSH

The manager runs from an existing Linux box (e.g., another OpenClaw instance or any server). Must have SSH client installed.

DigitalOcean API token (via doctl)

Create a token at cloud.digitalocean.com/account/api/tokens with Droplet (all) and SSH Key (read) scopes. Then run: doctl auth init --access-token <token>. Verify with: doctl compute ssh-key list

SSH key registered in DigitalOcean

At least one SSH key must be added to your DigitalOcean account. The script injects this key into new droplets for access. Check with: doctl compute ssh-key list. Add one with: doctl compute ssh-key create my-key --public-key-file ~/.ssh/id_ed25519.pub

1Password service account (via op CLI)

Create a service account at 1password.com (Developer > Service Accounts) with access to your secrets vault (default: 'AI-Agents'). Set the token: export OP_SERVICE_ACCOUNT_TOKEN=<token>. Verify with: op vault list

Anthropic API key in 1Password

Store an Anthropic API key in your 1Password vault. The script auto-finds items with 'anthropic' in the title, or you can specify the exact item name in the agent config. Get a key at console.anthropic.com.

Telegram bot token (if using Telegram)

Create a bot BEFORE running the script: open Telegram, message @BotFather, send /newbot, pick a name and username. Copy the token -- the script will prompt you to paste it during setup.

Source

View the rig on GitHub

Repository

hal-ai-agent/openclaw-manager

Path

Branch

main

Install Scripts

View source before running

install.ps1 install.sh

Files

What gets installed