如何选择部署方式？

若你需要快速启动并在本地开发阶段验证功能，推荐使用 Docker 方式（可通过 docker-compose.yml 一键启动）。若你在生产环境需要更高的可扩展性和运维能力，选择 Kubernetes + Helm 部署；若在没有容器化环境或需要对底层配置进行细粒度控制，则使用原生安装。

如何进行初始数据库和凭据配置？

在 Docker/Kubernetes 部署中，OpenClaw 会通过环境变量和 values.yaml 配置数据库连接参数；请确保在.env 或 values.yaml 中设置合理的数据库密码、主机名和端口；原生安装则需要手动在数据库中创建数据库和用户，并导入初始数据。

如何进行升级和回滚？

在 Docker/Kubernetes 下，执行 Docker Compose 拉取新镜像并重启，或使用 Helm 升级命令进行版本滚动更新；在需要回滚时，使用相应的回滚或回滚镜像标签策略。在升级前务必备份数据库和重要数据，以便回滚时可恢复。

安装后如何进行健康检查？

可通过 API 健康端点和状态端点进行自检，例如 curl -s http://localhost:8080/api/health、/api/status 与 /api/cluster/info，并结合日志输出确认服务端和工作节点的运行状态。

installation

Flagged

openclaw installation deployment setup

{"isSafe":false,"isSuspicious":true,"riskLevel":"medium","findings":[{"category":"system_harm","severity":"medium","description":"Uninstall instructions include rm -rf /opt/openclaw, which could delete the entire OpenClaw directory and data if pasted or executed in the wrong context.","evidence":"Uninstall Docker/Kubernetes sections contain: rm -rf /opt/openclaw"},{"category":"other","severity":"medium","description":"Documentation and config examples expose insecure default credentials and password placeholders (admin/admin123, your_root_password, your_db_password, openclaw123) which could be misused if deployed as-is.","evidence":"默认管理员账号: admin / admin123 (首次登录后请修改); .env contains DB_ROOT_PASSWORD=your_root_password and DB_PASSWORD=your_db_password; values.yaml shows rootPassword: \"your_root_password\" and password: \"your_password\"; OPENCLAW_DB_PASSWORD=${DB_PASSWORD:-openclaw123}"}],"summary":"The content is largely focused on installation and deployment and uses standard commands. However, there are security concerns: (1) an uninstall command (rm -rf /opt/openclaw) that could cause data loss if misused, and (2) multiple insecure defaults in credentials and password placeholders shown in docs (admin/admin123 and various placeholders). Recommend removing hard-coded secrets from docs, using secure secret management, enforcing credential rotation, and advising caution with destructive commands in shared materials."}

npx machina-cli add skill chaterm/terminal-skills/installation --openclaw

Files (1)

SKILL.md

9.1 KB

OpenClaw 安装与部署

概述

OpenClaw 是一个开源的分布式任务调度和工作流编排平台，本文档涵盖各种环境下的安装部署方法。

环境要求

系统要求

# 检查系统版本
cat /etc/os-release
uname -a

# 最低要求
# - CPU: 2 核心
# - 内存: 4GB
# - 磁盘: 20GB
# - 操作系统: Linux (CentOS 7+, Ubuntu 18.04+, Debian 10+)

# 检查资源
free -h
df -h
nproc

依赖检查

# 检查 Docker
docker --version
docker info

# 检查 Docker Compose
docker-compose --version

# 检查 Java (如需原生安装)
java -version

# 检查 Python
python3 --version
pip3 --version

Docker 方式安装（推荐）

单机部署

# 创建工作目录
mkdir -p /opt/openclaw && cd /opt/openclaw

# 下载 docker-compose.yml
curl -fsSL https://raw.githubusercontent.com/openclaw/openclaw/main/docker-compose.yml -o docker-compose.yml

# 创建必要目录
mkdir -p {data,logs,config}

# 启动服务
docker-compose up -d

# 查看状态
docker-compose ps
docker-compose logs -f

自定义配置

# docker-compose.yml
version: '3.8'

services:
  openclaw-server:
    image: openclaw/openclaw-server:latest
    container_name: openclaw-server
    ports:
      - "8080:8080"
      - "9090:9090"
    environment:
      - OPENCLAW_DB_HOST=openclaw-db
      - OPENCLAW_DB_PORT=3306
      - OPENCLAW_DB_NAME=openclaw
      - OPENCLAW_DB_USER=openclaw
      - OPENCLAW_DB_PASSWORD=${DB_PASSWORD:-openclaw123}
      - OPENCLAW_REDIS_HOST=openclaw-redis
      - OPENCLAW_REDIS_PORT=6379
      - JAVA_OPTS=-Xms1g -Xmx2g
    volumes:
      - ./data:/opt/openclaw/data
      - ./logs:/opt/openclaw/logs
      - ./config:/opt/openclaw/config
    depends_on:
      - openclaw-db
      - openclaw-redis
    restart: unless-stopped

  openclaw-worker:
    image: openclaw/openclaw-worker:latest
    container_name: openclaw-worker
    environment:
      - OPENCLAW_SERVER_HOST=openclaw-server
      - OPENCLAW_SERVER_PORT=9090
      - WORKER_GROUP=default
      - WORKER_THREADS=8
    volumes:
      - ./logs:/opt/openclaw/logs
    depends_on:
      - openclaw-server
    restart: unless-stopped
    deploy:
      replicas: 2

  openclaw-db:
    image: mysql:8.0
    container_name: openclaw-db
    environment:
      - MYSQL_ROOT_PASSWORD=${DB_ROOT_PASSWORD:-root123}
      - MYSQL_DATABASE=openclaw
      - MYSQL_USER=openclaw
      - MYSQL_PASSWORD=${DB_PASSWORD:-openclaw123}
    volumes:
      - ./data/mysql:/var/lib/mysql
    restart: unless-stopped

  openclaw-redis:
    image: redis:7-alpine
    container_name: openclaw-redis
    command: redis-server --appendonly yes
    volumes:
      - ./data/redis:/data
    restart: unless-stopped

环境变量配置

# 创建 .env 文件
cat > .env << 'EOF'
# 数据库配置
DB_ROOT_PASSWORD=your_root_password
DB_PASSWORD=your_db_password

# 服务配置
OPENCLAW_PORT=8080
OPENCLAW_GRPC_PORT=9090

# 日志级别
LOG_LEVEL=INFO
EOF

# 启动时加载
docker-compose --env-file .env up -d

Kubernetes 部署

Helm 安装

# 添加 Helm 仓库
helm repo add openclaw https://charts.openclaw.io
helm repo update

# 查看可用版本
helm search repo openclaw

# 安装（默认配置）
helm install openclaw openclaw/openclaw -n openclaw --create-namespace

# 安装（自定义配置）
helm install openclaw openclaw/openclaw \
  -n openclaw --create-namespace \
  -f values.yaml

# 查看状态
kubectl get pods -n openclaw
kubectl get svc -n openclaw

values.yaml 示例

# values.yaml
server:
  replicaCount: 2
  resources:
    requests:
      memory: "1Gi"
      cpu: "500m"
    limits:
      memory: "2Gi"
      cpu: "1000m"

worker:
  replicaCount: 3
  resources:
    requests:
      memory: "512Mi"
      cpu: "250m"
    limits:
      memory: "1Gi"
      cpu: "500m"

mysql:
  enabled: true
  auth:
    rootPassword: "your_root_password"
    database: openclaw
    username: openclaw
    password: "your_password"
  primary:
    persistence:
      size: 20Gi

redis:
  enabled: true
  architecture: standalone
  auth:
    enabled: false

ingress:
  enabled: true
  className: nginx
  hosts:
    - host: openclaw.example.com
      paths:
        - path: /
          pathType: Prefix

手动 YAML 部署

# 创建命名空间
kubectl create namespace openclaw

# 应用配置
kubectl apply -f https://raw.githubusercontent.com/openclaw/openclaw/main/deploy/kubernetes/ -n openclaw

# 或本地文件
kubectl apply -f openclaw-deployment.yaml -n openclaw

# 查看部署状态
kubectl get all -n openclaw
kubectl describe deployment openclaw-server -n openclaw

原生安装

下载安装包

# 下载最新版本
OPENCLAW_VERSION=$(curl -s https://api.github.com/repos/openclaw/openclaw/releases/latest | grep tag_name | cut -d '"' -f 4)
wget https://github.com/openclaw/openclaw/releases/download/${OPENCLAW_VERSION}/openclaw-${OPENCLAW_VERSION}.tar.gz

# 解压
tar -xzf openclaw-${OPENCLAW_VERSION}.tar.gz -C /opt/
mv /opt/openclaw-${OPENCLAW_VERSION} /opt/openclaw
cd /opt/openclaw

初始化数据库

# 创建数据库
mysql -u root -p << 'EOF'
CREATE DATABASE IF NOT EXISTS openclaw DEFAULT CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci;
CREATE USER IF NOT EXISTS 'openclaw'@'%' IDENTIFIED BY 'your_password';
GRANT ALL PRIVILEGES ON openclaw.* TO 'openclaw'@'%';
FLUSH PRIVILEGES;
EOF

# 导入初始数据
mysql -u openclaw -p openclaw < /opt/openclaw/sql/init.sql

配置并启动

# 编辑配置
vim /opt/openclaw/conf/application.yml

# 启动服务
/opt/openclaw/bin/openclaw-server.sh start
/opt/openclaw/bin/openclaw-worker.sh start

# 查看状态
/opt/openclaw/bin/openclaw-server.sh status
/opt/openclaw/bin/openclaw-worker.sh status

# 查看日志
tail -f /opt/openclaw/logs/openclaw-server.log

Systemd 服务

# 创建 Server 服务
cat > /etc/systemd/system/openclaw-server.service << 'EOF'
[Unit]
Description=OpenClaw Server
After=network.target mysql.service redis.service

[Service]
Type=forking
User=openclaw
Group=openclaw
Environment=JAVA_HOME=/usr/lib/jvm/java-11
ExecStart=/opt/openclaw/bin/openclaw-server.sh start
ExecStop=/opt/openclaw/bin/openclaw-server.sh stop
ExecReload=/opt/openclaw/bin/openclaw-server.sh restart
Restart=on-failure
RestartSec=10

[Install]
WantedBy=multi-user.target
EOF

# 创建 Worker 服务
cat > /etc/systemd/system/openclaw-worker.service << 'EOF'
[Unit]
Description=OpenClaw Worker
After=network.target openclaw-server.service

[Service]
Type=forking
User=openclaw
Group=openclaw
Environment=JAVA_HOME=/usr/lib/jvm/java-11
ExecStart=/opt/openclaw/bin/openclaw-worker.sh start
ExecStop=/opt/openclaw/bin/openclaw-worker.sh stop
ExecReload=/opt/openclaw/bin/openclaw-worker.sh restart
Restart=on-failure
RestartSec=10

[Install]
WantedBy=multi-user.target
EOF

# 启用并启动
systemctl daemon-reload
systemctl enable openclaw-server openclaw-worker
systemctl start openclaw-server openclaw-worker
systemctl status openclaw-server openclaw-worker

安装验证

健康检查

# API 健康检查
curl -s http://localhost:8080/api/health | jq .

# 组件状态
curl -s http://localhost:8080/api/status | jq .

# 集群信息
curl -s http://localhost:8080/api/cluster/info | jq .

访问 Web UI

# 默认访问地址
# http://localhost:8080

# 默认管理员账号
# 用户名: admin
# 密码: admin123 (首次登录后请修改)

# 测试登录
curl -X POST http://localhost:8080/api/auth/login \
  -H "Content-Type: application/json" \
  -d '{"username":"admin","password":"admin123"}'

升级指南

Docker 升级

# 备份数据
docker-compose exec openclaw-db mysqldump -u openclaw -p openclaw > backup.sql

# 拉取新版本
docker-compose pull

# 重启服务
docker-compose down
docker-compose up -d

# 验证
docker-compose ps
curl -s http://localhost:8080/api/health

Kubernetes 升级

# Helm 升级
helm upgrade openclaw openclaw/openclaw -n openclaw

# 查看升级状态
kubectl rollout status deployment/openclaw-server -n openclaw

# 回滚（如需要）
helm rollback openclaw -n openclaw

卸载

Docker 卸载

# 停止并删除容器
docker-compose down

# 删除数据（谨慎）
docker-compose down -v
rm -rf /opt/openclaw

# 删除镜像
docker rmi $(docker images openclaw/* -q)

Kubernetes 卸载

# Helm 卸载
helm uninstall openclaw -n openclaw

# 删除命名空间
kubectl delete namespace openclaw

# 清理 PVC（谨慎）
kubectl delete pvc --all -n openclaw

安装问题排查

问题	可能原因	解决方法
端口被占用	其他服务占用	`netstat -tlnp \| grep 8080`
数据库连接失败	配置错误/网络问题	检查连接配置和网络
内存不足	JVM 配置过大	调整 JAVA_OPTS
权限问题	目录权限不足	`chown -R openclaw:openclaw /opt/openclaw`
Worker 无法注册	Server 未启动/网络问题	检查 Server 状态和网络连通性

Source

git clone https://github.com/chaterm/terminal-skills/blob/main/openclaw/installation/SKILL.mdView on GitHub

Overview

本技能提供 OpenClaw 的全套安装与部署指南，适用于从本地开发环境到生产集群的多种场景。你可以按需选择 Docker（单机或自定义配置）、Kubernetes（通过 Helm 管理的集群部署）或原生安装，并在不同环境下实现稳定运行。

How This Skill Works

你可以通过三条主路径来安装 OpenClaw：Docker 方式（使用 docker-compose.yml 一键启动全部服务）、Kubernetes 方式（通过 Helm charts 部署并可自定义 values.yaml）、以及原生安装方式（手动配置数据库、缓存和服务脚本并启用 systemd）。安装完成后，OpenClaw 将由服务端、工作节点、MySQL 数据库和 Redis 缓存等组件组成，通过定义的配置实现分布式任务调度与工作流编排。

When to Use It

需要快速搭建本地开发环境或小型试运行时，首选 Docker 方式（单机部署或自定义配置）
在生产集群中部署时，使用 Kubernetes + Helm 进行可扩展与可维护的集群化部署
需要对组件版本、资源限制和持久化存储有严格控制时，选择自定义配置的 Docker/Kubernetes 或原生安装
在受限网络环境或离线部署场景下，需要下载离线包或自有镜像源时
进行版本升级、回滚、备份恢复或系统性卸载与清理时
需要逐步替换现有平台组件并确保最小停机时间时

Quick Start

选择部署路径：Docker（推荐起步）、Kubernetes 还是原生安装，并准备相应依赖
按照对应路径执行快速上手步骤：Docker 直接拉取 docker-compose.yml 并启动；Kubernetes 通过 Helm 安装并应用 values.yaml；原生安装下载安装包并完成初始数据库与服务脚本配置
运行健康检查与日志查看，确保 API 健康、组件状态正常和集群信息可用
根据需要进行后续的自定义配置与容量规划，逐步扩展到生产环境

Best Practices

在环境中执行资源和副本数的合理配置（如 CPU/内存限额、容器 Replicas）以避免资源争夺
使用 .env 文件管理数据库和服务的敏感信息，避免将凭据写入镜像或源码
对数据库和缓存进行持久化存储，并定期执行备份（如导出 MySQL 数据库）
在升级前执行数据备份并在测试环境完成回滚验证，确保生产环境可用性
尽量锁定镜像版本标签（而非 latest），以避免意外引入破坏性改动
对生产暴露的端口和管理界面启用 TLS/身份认证，确保访问安全

Example Use Cases

初创团队在单机服务器上通过 Docker Compose 启动 OpenClaw，快速验证工作流编排能力
中大型企业在云端多节点环境部署 OpenClaw，通过 Helm 管理 server、worker、数据库和 Redis，实现弹性扩缩容
云服务提供商在自有镜像源和私有网络中进行离线部署，使用原生安装包进行系统集成与运维脚本化
在灾备场景中，使用 Docker/Kubernetes 部署并定期进行数据备份与跨区域容灾演练
对现有任务调度平台进行升级，先在测试环境验证后再逐步滚动到生产环境并进行回滚演练

Frequently Asked Questions

Add this skill to your agents

Related Skills

deployment

chaterm/terminal-skills

Kubernetes Deployment 管理

configuration

chaterm/terminal-skills

OpenClaw 配置管理

maintenance

chaterm/terminal-skills

OpenClaw 运维与故障修复

homebutler

openclaw/skills

Manage and monitor homelab servers and Docker using a single binary CLI or AI tools. No dependencies, cross-platform, supports SSH, Wake-on-LAN, Docker management, port scanning, network discovery, and resource alerts.

ghostmeet

openclaw/skills

Self-hosted meeting transcription and AI summaries. Chrome Extension captures browser tab audio, Whisper transcribes locally in real-time, Claude generates meeting summaries. Works with Google Meet, Zoom, Teams — anything in your browser.