You followed the docs. You ran the installer. You opened the chat panel—and nothing happened. Or worse: the agent responded once, then went silent. Or it ran fine for ten minutes, then started eating API credits on a loop.
These aren't edge cases. They're the seven mistakes that show up in almost every first OpenClaw install. Most of them take under five minutes to fix once you know what to look for. The problem is that OpenClaw's error output isn't always loud about what went wrong—so you end up chasing symptoms instead of causes.
This guide maps each mistake to a concrete fix and a "how to avoid this next time" note, so you don't repeat it on your second workspace.
Mistake 1: Wrong or Expired API Token
The most common cause of a silent agent is a bad token. OpenClaw pulls your LLM credentials from AGENTS.md or your .env file depending on your setup, and if the token is wrong, the agent doesn't scream—it just stops.
Check your token first. Paste it into the provider's playground directly and confirm it returns a response. Then verify it's in the right variable—OPENAI_API_KEY, ANTHROPIC_API_KEY, or whichever key your model router expects.
Fix: Open your .env or AGENTS.md credential block and re-paste the token. Make sure there are no trailing spaces or newline characters—these get introduced when copying from browser dashboards.
# Quick sanity check
curl https://api.openai.com/v1/models \
-H "Authorization: Bearer $OPENAI_API_KEY"If that returns a model list, your token is valid. If it returns a 401, the token is the problem.
Next time: Store tokens in a secrets manager (1Password, Doppler, or even a local .secrets file outside your repo) and reference them by variable. Never paste raw keys directly into config files you might commit.
Mistake 2: HEARTBEAT Not Running (or Set to the Wrong Interval)
OpenClaw HEARTBEAT is the process that keeps your agent alive between tasks. If it's misconfigured, the agent completes one turn and then idles out—sometimes permanently.
The most common variants: HEARTBEAT disabled entirely (HEARTBEAT=false), interval set to 0, or the process killed by a system service manager that treats long-running processes as hung.
Fix: In your AGENTS.md or process config, confirm HEARTBEAT is enabled and set to a reasonable interval:
heartbeat:
enabled: true
interval_seconds: 30
timeout_seconds: 120If you're running OpenClaw under systemd or pm2, make sure the process manager isn't sending SIGTERM after a timeout threshold. Add a keep-alive ping or bump the TimeoutSec in your service file.
Next time: After any fresh install, tail the process log for 60 seconds and confirm you see heartbeat ticks. It takes 30 seconds to verify and saves hours of confusion later.
Mistake 3: Sandbox Misconfiguration Lets the Agent Touch Things It Shouldn't
OpenClaw sandboxing controls what the agent can read, write, and execute on your filesystem. A misconfigured sandbox either locks the agent out of paths it needs (causing silent failures) or leaves it with too much access (a security problem).
The symptom of over-restriction: the agent says it completed a task but nothing changed on disk. The symptom of under-restriction: the agent happily reads files outside its workspace, including credentials it was never meant to see.
Fix: Audit your sandbox scope in AGENTS.md. The allowed_paths list should include the agent's working directory and any explicit data directories—nothing else.
sandbox:
allowed_paths:
- /home/user/workspace/my-agent
- /home/user/data/input
denied_paths:
- /home/user/.ssh
- /home/user/.env
allow_network: falseFor a deeper look at what to lock down, the OpenClaw sandbox security guide covers the full surface area including process spawning and network egress.
Next time: Start with the narrowest sandbox that lets the agent do its job. Expand paths explicitly as you discover gaps, rather than opening wide and narrowing later.
Security Guardrails
- Never allow
/as a sandbox path. Even with file read limited, recursive traversal of root is a serious exposure. - Deny
.ssh,.env, and secrets directories explicitly. Don't rely on the agent "not knowing" those paths exist. - Set
allow_network: falseunless your agent genuinely needs outbound calls. Add specific allowed hosts if it does.
Mistake 4: Agent Not Responding in Chat (Port or Socket Mismatch)
You open the chat panel and type a message. Nothing comes back—no error, no spinner, just silence. This is almost always a port or socket mismatch between where OpenClaw is listening and where your frontend is pointing.
OpenClaw defaults to port 8471. If another process grabbed that port, or if you changed it in config without updating your frontend .env, the two sides stop talking.
Fix: Check what's actually listening:
lsof -i :8471
# or
ss -tlnp | grep 8471If nothing shows up, OpenClaw isn't running. If something else is using the port, either kill it or change OpenClaw's port in config.yaml and update NEXT_PUBLIC_API_URL (or equivalent) in your frontend config to match.
Next time: Lock your OpenClaw port in both the backend config and the frontend .env at install time. Document the port in your workspace README.md so you don't forget it six months later.
Mistake 5: Missing or Malformed AGENTS.md
The AGENTS.md file is where OpenClaw reads the agent's identity, permissions, tool access, and memory scope. A missing file means the agent runs with defaults—which often means no tools, no memory persistence, and a generic system prompt that makes it nearly useless for your actual workflow.
A malformed file (bad YAML, wrong indentation, a stray tab character) usually causes a silent parse failure. The agent loads, but with none of your custom config applied.
Fix: Run a YAML lint pass before starting the agent:
python3 -c "import yaml; yaml.safe_load(open('AGENTS.md'))" && echo "OK"If it throws a ScannerError, the line number in the output tells you exactly where the problem is. Common culprits: tabs mixed with spaces, unquoted colons in string values, and multiline strings without the | block scalar indicator.
For a walkthrough of what a complete, production-ready AGENTS.md looks like, see this workspace setup guide.
Next time: Keep a known-good AGENTS.md template in your repo and diff new configs against it before deploying.
Mistake 6: Memory Not Persisting Between Sessions
You train your agent on your preferences, it does great work, you close the session—and next time it opens, it's back to factory defaults. No memory of your name, your project structure, or any instructions you gave it.
This happens when the memory block in your config either points to a path that doesn't exist, uses in-memory storage (which flushes on restart), or lacks write permissions to the persistence directory.
Fix: Check the memory backend config:
memory:
backend: file # not "in-memory"
path: /home/user/workspace/my-agent/.memory
persist_on_shutdown: trueThen verify the path exists and is writable:
mkdir -p /home/user/workspace/my-agent/.memory
chmod 755 /home/user/workspace/my-agent/.memoryIf you're using nightly memory consolidation (AutoDream or similar), confirm the consolidation job ran by checking the .memory/sessions/ directory for timestamped files after each session.
Next time: After your first successful session, immediately check that the .memory directory has a new file. Do this before you depend on memory persistence for anything important.
Mistake 7: Tool Calls Failing Silently Because Permissions Weren't Granted
Your agent says "I've run the script" or "I've saved the file"—but it didn't. OpenClaw tool permissions are a separate layer from sandbox paths. Even if a path is in allowed_paths, the specific tool (file write, shell exec, HTTP call) also needs to be explicitly enabled in the tools block.
This is the mistake that wastes the most time because the agent doesn't tell you it failed—it just reports success on a no-op.
Fix: In your AGENTS.md, explicitly list the tools the agent is allowed to call:
tools:
file_read: true
file_write: true
shell_exec: false # only enable if you actually need it
http_get: true
http_post: falseAfter enabling a tool, test it with a trivial task ("write the word 'test' to /workspace/test.txt") and confirm the file exists on disk before trusting the agent's self-reported success.
Common Mistakes
- Trusting agent self-reports without verification. Always confirm file writes and API calls independently during setup.
- Enabling
shell_execas a default. This is the highest-risk tool permission. Only enable it if your workflow genuinely requires it, and pair it with a tight sandbox. - Skipping the tools block entirely. Omitting the block doesn't grant defaults—it grants whatever the runtime decides, which varies by version.
Next time: Build a short post-setup checklist: one test per enabled tool, verified independently. Run it every time you modify the tools block.
A Pattern Worth Noticing
Six of these seven mistakes share a root cause: the config was assumed correct rather than verified. OpenClaw gives you a lot of knobs, and the system tries to stay running even when some of them are misconfigured—which means failures are quiet.
The fix is a verification habit, not a smarter config. Run the YAML linter. Hit the API directly. Check the port. Look at the .memory directory. These take minutes and catch hours of confusion before they start.
If you're moving from an early prototype to a daily driver, building this verification pass into your deployment routine is the single most useful thing you can do. And before you expose the agent to anything sensitive, the OpenClaw security checklist is worth running through—several of the items there overlap directly with the mistakes above.
Get the config right once, document what you did, and you won't be debugging the same issues on your next workspace.
Get a Clean OpenClaw Config Built Right From the Start
If you'd rather start from a validated workspace than work backward from a broken one, the wizard generates a config with correct HEARTBEAT settings, sandbox paths, tool permissions, and memory persistence already in place.