What is an agentic AI system?

An agentic AI system is an autonomous AI that can plan, reason, use tools, and execute multi-step tasks without constant human input. Armor Tech builds custom agentic systems using LLMs like GPT-4 and Claude.

What is RAG (Retrieval-Augmented Generation)?

RAG is an AI technique that connects large language models to your private data via vector search, allowing AI to answer questions grounded in your documents, databases, and knowledge bases.

Where is Armor Tech based?

Armor Tech is a remote-first AI software company serving clients across UK, USA, UAE, Saudi Arabia, Europe, and Pakistan.

What kind of companies does Armor Tech work with?

We work with startups and growing businesses that want to embed AI into their products or operations — from founders building their first AI product to teams automating complex workflows.

Setup OpenClaw on AWS & Build a WhatsApp AI Chatbot

OpenClaw is one of the fastest-growing open-source AI agent frameworks. Unlike basic wrapper UIs, it connects LLMs to real tools, enabling your AI to execute tasks natively. In this guide, we will deploy OpenClaw to AWS, access the dashboard securely, and connect it to the WhatsApp Cloud API to build a powerful conversational chatbot.

Architecture Overview

Hosting: AWS EC2 (Ubuntu 22.04 LTS) running Docker.
Local Access: Secure SSH Port Forwarding (so we don't expose the dashboard to the public internet).
Integration: Meta Graph API for WhatsApp Business integrated directly into OpenClaw's webhook endpoints.

Part 1: Deploying OpenClaw to AWS EC2

Spin up an EC2 instance (we recommend a t3.medium minimum due to some processing overhead). SSH into your instance and install Docker:

sudo apt update && sudo apt install docker.io docker-compose -y
sudo systemctl enable --now docker

Next, use the official OpenClaw Docker Compose file to spin up the agent server and dashboard:

curl -O https://raw.githubusercontent.com/openclaw/openclaw/main/docker-compose.yml
sudo docker-compose up -d

Part 2: Accessing the Dashboard Locally

By default, OpenClaw runs its admin dashboard on port 8080. Exposing port 8080 directly on your AWS Security Group is a huge security risk. Instead, use SSH Local Port Forwarding to tunnel the port directly to your local computer:

ssh -i "your-key.pem" -L 8080:localhost:8080 ubuntu@your-ec2-ip

Keep this terminal window open. You can now open up your local browser and navigate to http://localhost:8080. You will see the OpenClaw deployment dashboard, but the traffic is securely tunneled to your AWS instance!

OpenClaw AWS Terminal and WhatsApp Interface

Monitoring the OpenClaw service on AWS while testing the connected WhatsApp assistant.

Part 3: Advanced WhatsApp Integration

Integrating OpenClaw with WhatsApp requires configuring the Meta Graph API so that WhatsApp forwards user messages securely to your AWS server. OpenClaw excels at omnichannel deployment, but the webhook bridge must be rock solid.

1. OpenClaw Configuration

From the OpenClaw dashboard you accessed locally, navigate to the Channels > WhatsApp tab.

Click New Connection.
Leave the API Token blank for now.
OpenClaw will generate two crucial pieces of information: a Webhook Path (e.g., /webhook/whatsapp) and a Verify Token (a random string). Save these.

2. Securing the Webhook with Nginx

Crucial Security Detail: Meta requires all webhooks to be served over HTTPS. You cannot simply give Meta your raw AWS IP address. You must configure a reverse proxy.

On your EC2 instance, install Nginx and Certbot. We need to route external secure traffic (Port 443) on a custom subdomain (e.g., api.yourdomain.com) to the internal OpenClaw webhook port (e.g., 3000), without exposing the admin dashboard (8080).

# Basic Nginx configuration for the webhook
server {
    server_name api.yourdomain.com;

    location /webhook/ {
        proxy_pass http://localhost:3000;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }

    # Block access to the root or admin paths
    location / {
        return 404;
    }
}

Run sudo certbot --nginx -d api.yourdomain.com to secure this with a free Let's Encrypt SSL certificate.

3. Meta Developer Portal Setup

Now that your server is ready to securely receive webhooks:

Log into the Meta Developer Portal.
Create a new App of type Business.
Add the WhatsApp Business Platform product to the app.
Navigate to WhatsApp > Configuration under the product menu.
Click Edit under Webhook Configuration.

Meta Developer Portal Webhook Configuration

Successfully verifying the OpenClaw Webhook URL in the Meta Developer Portal.

In the dialog that appears:

Callback URL: Enter the full secure URL to your server (e.g., https://api.yourdomain.com/webhook/whatsapp).
Verify Token: Paste the token generated by OpenClaw in Step 1.

Click Verify and Save. Meta will send a test payload to your AWS server. If your Nginx configuration is correct and OpenClaw is running, the portal will show a green "Webhook verified" success notification!

4. Finalizing the Connection

Still in the Meta portal, go to WhatsApp > API Setup. Generate a Permanent Access Token (requires a system user in Meta Business Manager) and copy your Phone Number ID. Paste these final two pieces of information back into the OpenClaw dashboard and save. Your AI Agent is now alive on WhatsApp!

Configuring the Agent Behavior

With the connection established, you can now define your agent's personality and tools within OpenClaw. Attach a connection to the OpenAI API (or a local Ollama instance), give it access to your company's support documents via OpenClaw's RAG modules, and your WhatsApp number instantly becomes a hyper-intelligent, 24/7 customer support chatbot!

Need Enterprise AI Infrastructure?

Deploying highly-available, secure AI agents requires deep expertise in MLOps and cloud infrastructure. Armor Tech builds custom self-hosted AI solutions tailored to your compliance and scale requirements.

Discuss Your Architecture