Build your first local AI assistant on DGX Station using NemoClaw in a secure sandbox, with optional Telegram.
NVIDIA NemoClaw is an open-source reference stack that simplifies running OpenClaw always-on assistants more safely. It installs the NVIDIA OpenShell runtime — an environment designed for executing agents with additional security — and connects them to local inference on your DGX Station. A single installer command (nemoclaw.sh) handles Node.js, OpenShell, and the NemoClaw CLI; the onboard wizard then creates a sandboxed agent, optional Brave Search, optional messaging channels (Telegram, Discord, or Slack), and a policy tier with network presets.
By the end of this playbook you will have a working AI agent inside an OpenShell sandbox, reachable through the Web UI or terminal TUI, with inference routed to local inference on the DGX Station. You can optionally add Telegram (with cloudflared for a public webhook URL) and optional web search — all without exposing your host filesystem or network beyond what you explicitly allow in policy.
nemoclaw.sh), which pulls Node.js, OpenShell, and the CLI as needednemoclaw onboard wizard with recommended settingsuninstall.sh flags when finishedThe following sections describe safety, risks, and your responsibilities when running this demo.
Use only a clean environment. Run this demo on a fresh device or VM with no personal data, confidential information, or sensitive credentials. Keep it isolated like a sandbox.
By installing this demo, you accept responsibility for all third-party components, including reviewing their licenses, terms, and security posture. Read and accept before you install or use.
This experience is provided "AS IS" for demonstration purposes only — no warranties, no guarantees. This is a demo, not a production-ready solution. You will need to implement appropriate security controls for your environment and use case.
By participating in this demo, you acknowledge that you are solely responsible for your configuration and for any data, accounts, and tools you connect. To the maximum extent permitted by law, NVIDIA is not responsible for any loss of data, device damage, security incidents, or other harm arising from your configuration or use of NemoClaw demo materials, including OpenClaw or any connected tools or services.
| Layer | What it protects | When it applies |
|---|---|---|
| Filesystem | Prevents reads/writes outside allowed paths. | Locked at sandbox creation. |
| Network | Blocks unauthorized outbound connections. | Hot-reloadable at runtime. |
| Process | Blocks privilege escalation and dangerous syscalls. | Locked at sandbox creation. |
| Inference | Reroutes model API calls to controlled backends. | Hot-reloadable at runtime. |
docker run, optional docker group membership)Hardware:
Software:
Verify your system before starting:
head -n 2 /etc/os-release
nvidia-smi
docker info --format '{{.ServerVersion}}'
Expected: Ubuntu 24.04, NVIDIA GB300 GPU, Docker 28.x+.
| Item | When you need it |
|---|---|
| Telegram bot token (optional) | Create with @BotFather (/newbot). You can paste it during onboarding (Step 3) or when you run nemoclaw <sandbox> channels add telegram later. |
| Brave Search API key (optional) | From Brave Search API if you enable web search during onboarding or via nemoclaw onboard --fresh --gpu (--fresh re-prompts every onboarding question, including features you previously skipped; without --fresh the wizard resumes the previous session and will not re-prompt). |
All required assets are handled by the NemoClaw installer. No manual cloning is needed.