devices
openclaw devices
Section titled “openclaw devices”Manage device pairing requests and device-scoped tokens.
Commands
Section titled “Commands”openclaw devices list
Section titled “openclaw devices list”List pending pairing requests and paired devices.
openclaw devices listopenclaw devices list --jsonopenclaw devices approve <requestId>
Section titled “openclaw devices approve <requestId>”Approve a pending device pairing request.
openclaw devices approve <requestId>openclaw devices reject <requestId>
Section titled “openclaw devices reject <requestId>”Reject a pending device pairing request.
openclaw devices reject <requestId>openclaw devices rotate --device <id> --role <role> [--scope <scope...>]
Section titled “openclaw devices rotate --device <id> --role <role> [--scope <scope...>]”Rotate a device token for a specific role (optionally updating scopes).
openclaw devices rotate --device <deviceId> --role operator --scope operator.read --scope operator.writeopenclaw devices revoke --device <id> --role <role>
Section titled “openclaw devices revoke --device <id> --role <role>”Revoke a device token for a specific role.
openclaw devices revoke --device <deviceId> --role nodeCommon options
Section titled “Common options”--url <url>: Gateway WebSocket URL (defaults togateway.remote.urlwhen configured).--token <token>: Gateway token (if required).--password <password>: Gateway password (password auth).--timeout <ms>: RPC timeout.--json: JSON output (recommended for scripting).
- Token rotation returns a new token (sensitive). Treat it like a secret.
- These commands require
operator.pairing(oroperator.admin) scope.