The following guide should allow you to connect to registered Raspberry Pi hosts using SSH Certificates through Smallstep SSH Professional.

What you need

Steps to Configure RemoteIoT Devices with Smallstep

[From the RemoteIoT Portal]

Register a new Device

**Copy the auto-generated RemoteIoT Device service installer on the target Raspberry Pi device

[alice_user@raspberry ~]$ curl -s -L '[<>](<>)' | sudo bash -s '5RYW7F1MA76K2Y62XD2838292B8FE2' 'Smallstep' 'Testing SSH Certificates on Host via RemoteIoT Proxy/Port'

Install proxy service on the Pi device:

[alice_user@raspberry ~]$ curl -s -L '' | sudo bash -s 

Obtain the Remove Connection command from the newly Registered Device:

Smallstep Registration, Configuration, and Test Connection

Register Smallstep SSH host: 

[alice_user@raspberry ~]$./ —team “your_team_id” —token “token_string” —tag “key=value”  —hostname "fqdn_proxy_of_raspberry_pi_device" —principal “host_ip_address”

Configure your client to access hosts using SSH Certificates:
[alice_user@raspberry ~]$  step ssh config —team “your_team_name” After the authentication flow…

Authenticate to Smallstep to get updated Host information and a new Certificate:

[alice_user@raspberry ~]$  step ssh login

View Registered Hosts in Smallstep:

[alice_user@raspberry ~]$ step ssh hosts

Connect to the host using Smallstep Certificates over SSH Professional:

[alice_user@raspberry ~]$ ssh [proxy.address.of_raspberry_pi_device] -p [device_port] -l [login_username_or_principal_on_pi_device]