The following guide should allow you to connect to registered Raspberry Pi hosts using SSH Certificates through Smallstep SSH Professional.

What you need

• A Smallstep Team account using SSH Professional (sign up)
• A RemoteIoT Account (sign up)

Steps to Configure RemoteIoT Devices with Smallstep

[From the RemoteIoT Portal]

Register a new Device

**Copy the auto-generated RemoteIoT Device service installer on the target Raspberry Pi device

[alice_user@raspberry ~]$ curl -s -L '[<https://remoteiot.com/install/install.sh>](<https://remoteiot.com/install/install.sh>)' | sudo bash -s '5RYW7F1MA76K2Y62XD2838292B8FE2' 'Smallstep' 'Testing SSH Certificates on Host via RemoteIoT Proxy/Port'

Install proxy service on the Pi device:

[alice_user@raspberry ~]$ curl -s -L 'https://remoteiot.com/install/install.sh' | sudo bash -s 

Obtain the Remove Connection command from the newly Registered Device:

Smallstep Registration, Configuration, and Test Connection

Register Smallstep SSH host: 

[alice_user@raspberry ~]$./ssh-host.sh —team “your_team_id” —token “token_string” —tag “key=value”  —hostname "fqdn_proxy_of_raspberry_pi_device" —principal “host_ip_address”

Configure your client to access hosts using SSH Certificates:
[alice_user@raspberry ~]$  step ssh config —team “your_team_name” After the authentication flow…

Authenticate to Smallstep to get updated Host information and a new Certificate:

[alice_user@raspberry ~]$  step ssh login

View Registered Hosts in Smallstep:

[alice_user@raspberry ~]$ step ssh hosts

Connect to the host using Smallstep Certificates over SSH Professional:

[alice_user@raspberry ~]$ ssh [proxy.address.of_raspberry_pi_device] -p [device_port] -l [login_username_or_principal_on_pi_device]