I want to enable dtls-srtp in janus-server with sip plugin.
I had set the self-assigned to true here.
# Certificate and key to use for DTLS (and passphrase if needed). If missing,
# Janus will autogenerate a self-signed certificate to use. Notice that
# self-signed certificates are fine for the purpose of WebRTC DTLS
# connectivity, for the time being, at least until Identity Providers
# are standardized and implemented in browsers. If for some reason you
# want to enforce the DTLS stack in Janus to enforce valid certificates
# from peers, though, you can do that setting 'dtls_accept_selfsigned' to
# 'false' below: DO NOT TOUCH THAT IF YOU DO NOT KNOW WHAT YOU'RE DOING!
# You can also configure the DTLS ciphers to offer: the default if not
# set is "DEFAULT:!NULL:!aNULL:!SHA256:!SHA384:!aECDH:!AESGCM+AES256:!aPSK"
# Finally, by default NIST P-256 certificates are generated (see #1997),
but RSA generation is still supported if you set 'rsa_private_key' to 'true'.
certificates: {
#cert_pem = "/path/to/certificate.pem"
#cert_key = "/path/to/key.pem"
#cert_pwd = "secretpassphrase"
dtls_accept_selfsigned = true
#dtls_ciphers = "your-desired-openssl-ciphers"
#rsa_private_key = false
}
But when I make calls to FreeSwitch it is still going as RTP.
However if I enable sdes-srtp in the call invite it is negotiating sdes-srtp.
But I want DTLS-SRTP to be negotiated between janus and freeswitch.
Do I need to generate self signed certificates and keep it in some folder and add those paths? But by reading the comments it seems janus auto generates it.