diff --git a/lib/config/default.js b/lib/config/default.js
index 3d1a1367a..38bb164bf 100644
--- a/lib/config/default.js
+++ b/lib/config/default.js
@@ -27,7 +27,7 @@ module.exports = {
     upgradeInsecureRequests: 'auto',
     reportURI: undefined
   },
-  cookiePolicy: 'strict',
+  cookiePolicy: 'lax',
   protocolUseSSL: false,
   useCDN: false,
   allowAnonymous: true,
diff --git a/lib/config/index.js b/lib/config/index.js
index 020dee131..203b9ef9e 100644
--- a/lib/config/index.js
+++ b/lib/config/index.js
@@ -53,7 +53,7 @@ if (['debug', 'verbose', 'info', 'warn', 'error'].includes(config.loglevel)) {
 
 if (!['strict', 'lax', 'none'].includes(config.cookiePolicy)) {
   logger.error('Cookie SameSite policy %s does not exist. Falling back to strict. Available values are: strict, lax, none.', config.cookiePolicy)
-  config.cookiePolicy = 'strict'
+  config.cookiePolicy = 'lax'
 }
 
 // load LDAP CA