diff --git a/packages/cli/src/UserManagement/auth/jwt.ts b/packages/cli/src/UserManagement/auth/jwt.ts
index 647e17617b..f660782ccf 100644
--- a/packages/cli/src/UserManagement/auth/jwt.ts
+++ b/packages/cli/src/UserManagement/auth/jwt.ts
@@ -63,5 +63,9 @@ export async function resolveJwt(token: string): Promise<User> {
 
 export async function issueCookie(res: Response, user: User): Promise<void> {
 	const userData = issueJWT(user);
-	res.cookie(AUTH_COOKIE_NAME, userData.token, { maxAge: userData.expiresIn, httpOnly: true });
+	res.cookie(AUTH_COOKIE_NAME, userData.token, {
+		maxAge: userData.expiresIn,
+		httpOnly: true,
+		sameSite: 'lax',
+	});
 }