diff --git a/BTCPayServer/Hosting/BTCPayServerServices.cs b/BTCPayServer/Hosting/BTCPayServerServices.cs
index e15a88ce6..668105e89 100644
--- a/BTCPayServer/Hosting/BTCPayServerServices.cs
+++ b/BTCPayServer/Hosting/BTCPayServerServices.cs
@@ -448,7 +448,6 @@ namespace BTCPayServer.Hosting
         private static void AddBtcPayServerAuthenticationSchemes(this IServiceCollection services)
         {
             services.AddAuthentication()
-                .AddCookie()
                 .AddBitpayAuthentication()
                 .AddAPIKeyAuthentication();
         }
diff --git a/BTCPayServer/Hosting/Startup.cs b/BTCPayServer/Hosting/Startup.cs
index e3c572532..9181aad6b 100644
--- a/BTCPayServer/Hosting/Startup.cs
+++ b/BTCPayServer/Hosting/Startup.cs
@@ -10,6 +10,7 @@ using BTCPayServer.Plugins;
 using BTCPayServer.Security;
 using BTCPayServer.Services.Apps;
 using BTCPayServer.Storage;
+using Microsoft.AspNetCore.Authentication;
 using Microsoft.AspNetCore.Builder;
 using Microsoft.AspNetCore.DataProtection;
 using Microsoft.AspNetCore.Hosting;
@@ -53,6 +54,19 @@ namespace BTCPayServer.Hosting
             services.AddIdentity<ApplicationUser, IdentityRole>()
                 .AddEntityFrameworkStores<ApplicationDbContext>()
                 .AddDefaultTokenProviders();
+            services.Configure<AuthenticationOptions>(opts =>
+            {
+                opts.DefaultAuthenticateScheme = null;
+                opts.DefaultChallengeScheme = null;
+                opts.DefaultForbidScheme = null;
+                opts.DefaultScheme = IdentityConstants.ApplicationScheme;
+                opts.DefaultSignInScheme = null;
+                opts.DefaultSignOutScheme = null;
+            });
+            services.Configure<SecurityStampValidatorOptions>(opts =>
+            {
+                opts.ValidationInterval = TimeSpan.FromMinutes(5.0);
+            });
 
             services.AddBTCPayServer(Configuration);
             services.AddProviderStorage();