diff --git a/README.md b/README.md
index ac3b30f59..41d7e492b 100644
--- a/README.md
+++ b/README.md
@@ -72,7 +72,6 @@ Run the **[cors-config.sh](./cors-config.sh)** script with:
 ```console
 > ipfs config --json API.HTTPHeaders.Access-Control-Allow-Origin '["http://localhost:3000", "https://webui.ipfs.io"]'
 > ipfs config --json API.HTTPHeaders.Access-Control-Allow-Methods '["PUT", "GET", "POST"]'
-> ipfs config --json API.HTTPHeaders.Access-Control-Allow-Credentials '["true"]'
 ```
 
 #### Reverting
diff --git a/cors-config.sh b/cors-config.sh
index 502d97c6e..c2a73a73b 100755
--- a/cors-config.sh
+++ b/cors-config.sh
@@ -7,7 +7,6 @@ set -e
 
 ipfs config --json API.HTTPHeaders.Access-Control-Allow-Origin "[$ALLOW_ORIGINS]"
 ipfs config --json API.HTTPHeaders.Access-Control-Allow-Methods '["PUT", "GET", "POST"]'
-ipfs config --json API.HTTPHeaders.Access-Control-Allow-Credentials '["true"]'
 
 echo "IPFS API CORS headers configured for $ALLOW_ORIGINS"
 echo "Please restart your IPFS daemon"
diff --git a/src/welcome/WelcomePage.js b/src/welcome/WelcomePage.js
index ad1b31379..929226828 100644
--- a/src/welcome/WelcomePage.js
+++ b/src/welcome/WelcomePage.js
@@ -70,7 +70,6 @@ const ConnectionStatus = ({ t, connected, sameOrigin }) => {
         <div className='bg-black-70 snow pa2 f7 nowrap overflow-x-scroll'>
           <code className='db'>$ ipfs config --json API.HTTPHeaders.Access-Control-Allow-Origin '["{ window.location.origin }", "https://webui.ipfs.io"]'</code>
           <code className='db'>$ ipfs config --json API.HTTPHeaders.Access-Control-Allow-Methods '["PUT", "GET", "POST"]'</code>
-          <code className='db'>$ ipfs config --json API.HTTPHeaders.Access-Control-Allow-Credentials '["true"]'</code>
         </div>
       </div> }
       <Trans i18nKey='notConnected.paragraph3'>