diff --git a/lms/envs/common.py b/lms/envs/common.py
index 1f92b6f221..b5d05c9202 100644
--- a/lms/envs/common.py
+++ b/lms/envs/common.py
@@ -1590,7 +1590,7 @@ def _make_locale_paths(settings):  # pylint: disable=missing-function-docstring
 ]
 
 # Clickjacking protection can be disbaled by setting this to 'ALLOW'
-X_FRAME_OPTIONS = 'DENY'
+X_FRAME_OPTIONS = 'SAMEORIGIN'
 
 # Platform for Privacy Preferences header
 P3P_HEADER = 'CP="Open EdX does not have a P3P policy."'