Does using attribute SameSite=None and attribute Secure in authentication/session cookies leave you open to CSRF attacks?

I have the following web.config configuration in a ASP.NET MVC project on .NET 4.7.2

<httpRuntime targetFramework="4.7.2"/>
<authentication mode="Forms">
      <forms cookieSameSite="None" cookieless="UseCookies" requireSSL="true" />
<sessionState cookieSameSite="None" />
<httpCookies httpOnlyCookies="true" requireSSL="true" />

I believe I need to have the SameSite set to None in order to use the the cookies in cross site requests (e.g. iframe)

The question is, is this configuration sufficient in order to be protected from CSRF attacks?

How many English words
do you know?
Test your English vocabulary size, and measure
how many words do you know
Online Test
Powered by Examplum