diff --git a/vaadin-spring/src/main/java/com/vaadin/flow/spring/security/VaadinWebSecurity.java b/vaadin-spring/src/main/java/com/vaadin/flow/spring/security/VaadinWebSecurity.java
index cdd6820175c..1fe99e034f9 100644
--- a/vaadin-spring/src/main/java/com/vaadin/flow/spring/security/VaadinWebSecurity.java
+++ b/vaadin-spring/src/main/java/com/vaadin/flow/spring/security/VaadinWebSecurity.java
@@ -99,7 +99,29 @@
* }
*
*
+ *
+ * @deprecated Use {@link VaadinSecurityConfigurer} instead. It follows the
+ * Spring's SecurityConfigurer pattern and we recommend use it to
+ * configure Spring Security with Vaadin:
+ *
+ *
+ * @Configuration
+ * @EnableWebSecurity
+ * @Import(VaadinAwareSecurityContextHolderStrategyConfiguration.class)
+ * public class SecurityConfig {
+ * @Bean
+ * SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
+ * return http.with(VaadinSecurityConfigurer.vaadin(), configurer -> {}).build();
+ * }
+ * }
+ *
+ *
+ *
+ * Read more details in Security
+ * Configurer documentation.
*/
+@Deprecated(since = "24.9", forRemoval = true)
@Import(VaadinAwareSecurityContextHolderStrategyConfiguration.class)
public abstract class VaadinWebSecurity {