---
description: Learn about pull usage and limits for Docker Hub.
keywords: Docker Hub, pulls, usage, limit
title: Docker Hub pull usage and limits
linkTitle: Pulls
weight: 10
aliases:
- /docker-hub/usage/storage/
- /docker-hub/usage/repositories/
---
Unauthenticated and Docker Personal users are subject to a 6-hour pull rate limit
on Docker Hub. In contrast, Docker Pro, Team, and Business users benefit from
an unlimited pull rate.
The following pull usage and limits apply based on your subscription, subject to
fair use:
| User type | Pull rate limit per 6 hours |
|--------------------------|-----------------------------------------|
| Business (authenticated) | Unlimited |
| Team (authenticated) | Unlimited |
| Pro (authenticated) | Unlimited |
| Personal (authenticated) | 200 |
| Unauthenticated Users | 100 per IPv4 address or IPv6 /64 subnet |
## Pull definition
A pull is defined as the following:
- A Docker pull includes both a version check and any download that
occurs as a result of the pull. Depending on the client, a `docker pull` can
verify the existence of an image or tag without downloading it by performing
a version check.
- Version checks do not count towards usage pricing.
- A pull for a normal image makes one pull for a [single
manifest](https://github.com/opencontainers/image-spec/blob/main/manifest.md).
- A pull for a multi-arch image will count as one pull for each
different architecture.
## Pull attribution
Pulls from authenticated users can be attributed to either a personal or an
[organization namespace](/manuals/admin/faqs/general-faqs.md#whats-an-organization-name-or-namespace).
Attribution is based on the following:
- Private pulls: Pulls for private repositories are attributed to the
repository's namespace owner.
- Public pulls: When pulling images from a public repository, attribution is
determined based on domain affiliation and organization membership.
- Verified domain ownership: When pulling an image from an account linked to a
verified domain, the attribution is set to be the owner of that
[domain](/manuals/security/faqs/single-sign-on/domain-faqs.md).
- Single organization membership:
- If the owner of the verified domain is a company and the user is part of
only one organization within that
[company](../../admin/faqs/company-faqs.md#what-features-are-supported-at-the-company-level),
the pull is attributed to that specific organization.
- If the user is part of only one organization, the pull is attributed to
that specific organization.
- Multiple organization memberships: If the user is part of multiple
organizations under the company, the pull is attributed to the user's personal
namespace.
### Authentication
To ensure correct attribution of your pulls, you must authenticate with Docker
Hub. The following sections provide information on how to sign in to Docker Hub
to authenticate your pulls.
#### Docker Desktop
If you are using Docker Desktop, you can sign in to Docker Hub from the Docker
Desktop menu.
Select **Sign in / Create Docker ID** from the Docker Desktop menu and follow
the on-screen instructions to complete the sign-in process.
#### Docker Engine
If you're using a standalone version of Docker Engine, run the `docker login`
command from a terminal to authenticate with Docker Hub. For information on how
to use the command, see [docker login](/reference/cli/docker/login.md).
#### Docker Swarm
If you're running Docker Swarm, you must use the `--with-registry-auth` flag to
authenticate with Docker Hub. For more information, see [Create a
service](/reference/cli/docker/service/create.md#with-registry-auth). If you
are using a Docker Compose file to deploy an application stack, see [docker
stack deploy](/reference/cli/docker/stack/deploy.md).
#### GitHub Actions