diff --git a/doc/administration/instance_limits.md b/doc/administration/instance_limits.md
index 155d49f5d036714cfbe6a00e992d25c2ad3c9c3c..80fd59df1d909282092ed460de3f36ba2e382d02 100644
--- a/doc/administration/instance_limits.md
+++ b/doc/administration/instance_limits.md
@@ -193,6 +193,27 @@ Search requests that exceed the search rate limit per minute return the followin
This endpoint has been requested too many times. Try again later.
```
+### Autocomplete users rate limit
+
+{{< history >}}
+
+- [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/368926) in GitLab 17.10 [with a flag](../administration/feature_flags.md) named `autocomplete_users_rate_limit`. Disabled by default.
+
+{{< /history >}}
+
+This setting limits autocomplete users requests as follows:
+
+| Limit | Default (requests per minute) |
+|----------------------|-------------------------------|
+| Authenticated user | 300 |
+| Unauthenticated user | 100 |
+
+Autocomplete requests that exceed the autocomplete rate limit per minute return the following error:
+
+```plaintext
+This endpoint has been requested too many times. Try again later.
+```
+
### Pipeline creation rate limit
{{< history >}}
diff --git a/doc/api/settings.md b/doc/api/settings.md
index 47ee1dd6946c9e2dc85e1069123d7b45b6ec785a..527e6b4d7f251417204f62ba451d7e467e0209d3 100644
--- a/doc/api/settings.md
+++ b/doc/api/settings.md
@@ -447,6 +447,8 @@ to configure other related settings. These requirements are
| `authorized_keys_enabled` | boolean | no | By default, we write to the `authorized_keys` file to support Git over SSH without additional configuration. GitLab can be optimized to authenticate SSH keys via the database file. Only disable this if you have configured your OpenSSH server to use the AuthorizedKeysCommand. |
| `auto_devops_domain` | string | no | Specify a domain to use by default for every project's Auto Review Apps and Auto Deploy stages. |
| `auto_devops_enabled` | boolean | no | Enable Auto DevOps for projects by default. It automatically builds, tests, and deploys applications based on a predefined CI/CD configuration. |
+| `autocomplete_users` | integer | no | Maximum number of authenticated requests per minute to the `GET /autocomplete/users` endpoint. |
+| `autocomplete_users_unauthenticated` | integer | no | Maximum number of unauthenticated requests per minute to the `GET /autocomplete/users` endpoint. |
| `automatic_purchased_storage_allocation` | boolean | no | Enabling this permits automatic allocation of purchased storage in a namespace. Relevant only to EE distributions. |
| `bulk_import_enabled` | boolean | no | Enable migrating GitLab groups by direct transfer. [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/383268) in GitLab 15.8. Setting also [available](../administration/settings/import_and_export_settings.md#enable-migration-of-groups-and-projects-by-direct-transfer) in the **Admin** area. |
| `bulk_import_max_download_file_size` | integer | no | Maximum download file size when importing from source GitLab instances by direct transfer. [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/384976) in GitLab 16.3. |
diff --git a/doc/security/rate_limits.md b/doc/security/rate_limits.md
index 3498961195d9a884c40bd807063075bd95ecd585..4494750f6a8d45be46057d360892b66f6e0a5747 100644
--- a/doc/security/rate_limits.md
+++ b/doc/security/rate_limits.md
@@ -64,6 +64,10 @@ You can set these rate limits in the **Admin** area of your instance:
- [Users API rate limits](../administration/settings/rate_limit_on_users_api.md)
- [Organizations API rate limits](../administration/settings/rate_limit_on_organizations_api.md)
+You can set these rate limits using the [ApplicationSettings API](../api/settings.md):
+
+- [Autocomplete users rate limit](../administration/instance_limits.md#autocomplete-users-rate-limit)
+
You can set these rate limits using the Rails console:
- [Webhook rate limit](../administration/instance_limits.md#webhook-rate-limit)