Microsoft 365 Multi-Geo eDiscovery configuration

eDiscovery (Premium) capabilities allow a Multi-Geo eDiscovery administrator to search all of the Geographies without needing to utilize a "Region" security filter. Data is exported to the Azure instance of the Primary Provisioned Geography location of the multi-geo Tenant.

Without eDiscovery (Premium) capabilities, an eDiscovery manager or administrator of a Multi-Geo Tenant will be able to conduct eDiscovery only in the Primary Provisioned Geography location of that Tenant. To support the ability to conduct eDiscovery for Satellite Geography locations, a new compliance security filter parameter named "Region" is available via PowerShell. This parameter can be used by Tenants whose Primary Provisioned Geography location is in North America, Europe, or Asia Pacific. eDiscovery (Premium) is recommended for Tenants whose Primary Provisioned Geography location is not in North America, Europe, or Asia Pacific and who need to perform eDiscovery across Satellite Geography locations.

A member of the Organization Management role group or a user with the Role Management role must assign eDiscovery Manager permissions in the Microsoft Purview portal to allow others to perform eDiscovery tasks and assign a "Region" parameter in their applicable Compliance Security Filter to specify the Geography for conducting eDiscovery as Satellite Geography location. Otherwise, no eDiscovery activities will be carried out for the Satellite Geography location. Only one "Region" security filter per user is supported.

See Assign eDiscovery permissions in the compliance portal for more information. To configure the Compliance Security Filter for a Region, see Configure Office 365 Multi-Geo eDiscovery.

When the eDiscovery Manager or Administrator role is set for a particular Satellite Geography location, the eDiscovery Manager or Administrator will only be able to perform eDiscovery search actions against the SharePoint sites and OneDrive sites located in that Satellite Geography location. If an eDiscovery Manager or Administrator attempts to search SharePoint or OneDrive sites outside the specified Satellite Geography location, no results will be returned. Also, when the eDiscovery Manager or Administrator for a Satellite Geography location triggers an export, data is exported to the Azure instance of that region. This helps organizations stay in compliance by not allowing content to be exported across controlled borders.

Note

If it's necessary for an eDiscovery Manager to search across multiple SharePoint Satellite Geography locations, another user account will need to be created for the eDiscovery Manager which specifies the alternate Satellite Geography location where the OneDrive or SharePoint sites are located.

Microsoft 365 Region PreferredDataLocation (PDL) Value
South Korea, Japan, Singapore, Malaysia, Hong Kong Special Administrative Region APC
Australia AUS
Brazil BRA
Canada CAN
France, Netherlands, Ireland, Norway, Switzerland, Austria, Finland, Sweden, Germany EUR
France FRA
Germany DEU
India IND
Israel ISR
Italy ITA
Japan JPN
Korea KOR
Mexico MEX
Norway NOR
Poland POL
Qatar QAT
South Africa ZAF
Spain ESP
Sweden SWE
Switzerland CHE
United Arab Emirates ARE
United Kingdom GBR
United States NAM

To set the Compliance Security Filter for a Region:

  1. Connect to Microsoft 365 Security & Compliance PowerShell

  2. Use the following syntax:

    New-ComplianceSecurityFilter -Action All -FilterName <TheNameYouWantToAssign> -Region <RegionValue> -Users <UserPrincipalName>
    

    For example:

    New-ComplianceSecurityFilter -Action All -FilterName "NAM eDiscovery Managers" -Region NAM -Users adwood@contoso.onmicrosoft.com
    

See the New-ComplianceSecurityFilter article for additional parameters and syntax.