Microsoft 365 Multi-Geo eDiscovery configuration
eDiscovery (Premium) capabilities allow a Multi-Geo eDiscovery administrator to search all of the Geographies without needing to utilize a "Region" security filter. Data is exported to the Azure instance of the Primary Provisioned Geography location of the multi-geo Tenant.
Without eDiscovery (Premium) capabilities, an eDiscovery manager or administrator of a Multi-Geo Tenant will be able to conduct eDiscovery only in the Primary Provisioned Geography location of that Tenant. To support the ability to conduct eDiscovery for Satellite Geography locations, a new compliance security filter parameter named "Region" is available via PowerShell. This parameter can be used by Tenants whose Primary Provisioned Geography location is in North America, Europe, or Asia Pacific. eDiscovery (Premium) is recommended for Tenants whose Primary Provisioned Geography location is not in North America, Europe, or Asia Pacific and who need to perform eDiscovery across Satellite Geography locations.
A member of the Organization Management role group or a user with the Role Management role must assign eDiscovery Manager permissions in the Microsoft Purview portal to allow others to perform eDiscovery tasks and assign a "Region" parameter in their applicable Compliance Security Filter to specify the Geography for conducting eDiscovery as Satellite Geography location. Otherwise, no eDiscovery activities will be carried out for the Satellite Geography location. Only one "Region" security filter per user is supported.
See Assign eDiscovery permissions in the compliance portal for more information. To configure the Compliance Security Filter for a Region, see Configure Office 365 Multi-Geo eDiscovery.
When the eDiscovery Manager or Administrator role is set for a particular Satellite Geography location, the eDiscovery Manager or Administrator will only be able to perform eDiscovery search actions against the SharePoint sites and OneDrive sites located in that Satellite Geography location. If an eDiscovery Manager or Administrator attempts to search SharePoint or OneDrive sites outside the specified Satellite Geography location, no results will be returned. Also, when the eDiscovery Manager or Administrator for a Satellite Geography location triggers an export, data is exported to the Azure instance of that region. This helps organizations stay in compliance by not allowing content to be exported across controlled borders.
Note
If it's necessary for an eDiscovery Manager to search across multiple SharePoint Satellite Geography locations, another user account will need to be created for the eDiscovery Manager which specifies the alternate Satellite Geography location where the OneDrive or SharePoint sites are located.
| Microsoft 365 Region | PreferredDataLocation (PDL) Value |
|---|---|
| South Korea, Japan, Singapore, Malaysia, Hong Kong Special Administrative Region | APC |
| Australia | AUS |
| Brazil | BRA |
| Canada | CAN |
| France, Netherlands, Ireland, Norway, Switzerland, Austria, Finland, Sweden, Germany | EUR |
| France | FRA |
| Germany | DEU |
| India | IND |
| Israel | ISR |
| Italy | ITA |
| Japan | JPN |
| Korea | KOR |
| Mexico | MEX |
| Norway | NOR |
| Poland | POL |
| Qatar | QAT |
| South Africa | ZAF |
| Spain | ESP |
| Sweden | SWE |
| Switzerland | CHE |
| United Arab Emirates | ARE |
| United Kingdom | GBR |
| United States | NAM |
To set the Compliance Security Filter for a Region:
Use the following syntax:
New-ComplianceSecurityFilter -Action All -FilterName <TheNameYouWantToAssign> -Region <RegionValue> -Users <UserPrincipalName>For example:
New-ComplianceSecurityFilter -Action All -FilterName "NAM eDiscovery Managers" -Region NAM -Users adwood@contoso.onmicrosoft.com
See the New-ComplianceSecurityFilter article for additional parameters and syntax.