Microsoft 365 Multi-Geo eDiscovery configuration

eDiscovery (Premium) capabilities allow a Multi-Geo eDiscovery administrator to search all of the Geographies without needing to utilize a "Region" security filter. Data is exported to the Azure instance of the Primary Provisioned Geography location of the multi-geo Tenant.

Without eDiscovery (Premium) capabilities, an eDiscovery manager or administrator of a Multi-Geo Tenant will be able to conduct eDiscovery only in the Primary Provisioned Geography location of that Tenant. To support the ability to conduct eDiscovery for Satellite Geography locations, a new compliance security filter parameter named "Region" is available via PowerShell. This parameter can be used by Tenants whose Primary Provisioned Geography location is in North America, Europe, or Asia Pacific. eDiscovery (Premium) is recommended for Tenants whose Primary Provisioned Geography location is not in North America, Europe, or Asia Pacific and who need to perform eDiscovery across Satellite Geography locations.

The Microsoft 365 global administrator must assign eDiscovery Manager permissions to allow others to perform eDiscovery and assign a "Region" parameter in their applicable Compliance Security Filter to specify the Geography for conducting eDiscovery as Satellite Geography location, otherwise, no eDiscovery will be carried out for the Satellite Geography location. Only one "Region" security filter per user is supported.

When the eDiscovery Manager or Administrator role is set for a particular Satellite Geography location, the eDiscovery Manager or Administrator will only be able to perform eDiscovery search actions against the SharePoint sites and OneDrive sites located in that Satellite Geography location. If an eDiscovery Manager or Administrator attempts to search SharePoint or OneDrive sites outside the specified Satellite Geography location, no results will be returned. Also, when the eDiscovery Manager or Administrator for a Satellite Geography location triggers an export, data is exported to the Azure instance of that region. This helps organizations stay in compliance by not allowing content to be exported across controlled borders.

Note

If it's necessary for an eDiscovery Manager to search across multiple SharePoint Satellite Geography locations, another user account will need to be created for the eDiscovery Manager which specifies the alternate Satellite Geography location where the OneDrive or SharePoint sites are located.

Geo location Code eDiscovery data location
Macro Region Geography 2 - Asia-Pacific APC Southeast or East Asia datacenters
Australia AUS Southeast or East Asia datacenters
Brazil BRA (eDiscovery data location coming soon)
Canada CAN US datacenters
Macro Region Geography 1 - EMEA EUR Europe datacenters
France FRA Europe datacenters
Germany DEU Europe datacenters
India IND Southeast or East Asia datacenters
Japan JPN Southeast or East Asia datacenters
Korea KOR Southeast or East Asia datacenters
Macro Region Geography 3 - Americas NAM US datacenters
Norway NOR (eDiscovery data location coming soon)
Qatar QAT (eDiscovery data location coming soon)
South Africa ZAF Europe datacenters
Sweden SWE Europe datacenters
Switzerland CHE Europe datacenters
United Arab Emirates ARE Southeast or East Asia datacenters
United Kingdom GBR Europe datacenters

To set the Compliance Security Filter for a Region:

  1. Connect to Microsoft 365 Security & Compliance PowerShell

  2. Use the following syntax:

    New-ComplianceSecurityFilter -Action All -FilterName <TheNameYouWantToAssign> -Region <RegionValue> -Users <UserPrincipalName>
    

    For example:

    New-ComplianceSecurityFilter -Action All -FilterName "NAM eDiscovery Managers" -Region NAM -Users adwood@contoso.onmicrosoft.com
    

See the New-ComplianceSecurityFilter article for additional parameters and syntax.