Microsoft 365 Multi-Geo eDiscovery configuration

Advanced eDiscovery capabilities allow a multi-geo eDiscovery administrator to search all of the geos without needing to utilize a "Region" security filter. Data is exported to the Azure instance of the central location of the multi-geo tenant.

Without advanced eDiscovery capabilities, an eDiscovery manager or administrator of a multi-geo tenant will be able to conduct eDiscovery only in the central location of that tenant. To support the ability to conduct eDiscovery for satellite locations, a new compliance security filter parameter named "Region" is available via PowerShell. This parameter can be used by tenants whose central location is in North America, Europe, or Asia Pacific. Advanced eDiscovery is recommended for tenants whose central location is not in North America, Europe, or Asia Pacific and who need to perform eDiscovery across satellite geo locations.

The Microsoft 365 global administrator must assign eDiscovery Manager permissions to allow others to perform eDiscovery and assign a "Region" parameter in their applicable Compliance Security Filter to specify the region for conducting eDiscovery as satellite location, otherwise no eDiscovery will be carried out for the satellite location.

When the eDiscovery Manager or Administrator role is set for a particular satellite location, the eDiscovery Manager or Administrator will only be able to perform eDiscovery search actions against the SharePoint sites and OneDrive sites located in that satellite location. If an eDiscovery Manager or Administrator attempts to search SharePoint or OneDrive sites outside the specified satellite location, no results will be returned. Also, when the eDiscovery Manager or Administrator for a satellite location triggers an export, data is exported to the Azure instance of that region. This helps organizations stay in compliance by not allowing content to be exported across controlled borders.

Note

If it's necessary for an eDiscovery Manager to search across multiple SharePoint satellite locations, another user account will need to be created for the eDiscovery Manager which specifies the alternate satellite location where the OneDrive or SharePoint sites are located.

Geo location Code eDiscovery data location
Asia-Pacific APC Southeast or East Asia datacenters
Australia AUS Southeast or East Asia datacenters
Brazil BRA (eDiscovery data location coming soon)
Canada CAN US datacenters
Europe / Middle East / Africa EUR Europe datacenters
France FRA Europe datacenters
Germany DEU Europe datacenters
India IND Southeast or East Asia datacenters
Japan JPN Southeast or East Asia datacenters
Korea KOR Southeast or East Asia datacenters
North America NAM US datacenters
Norway NOR (eDiscovery data location coming soon)
South Africa ZAF Europe datacenters
Switzerland CHE Europe datacenters
United Arab Emirates ARE Southeast or East Asia datacenters
United Kingdom GBR Europe datacenters

To set the Compliance Security Filter for a Region:

  1. Connect to Microsoft 365 Security & Compliance Center PowerShell

  2. Use the following syntax:

    New-ComplianceSecurityFilter -Action All -FilterName <TheNameYouWantToAssign> -Region <RegionValue> -Users <UserPrincipalName>
    

    For example:

    New-ComplianceSecurityFilter -Action All -FilterName "NAM eDiscovery Managers" -Region NAM -Users adwood@contoso.onmicrosoft.com
    

See the New-ComplianceSecurityFilter article for additional parameters and syntax.