Updates from: 03/02/2024 06:08:44
Category Microsoft Docs article Related commit history on GitHub Change details
microsoft-365-copilot-overview Microsoft 365 Copilot Overview https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/copilot/microsoft-365-copilot-overview.md
Here's an explanation of how Microsoft Copilot for Microsoft 365 works:
- Copilot returns the response to the app, where the user can review and assess the response.
+We refer to the userΓÇÖs prompt and CopilotΓÇÖs response to that prompt as the ΓÇ£content of interactionsΓÇ¥ and the record of those interactions is the userΓÇÖs Copilot interaction history.
+ Microsoft Copilot for Microsoft 365 iteratively processes and orchestrates these sophisticated services to help produce results that are relevant to your organization because they're contextually based on your organizational data. ## Semantic Index
microsoft-365-copilot-privacy Microsoft 365 Copilot Privacy https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/copilot/microsoft-365-copilot-privacy.md
ms.localizationpriority: medium
description: "Learn how Microsoft Copilot for Microsoft 365 uses data and how it stores and protects that data." hideEdit: true Previously updated : 02/22/2024 Last updated : 03/01/2024 # Data, Privacy, and Security for Microsoft Copilot for Microsoft 365
Abuse monitoring for Microsoft Copilot for Microsoft 365 occurs in real-time, wi
## Data stored about user interactions with Microsoft Copilot for Microsoft 365
-When a user interacts with Microsoft Copilot for Microsoft 365 apps (such as Word, PowerPoint, Excel, OneNote, Loop, or Whiteboard), we store data about these interactions. The stored data includes the user's prompt, how Copilot responded, and information used to ground Copilot's response. For example, this stored data provides users with Copilot interaction history in [Microsoft Copilot with Graph-grounded chat](https://support.microsoft.com/topic/5b00a52d-7296-48ee-b938-b95b7209f737) and [meetings in Microsoft Teams](https://support.microsoft.com/office/0bf9dd3c-96f7-44e2-8bb8-790bedf066b1). This data is processed and stored in alignment with contractual commitments with your organizationΓÇÖs other content in Microsoft 365. The data is encrypted while it's stored and isn't used to train foundation LLMs, including those used by Microsoft Copilot for Microsoft 365.
+When a user interacts with Microsoft Copilot for Microsoft 365 apps (such as Word, PowerPoint, Excel, OneNote, Loop, or Whiteboard), we store data about these interactions. The stored data includes the user's prompt and Copilot's response, including citations to any information used to ground Copilot's response. We refer to the userΓÇÖs prompt and CopilotΓÇÖs response to that prompt as the ΓÇ£content of interactionsΓÇ¥ and the record of those interactions is the userΓÇÖs Copilot interaction history. For example, this stored data provides users with Copilot interaction history in [Microsoft Copilot with Graph-grounded chat](https://support.microsoft.com/topic/5b00a52d-7296-48ee-b938-b95b7209f737) and [meetings in Microsoft Teams](https://support.microsoft.com/office/0bf9dd3c-96f7-44e2-8bb8-790bedf066b1). This data is processed and stored in alignment with contractual commitments with your organizationΓÇÖs other content in Microsoft 365. The data is encrypted while it's stored and isn't used to train foundation LLMs, including those used by Microsoft Copilot for Microsoft 365.
To view and manage this stored data, admins can use Content search or Microsoft Purview. Admins can also use Microsoft Purview to set retention policies for the data related to chat interactions with Copilot. For more information, see the following articles:
threat-intelligence Security Copilot And Defender Threat Intelligence https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/defender/threat-intelligence/security-copilot-and-defender-threat-intelligence.md
ms.localizationpriority: medium audience: ITPro-+ - Tier1 Last updated 12/04/2023
Last updated 12/04/2023
Microsoft Security Copilot is a cloud-based AI platform that provides natural language copilot experience. It can help support security professionals in different scenarios, like incident response, threat hunting, and intelligence gathering. For more information about what it can do, read [What is Microsoft Security Copilot?](/security-copilot/microsoft-security-copilot).
-**Security Copilot integrates with Microsoft Defender Threat Intelligence**
+## Security Copilot integrates with Microsoft Defender Threat Intelligence
Security Copilot delivers from Microsoft Defender Threat Intelligence (Defender TI) information about threat actors, indicators of compromise (IOCs), and tools, as well as contextual threat intelligence. You can use the prompts and promptbooks to investigate incidents, enrich your hunting flows with threat intelligence information, or gain more knowledge about your organization's or the global threat landscape.
This article introduces you to Security Copilot and includes sample prompts that
- Be specific when referencing an incident (for example, ΓÇ£incident ID 15324ΓÇ¥). - Experiment with different prompts and variations to see what works best for your use case. Chat AI models vary, so iterate and refine your prompts based on the results you receive. - Security Copilot saves your prompt sessions. To see the previous sessions, from the Security Copilot [Home menu](/security-copilot/navigating-security-copilot#home-menu), go to **My sessions**.
-
- ![Partial screenshot of the Microsoft Security Copilot Home menu with My sessions highlighted.](/defender/threat-intelligence/media/defender-ti-and-copilot/copilot-my-sessions.png)
+
+ ![Partial screenshot of the Microsoft Security Copilot Home menu with My sessions highlighted.](media/defender-ti-and-copilot/copilot-my-sessions.png)
> [!NOTE] > For a walkthrough on Security Copilot, including the pin and share feature, read [Navigate Microsoft Security Copilot](/security-copilot/navigating-security-copilot).
This article introduces you to Security Copilot and includes sample prompts that
## Open Security Copilot
-1. Go to [Microsoft Security Copilot](https://go.microsoft.com/fwlink/?linkid=2247989) and sign in with your credentials.
-2. Make sure that the Defender TI plugin is turned on. Select the **Security Copilot plugin** icon in the lower-left corner of your screen.
-
- ![Screenshot of the Microsoft Security Copilot home page with the plugin icon at the lower-left corner highlighted.](/defender/threat-intelligence/media/defender-ti-and-copilot//copilot-plugin-button.png)
+1. Go to [Microsoft Security Copilot](https://go.microsoft.com/fwlink/?linkid=2247989) and sign in with your credentials.
+2. Make sure that the Defender TI plugin is turned on. Select the **Security Copilot plugin** icon in the lower-left corner of your screen.
+
+ ![Screenshot of the Microsoft Security Copilot home page with the plugin icon at the lower-left corner highlighted.](media/defender-ti-and-copilot/copilot-plugin-button.png)
In the **Manage plugins** pop-up window that appears, confirm that the **Microsoft Defender Threat Intelligence** toggle is turned on, then close the window.
- ![Screenshot of the Manage plugins pop-up window with the Microsoft Defender Threat Intelligence plugin highlighted.](/defender/threat-intelligence/media/defender-ti-and-copilot/copilot-manage-plugins.png)
+ ![Screenshot of the Manage plugins pop-up window with the Microsoft Defender Threat Intelligence plugin highlighted.](media/defender-ti-and-copilot/copilot-manage-plugins.png)
> [!NOTE] > Some roles can turn the toggle on or off for plugins like Defender TI. For more information, read [Manage plugins in Microsoft Security Copilot](/security-copilot/manage-plugins).
-3. Enter your prompt in the prompt bar.
+3. Enter your prompt in the prompt bar.
## Built-in system features
Security Copilot has built-in system features that can get data from the differe
To view the list of built-in system capabilities for Defender TI:
-1. In the prompt bar, enter **/**.
-2. Select **See all system capabilities**. The *ThreatIntelligence.DTI* section lists all the available capabilities for Defender TI that you can use.
+1. In the prompt bar, enter **/**.
+2. Select **See all system capabilities**. The *ThreatIntelligence.DTI* section lists all the available capabilities for Defender TI that you can use.
Security Copilot also has the following promptbooks that also deliver information from Defender TI:+ - **Vulnerability impact assessment** - Generates a report summarizing the intelligence for a known vulnerability, including steps on how to address it. - **Threat actor profile** - Generates a report profiling a known threat actor, including suggestions to defend against their common tools and tactics.
-To view these promptbooks, in the prompt bar, enter __*__.
+To view these promptbooks, in the prompt bar, enter \*.
## Sample prompts for Defender TI You can use many prompts to get information from Defender TI. This section lists some ideas and examples. ### General information about threat intelligence trends
-Get threat intelligence from threat articles and threat actors.
-**Sample prompts**
+Get threat intelligence from threat articles and threat actors.
+
+**Sample prompts** :
+ - Summarize the recent threat intelligence.-- Show me the latest threat articles.
+- Show me the latest threat articles.
- Get threat articles associated with the finance industry. ### IP address and host contextual information in relation to threat intelligence Get information on datasets associated with IP addresses and hosts, such as ports, reputation scores, components, certificates, cookies, services, and host pairs.
-**Sample prompts**
-- Give me the reputation score of the host _\<host name\>_.
+**Sample prompts**:
+
+- Give me the reputation score of the host _\<host name\>_.
- Get open ports for IP address _\<IP address\>_. - Get the SSL certificates for the IP address _\<IP address\>_. ### Threat actor mapping and infrastructure+ Get information on threat actors and the tactics, techniques, and procedures (TTPs), sponsored states, industries, and IOCs associated with them.
-**Sample prompts**
+**Sample prompts**:
+ - Tell me more about Silk Typhoon. - Share the IOCs associated with Silk Typhoon. - Share the TTPs associated with Silk Typhoon. - Share threat actors associated with Russia.
-### CVE vulnerability data
+### CVE vulnerability data
+ Get contextual information and threat intelligence on Common Vulnerabilities and Exposures (CVEs).
-**Sample prompts**
+**Sample prompts**:
+ - Share the technologies that are susceptible to the vulnerability CVE-2021-44228. - Summarize the vulnerability CVE-2021-44228. - Show me the latest CVEs.
Get contextual information and threat intelligence on Common Vulnerabilities and
## Provide feedback Your feedback on the Defender TI integration with Security Copilot helps with development. To provide feedback, in Security Copilot, select any of the following buttons at the bottom of each completed prompt:-- **Looks right** - Select this button if the results are accurate, based on your assessment. -- **Needs improvement** - Select this button if any detail in the results is incorrect or incomplete, based on your assessment. +
+- **Looks right** - Select this button if the results are accurate, based on your assessment.
+- **Needs improvement** - Select this button if any detail in the results is incorrect or incomplete, based on your assessment.
- **Inappropriate** - Select this button if the results contain questionable, ambiguous, or potentially harmful information. For each feedback button, you can provide more information in the next dialog box that appears. Whenever possible, and when the result is **Needs improvement**, write a few words explaining what can be done to improve the outcome. If you entered prompts specific to Defender TI and the results aren't related, then include that information.
For each feedback button, you can provide more information in the next dialog bo
When you interact with the Security Copilot to get Defender TI data, Security Copilot pulls that data from Defender TI. The prompts, the data retrieved, and the output shown in the prompt results are processed and stored within the Security Copilot service. [Learn more about privacy and data security in Microsoft Security Copilot](/security-copilot/privacy-data-security) ### See also+ - [What is Microsoft Security Copilot?](/security-copilot/microsoft-security-copilot) - [Privacy and data security in Microsoft Security Copilot](/security-copilot/privacy-data-security)
admin Microsoft Teams Device Usage Preview https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/activity-reports/microsoft-teams-device-usage-preview.md
f1.keywords:
Previously updated : 07/16/2020 Last updated : 02/29/2024 audience: Admin
The Microsoft 365 Reports dashboard shows you the activity overview across the p
## How to get to the Microsoft Teams device usage report
-1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.
-2. From the dashboard homepage, click on the **View more** button on the Microsoft Teams activity card.
+1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.
+2. From the dashboard homepage, select **Microsoft Teams** in the left navigation, then select the **Device usage** tab.
## Interpret the Microsoft Teams device usage report
Select **Choose columns** to add or remove columns from the report.
![Teams user device report - choose columns.](../../media/3358d5d9-931b-4d30-931f-450b2f5717da.png)
-You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis.
+You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis.
The **Microsoft Teams device usage** report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated).
-|Item|Description|
+|Metric |Definition|
|:--|:--|
-|**Metric**|**Definition**|
-|User name <br/> |The display name of the user. <br/> |
-|Windows <br/> |Selected if the user was active in the Teams desktop client on a Windows-based computer. <br/> |
-|Mac <br/> |Selected if the user was active in the Teams desktop client on a macOS computer. <br/> |
-|iOS <br/> |Selected if the user was active on the Teams mobile client for iOS. <br/> |
-|Android phone <br/> | Selected if the user was active on the Teams mobile client for Android. <br/> |
-|Chrome OS <br/> |Selected if the user was active in the Teams desktop client on a ChromeOS computer.|
-|Linux <br/> | Selected if the user was active in the Teams desktop client on a Linux computer. <br/> |
-|Web <br/> |Selected if the user was active in the Teams web client on devices.|
-|Last activity date (UTC) <br/> |The last date (UTC) that the user participated in a Teams activity. <br/> |
+|User name |The display name of the user. |
+|Windows |Selected if the user was active in the Teams desktop client on a Windows-based computer. |
+|Mac |Selected if the user was active in the Teams desktop client on a macOS computer. |
+|iOS |Selected if the user was active on the Teams mobile client for iOS. |
+|Android phone | Selected if the user was active on the Teams mobile client for Android. |
+|Chrome OS |Selected if the user was active in the Teams desktop client on a ChromeOS computer.|
+|Linux | Selected if the user was active in the Teams desktop client on a Linux computer. |
+|Web |Selected if the user was active in the Teams web client on devices.|
+|Last activity date (UTC) |The last date (UTC) that the user participated in a Teams activity. |
|Is licensed|Selected if the user is licensed to use Teams.| ## See also
-[Microsoft Teams user activity report](../activity-reports/microsoft-teams-user-activity-preview.md)
-[Microsoft Teams usage activity report](../activity-reports/microsoft-teams-usage-activity.md)
+[Microsoft Teams user activity report](../activity-reports/microsoft-teams-user-activity-preview.md)
+
+[Microsoft Teams usage activity report](../activity-reports/microsoft-teams-usage-activity.md)
admin Onedrive For Business Activity Ww https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/activity-reports/onedrive-for-business-activity-ww.md
Title: "Microsoft 365 OneDrive for Business activity reports"
+ Title: "Microsoft 365 OneDrive activity reports"
f1.keywords: - NOCSH Previously updated : 10/20/2020 Last updated : 02/29/2024 audience: Admin
search.appverid:
description: "Get the OneDrive usage report for your organization and find out the activity of every OneDrive user, the number of files shared, and the storage utilization."
-# Microsoft 365 Reports in the admin center - OneDrive for Business activity
+# Microsoft 365 Reports in the admin center - OneDrive activity
-The Microsoft 365 Reports dashboard shows you the activity overview across the products in your organization. It lets you drill in to individual product level reports to give you more granular insight about the activities within each product. Check out [the Reports overview topic](activity-reports.md).
+The Microsoft 365 Reports dashboard shows you the activity overview across the products in your organization. It lets you drill in to individual product level reports to give you more granular insight about the activities within each product. Check out [the Reports overview article](activity-reports.md).
For example, you can understand the activity of every user licensed to use OneDrive by looking at their interaction with files on OneDrive. It also helps you to understand the level of collaboration going on by looking at the number of files shared. ## How do I get to the OneDrive Activity report? 1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.
-2. From the dashboard homepage, click on the **View more** button on the OneDrive card.
+2. From the dashboard homepage, select the OneDrive button in the left navigation.
-## Interpret the OneDrive for Business activity report
+## Interpret the OneDrive activity report
You can view the activities in the OneDrive report by choosing the **Activity** tab.<br/>![Microsoft 365 reports - Microsoft OneDrive activity report.](../../media/c89df0b0-2611-4acf-9ef7-17cedf7977be.png)
Select **Choose columns** to add or remove columns from the report. <br/> ![One
You can also export the report data into an Excel .csv file by selecting the **Export** link. This exports data of all users and enables you to do simple sorting and filtering for further analysis.
-The **OneDrive for Business activity** report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated).
+The OneDrive activity report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated).
-|Item|Description|
+|Metric|Definition|
|:--|:--|
-|**Metric**|**Definition**|
-|Username <br/> |The user name of the owner of the OneDrive account. <br/> |
-|Last activity date (UTC) <br/> |The most recent day file activity occurred on the OneDrive account for the selected date range. To see activity that occurred on a specific date, select the date directly in the chart. <br/> |
-|Files viewed or edited <br/> |The number of files that the user uploaded, downloaded, modified, or viewed. <br/> |
-|Files synced <br/> |The number of files that have been synced from a user's local device to the OneDrive account. <br/> |
-|Files shared internally <br/> | The number of files that have been shared with users within the organization, or with users within groups (that might include external users). <br/> |
-|Files shared externally <br/> |The number of files that have been shared with users outside of the organization. <br/>|
-|Deleted <br/> | This indicates that the user's license was removed. <br/> NOTE: Activity for a deleted user will still display in a report as long as he or she was licensed at some time during the selected time period. The **Deleted** column helps you to note that the user may no longer be active, but contributed to the data in the report. <br/> |
-|Deleted date <br/> |The date on which the user's license was removed. <br/>|
-|Product assigned <br/> |The Microsoft 365 products that are licensed to the user.|
-|||
+|Username |The user name of the owner of the OneDrive account. |
+|Last activity date (UTC) |The most recent day file activity occurred on the OneDrive account for the selected date range. To see activity that occurred on a specific date, select the date directly in the chart. |
+|Files viewed or edited |The number of files that the user uploaded, downloaded, modified, or viewed. |
+|Files synced |The number of files that have been synced from a user's local device to the OneDrive account. |
+|Files shared internally | The number of files that have been shared with users within the organization, or with users within groups (that might include external users). |
+|Files shared externally |The number of files that have been shared with users outside of the organization. |
+|Deleted | This indicates that the user's license was removed. **NOTE**: Activity for a deleted user will still display in a report as long as he or she was licensed at some time during the selected time period. The **Deleted** column helps you to note that the user may no longer be active, but contributed to the data in the report. |
+|Deleted date |The date on which the user's license was removed. |
+|Product assigned |The Microsoft 365 products that are licensed to the user.|
+|||
admin Project Activity https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/activity-reports/project-activity.md
Title: "Microsoft 365 admin center Project activity "
Previously updated : 06/07/2022 Last updated : 02/29/2024 audience: Admin
In the **Project activity report**, you can understand the activity of every use
## How to get to the Project activity report 1. In the admin center, go to the **Reports** \> <a href="https://go.microsoft.com/fwlink/p/?linkid=2074756" target="_blank">Usage</a> page.
-2. From the dashboard homepage, click on the **View more** button on the Project card.
+2. From the dashboard homepage, select **Project** in the left navigation.
## Interpret the Project activity report
The following are definitions for each metric in the user activity table.
|Item|Description| |:--|:--|
-|**Metric**|**Definition**|
|User name|The user's principal name.| |Display name|The full name of the user.| |Last activity date|The latest date the user in that row had activity in Project, including any of the activities in the summary reports.|
admin Sharepoint Activity Ww https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/activity-reports/sharepoint-activity-ww.md
You can also export the report data into an Excel .csv file by selecting the **E
The **SharePoint activity** report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated).
-|Item|Description|
+|Metric|Definition|
|:--|:--|
-|**Metric**|**Definition**|
-|Username <br/> |The email address of the user who performed the activity on the SharePoint Site. <br/> |
-|Last activity date (UTC) <br/> |The latest date a file activity was performed or a page was visited for the selected date range. To see activity that occurred on a specific date, select the date directly in the chart. <br/> |
-|Files viewed or edited <br/> |The number of files that the user uploaded, downloaded, modified, or viewed. <br/> |
-|Files synced <br/> |The number of files that have been synced from a user's local device to the SharePoint site. <br/> |
-|Files shared internally <br/> | The count of files that have been shared with users within the organization, or with users within groups (that might include external users). <br/> |
-|Files shared externally <br/> |The number of files that have been shared with users outside of the organization. <br/>|
-|Pages visited <br/> |The visits to unique pages by the user. <br/>|
-|Deleted <br/> | This indicates that the user's license was removed. <br/> **NOTE:** Activity for a deleted user will still display in the report as long as he or she was licensed at some time during the selected time period. The Deleted column helps you to note that the user may no longer be active, but contributed to the data in the report. <br/> |
-|Deleted date <br/> |The date on which the user's license was removed. <br/>|
-|Product assigned <br/> |The Microsoft 365 products that are licensed to the user.|
+|Username |The email address of the user who performed the activity on the SharePoint Site. |
+|Last activity date (UTC) |The latest date a file activity was performed or a page was visited for the selected date range. To see activity that occurred on a specific date, select the date directly in the chart. |
+|Files viewed or edited |The number of files that the user uploaded, downloaded, modified, or viewed. |
+|Files synced |The number of files that have been synced from a user's local device to the SharePoint site. |
+|Files shared internally | The count of files that have been shared with users within the organization, or with users within groups (that might include external users). |
+|Files shared externally |The number of files that have been shared with users outside of the organization. |
+|Pages visited |The visits to unique pages by the user. |
+|Deleted | This indicates that the user's license was removed. **NOTE:** Activity for a deleted user will still display in the report as long as he or she was licensed at some time during the selected time period. The Deleted column helps you to note that the user may no longer be active, but contributed to the data in the report. |
+|Deleted date |The date on which the user's license was removed. |
+|Product assigned |The Microsoft 365 products that are licensed to the user.|
|||
admin Viva Engage Activity Report Ww https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/activity-reports/viva-engage-activity-report-ww.md
f1.keywords:
Previously updated : 10/26/2020 Last updated : 02/29/2024 audience: Admin
description: "Get the Viva Engage Activity report and know more about the number
# Microsoft 365 Reports in the admin center - Viva Engage activity report As Microsoft 365 admin, the Reports dashboard shows you data on the usage of the products within your organization. Check out [activity reports in the admin center](activity-reports.md). With the **Viva Engage Activity report**, you can understand the level of engagement of your organization with Viva Engage by looking at the number of unique users using Viva Engage to post, like or read a message and the amount of activity generated across the organization.
-
+ ## How do I get to the Viva Engage activity report?
-1. In the admin center, go to the **Reports**, and then select **Usage**.
-2. From the dashboard homepage, click on the **View more** button on the Viva Engage card.
+1. In the admin center, go to the **Reports**, and then select **Usage**.
+2. From the dashboard homepage, select **Viva Engage** in the left navigation.
-
## Interpret the Viva Engage activity report You can view the activities in the Viva Engage report by choosing the **Activity** tab.
You can also export the report data into an Excel .csv file by selecting the **E
The **Viva Engage activity** report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated).
-|Item|Description|
+|Metric|Definition|
|:--|:--|
-|**Metric**|**Definition**|
-|Username <br/> |The email address of the user. You can display the actual email address or make this field anonymous. This grid shows users who logged into Viva Engage using the Microsoft 365 account or who logged into the network using single sign-on. <br/> |
-|Display name <br/> |The full name of the user. You can display the actual email address or make this field anonymous. <br/> |
-|User state <br/> |One of three values: Activated, Deleted, or Suspended. These reports show data for active, suspended, and deleted users. They do not reflect pending users, because pending users cannot post, read, or like a message. <br/> |
-|State change date (UTC) <br/> |The date on which the user's state was changed in Viva Engage. <br/> |
-|Last activity date (UTC) <br/> | The last date that the user posted, read, or liked a message. <br/> |
-|Posted <br/> |The number of messages the user posted during the time period you specified. <br/>|
-|Read <br/> |The number of conversations that the user read during the time period you specified. <br/> |
-|Liked <br/> |The number of messages that the user liked during the time period you specified. <br/>|
-|Product assigned <br/> |The products that are assigned to this user.|
+|Username |The email address of the user. You can display the actual email address or make this field anonymous. This grid shows users who logged into Viva Engage using the Microsoft 365 account or who logged into the network using single sign-on. |
+|Display name |The full name of the user. You can display the actual email address or make this field anonymous. |
+|User state |One of three values: Activated, Deleted, or Suspended. These reports show data for active, suspended, and deleted users. They do not reflect pending users, because pending users cannot post, read, or like a message. |
+|State change date (UTC) |The date on which the user's state was changed in Viva Engage. |
+|Last activity date (UTC) | The last date that the user posted, read, or liked a message. |
+|Posted |The number of messages the user posted during the time period you specified. |
+|Read |The number of conversations that the user read during the time period you specified. |
+|Liked |The number of messages that the user liked during the time period you specified. |
+|Product assigned |The products that are assigned to this user.|
|||
admin Viva Engage Device Usage Report Ww https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/activity-reports/viva-engage-device-usage-report-ww.md
f1.keywords:
Previously updated : 10/26/2020 Last updated : 02/29/2024 audience: Admin
The Viva Engage device usage reports give you information about which devices yo
## How do I get to the Viva Engage device usage report? 1. In the admin center, go to the **Reports**, and then select **Usage**.
-2. From the dashboard homepage, select **View more** on the Viva Engage card.
+2. From the dashboard homepage, select **Viva Engage** in the left navigation, then select **Device usage**.
## Interpret the Viva Engage device usage report
admin Viva Engage Groups Activity Report Ww https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/activity-reports/viva-engage-groups-activity-report-ww.md
f1.keywords:
Previously updated : 10/26/2020 Last updated : 02/29/2024 audience: Admin
The Microsoft 365 Reports dashboard shows you the activity overview across the p
## How do I get to the Viva Engage groups activity report? 1. In the admin center, go to the **Reports**, then select **Usage**.
-2. From the dashboard homepage, click on the **View more** button on the Viva Engage card.
+2. From the dashboard homepage, select **Viva Engage** in the left navigation, then select the **Groups activity** tab.
## Interpret the Viva Engage groups activity report
You can also export the report data into an Excel .csv file by selecting the **E
The **Viva Engage groups activity** report can be viewed for trends over the last 7 days, 30 days, 90 days, or 180 days. However, if you select a particular day in the report, the table will show data for up to 28 days from the current date (not the date the report was generated).
-|Item|Description|
+|Metric|Definition|
|:--|:--|
-|**Metric**|**Definition**|
|Group name |The name of the group. | |Group admin |The name of the group administrator, or owner. | |Deleted |The number of deleted Viva Engage groups. If the group is deleted, but had activity in the reporting period it will show up in the grid with this flag set to true. |
admin Viva Learning Activity https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/activity-reports/viva-learning-activity.md
Title: "Microsoft 365 admin center Viva Learning activity reports"
Previously updated : 10/29/2021 Last updated : 02/29/2024 audience: Admin
description: "Get a Microsoft 365 Viva Learning activity report to understand Vi
# Microsoft 365 Reports in the admin center - Viva Learning activity
-As a Microsoft 365 admin, the Reports dashboard shows you the activity overview across various products in your organization. It enables you to drill in to get more granular insight about the activities specific to each product. Check out the activity reports in the Microsoft 365 admin center.
+As a Microsoft 365 admin, the Reports dashboard shows you the activity overview across various products in your organization. It enables you to drill in to get more granular insight about the activities specific to each product. Check out the activity reports in the Microsoft 365 admin center.
For example, you can understand the activity of your licensed Viva Learning users by looking at their interactions. It also helps you to understand the type of features being used within the Learning App.
-## How do I get to the to the Viva Learning activity report?
+## How do I get to the Viva Learning activity report?
-1. In the admin center, go to the **Reports** > **Usage** page.
-2. From the dashboard homepage, select the **View more** button on the Viva Learning card.
+1. In the admin center, go to the **Reports** > **Usage** page.
+2. From the dashboard homepage, select **Viva Learning** in the left navigation.
## Interpret the Microsoft 365 Apps usage report
You can get a view into your user's Viva Learning activity by looking at the **A
- Active users ΓÇô Shows you the number of active users over time. For example, you can use it to find the number of active users in your organization on a specific day over the past 30 days. - User activities ΓÇô Shows you the number of user activities, such as viewed featured content, learning tabs pinned, viewed learning objects, consumed learning objects, recommendations made, and bookmarks.
-
admin Create Dns Records At Godaddy https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/dns/create-dns-records-at-godaddy.md
To verify the record in Microsoft 365:
4. Choose **TXT** from the drop-down list.
- :::image type="content" source="../../media\dns-godaddy\godaddy-domains-TXT-save.png" alt-text="Select TXT from the Type drop-down list.":::
+ :::image type="content" source="../../media/dns-godaddy/godaddy-domains-TXT-save.png" alt-text="Select TXT from the Type drop-down list.":::
5. In the boxes for the new record, type or copy and paste the following values.
This service helps you secure and remotely manage mobile devices that connect to
2. Under **Domains**, select the three dots next to the domain you want to verify, and then select **DNS**.
- :::image type="content" source="../../media\dns-godaddy\godaddy-manage-dns.png" alt-text="Select DNS from the drop-down list.":::
+ :::image type="content" source="../../media/dns-godaddy/godaddy-manage-dns.png" alt-text="Select DNS from the drop-down list.":::
3. Under **Records**, select **ADD**.
admin Buy A Domain Name https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/get-help-with-domains/buy-a-domain-name.md
You can choose from the following top-level domains for your domain.
- .co.uk - org.uk+
+- .cloud
> [!NOTE]
admin Transfer Data Manually https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/get-help-with-domains/transfer-data-manually.md
description: "Find how to transfer data manually between two Microsoft 365 accou
# Transfer data manually between two accounts
-Prepare to roll up your sleeves and block out a chunk of time on your calendar: transferring data between two Microsoft 365 accounts is a manual, complicated, and time-consuming process. This is not an automated or supported process. We'll get you started.
+Prepare to roll up your sleeves and block out a chunk of time on your calendar: transferring data between two Microsoft 365 accounts is a manual, complicated, and time-consuming process. This isn't an automated or supported process. We help you get started.
> [!CAUTION] > There will be down time during the process where email, Skype for Business and a public website hosted on Microsoft 365 won't work. Users will get new user names and passwords, and they'll need to reset up Outlook.
Prepare to roll up your sleeves and block out a chunk of time on your calendar:
|**Tasks**|**Steps**| |:--|:--|
-|Purchase the plan you want to move to. <br/> |When you sign up, you specify the company name to use in the initial domain names: *yourcompany* .onmicrosoft.com, *yourcompany* -public.sharepoint.com, and *yourcompany* .sharepoint.com. You need to use a different *yourcompany* name than you did for any existing subscriptions. <br/> > [!NOTE]> It typically takes a minimum of several months after canceling a subscription to release the initial domain names that use *yourcompany* from our systems. Even if you plan to save all your data from your old Microsoft 365 subscription, and cancel that subscription, the old *yourcompany* value is not immediately available for use in a new subscription. |
-|Remove your custom domain from your old Microsoft 365 subscription. <br/> | Follow the [required steps before you remove a domain](remove-a-domain.md) to remove the domain name from user email addresses and remove DNS records for email and Lync for the custom domain. If you host your public website on Microsoft 365, you'll also need to remove the CNAME record that points to it. <br/> > [!IMPORTANT]> After you remove the MX record that routes email to this custom domain, email will stop working until you have added the domain to your new account, set up the new MX record, and set up your users. When you remove the DNS records for Lync, Lync will stop working. And after you remove the CNAME record that points to your public website, it will not be available. [Remove the domain](remove-a-domain.md) . <br/> |
+|Purchase the plan you want to move to. <br/> |When you sign up, you specify the company name to use in the initial domain names: *yourcompany* .onmicrosoft.com, *yourcompany* -public.sharepoint.com, and *yourcompany* .sharepoint.com. Use a different *yourcompany* name than you did for any existing subscriptions. <br/> > [!NOTE]> It typically takes a minimum of several months after canceling a subscription to release the initial domain names that use *yourcompany* from our systems. Even if you plan to save all your data from your old Microsoft 365 subscription, and cancel that subscription, the old *yourcompany* value isn't immediately available for use in a new subscription. |
+|Remove your custom domain from your old Microsoft 365 subscription. <br/> | Follow the [required steps before you remove a domain](remove-a-domain.md) to remove the domain name from user email addresses and remove DNS records for email and Lync for the custom domain. If you host your public website on Microsoft 365, you need to remove the CNAME record that points to it. <br/> > [!IMPORTANT]> After you remove the MX record that routes email to this custom domain, email will stop working until you add the domain to your new account, set up the new MX record, and set up your users. When you remove the DNS records for Lync, Lync will stop working. And after you remove the CNAME record that points to your public website, it will not be available. [Remove the domain](remove-a-domain.md) . <br/> |
|Set up your custom domain for your new subscription, and set up your users. <br/> | Set up your new subscription, including creating the required DNS records for your custom domain. <br/> Create your users, with email addresses on your custom domain. <br/> | |Transfer data from your old subscription to your new subscription. <br/> | Sign in to both accounts in separate browser windows: <br/> Right-click your browser icon, and open two private browser windows. You can use different credentials in the two windows to sign in on both accounts. <br/> [Transfer administrative settings between subscriptions](#email) <br/> [Transfer team site structure and data](#transfer-team-site-structure-and-data) <br/> [Transfer a public website between subscriptions](#transfer-a-public-website-between-subscriptions) <br/> [Transfer administrative settings between subscriptions](#email) <br/> |
-|Cancel the subscription for the plan you're done with by calling Microsoft Support for Microsoft 365. <br/> | Verify that your new subscription is working and all data has been transferred. <br/> [Contact customer support](../../business-video/get-help-support.md) to cancel your old subscription. <br/> |
+|Cancel the subscription for the plan you're done with by calling Microsoft Support for Microsoft 365. <br/> | Verify that your new subscription is working and all data has transferred to your new account. <br/> [Contact customer support](../../business-video/get-help-support.md) to cancel your old subscription. <br/> |
## Transfer administrative settings between subscriptions Go to the following pages on each account, and set up the new account based on the old account's settings.
-If you are transferring data from Microsoft 365 to Microsoft 365 Midsize Business or Microsoft 365 Enterprise, the admin pages are structured differently. Watch a [Video: Introducing Microsoft 365 Enterprise](../index.yml), and go to the following places to look at admin settings.
+If you're transferring data from Microsoft 365 to Microsoft 365 Midsize Business or Microsoft 365 Enterprise, the admin pages are structured differently. Watch a [Video: Introducing Microsoft 365 Enterprise](../index.yml), and go to the following places to look at admin settings.
For Microsoft 365 Enterprise and Microsoft 365 Midsize Business:
To save a document library or list content from a SharePoint Online environment
There are several ways to save or transfer team site data: -- You can save the old site as a template and import the template into the new site.
+- Save the old site as a template and import the template into the new site.
- To transfer documents, first manually recreate your hierarchy on the new site. Then you can open both SharePoint team sites at the same time, open both document libraries with Windows Explorer, and copy and paste the documents. See [Video: Copy or move library files by using Open with Explorer](https://support.microsoft.com/office/d18d21a0-1f9f-4f6c-ac45-d52afa0a4a2e).
There are several ways to save or transfer team site data:
Ask users to [move their email, contacts, tasks, and calendar information](https://support.microsoft.com/office/0996ece3-57c6-49bc-977b-0d1892e2aacc) after you set up your new subscription. They can get to their old email by using their initial user name, such as sue@contoso.onmicrosoft.com.
-### OneDrive for Business data:
+### OneDrive data:
-Ask users to Copy/Sync [OneDrive for Business content to their computer](https://support.microsoft.com/office/59b1de2b-519e-4d3a-8f45-51647cf291cd), and then add it back to their new subscription.
+Ask users to Copy/Sync [OneDrive content to their computer](https://support.microsoft.com/office/59b1de2b-519e-4d3a-8f45-51647cf291cd), and then add it back to their new subscription.
### OneNote
admin Manage Plugins For Copilot In Integrated Apps https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/manage-plugins-for-copilot-in-integrated-apps.md
description: "Learn how to manage plugins for Copilot in the Integrated apps pag
# Manage Plugins for Copilot in Integrated Apps > [!IMPORTANT]
-> You must be licensed with Microsoft 365 Copilot to use plugins for Copilot for Microsoft 365. During the Public Preview, admins will need to enable their tenant by contacting their Microsoft Customer Success Account Manager or submitting a support ticket requesting to "Opt-in to plugins for Copilot for Microsoft 365."
+>
+> - You must be licensed with Microsoft 365 Copilot to use plugins for Copilot for Microsoft 365.
+> - The capability is enabled by default in all Microsoft 365 Copilot licensed tenants.
+> - Admins can disable this functionality on a user and group basis and control how individual plugins are approved for use, and which plugins are enabled."
-Microsoft Copilot for Microsoft 365 is a new experience inside Microsoft 365 that combines the power of large language models with your data and Microsoft 365 apps to capture natural language commands to produce content and analyze data. Plugins for Copilot are extensions that enable Copilot to access and use third-party apps, such as Jira, Dynamics 365, or Bing Web Search. Admins can manage plugins for Copilot in the same way as they manage any other app in the Integrated apps section of the Microsoft 365 admin center. This document explains how admins can enable, disable, assign, block, or remove plugins for Copilot for their organization, and about Copilot capabilities and data privacy.
+Microsoft Copilot for Microsoft 365 is a new experience inside Microsoft 365 that combines the power of large language models with your data and Microsoft 365 apps to capture natural language commands to produce content and analyze data. Plugins for Copilot are extensions that enable Copilot to access and use third-party apps, such as Jira, [Dynamics 365](/microsoft-365-copilot/extensibility/overview-business-applications), or Bing Web Search. Admins can manage plugins for Copilot in the same way as they manage any other app in the Integrated apps section of the Microsoft 365 admin center. This document explains how admins can enable, disable, assign, block, or remove plugins for Copilot for their organization, and about Copilot capabilities and data privacy.
## Overview
Admins can block or unblock plugins for Copilot for the whole organization or sp
## View and consent to permissions and data access
-For detailed information about how Microsoft 365 Copilot uses, protects, and shares organizational information to power extensibility, see [Data, Privacy, and Security for Microsoft 365 Copilot](/microsoft-365-copilot/microsoft-365-copilot-privacy).
+For detailed information about how Microsoft 365 Copilot uses, protects, and shares organizational information to power extensibility, see [Data, Privacy, and Security for Microsoft 365 Copilot](/microsoft-365-copilot/microsoft-365-copilot-privacy).
admin Release Options In Office 365 https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/admin/manage/release-options-in-office-365.md
With Microsoft 365, you receive new product updates and features as they become
Any new release is first tested and validated by the feature team, then by the entire Microsoft 365 feature team, followed by all of Microsoft. After internal testing and validation, the next step is a **Targeted release** (formerly known as First release) to customers who opt in. At each release ring, Microsoft collects feedback and further validates quality by monitoring key usage metrics. This series of progressive validation is in place to make sure the worldwide-release is as robust as possible. The releases are pictured in the following figure.
-![Release management validation rings for Microsoft 365.](../../media\Rings_Of_Progression.png)
+![Release management validation rings for Microsoft 365.](../../media/Rings_Of_Progression.png)
For significant updates, customers are initially notified by the [Microsoft 365 Roadmap](https://products.office.com/business/office-365-roadmap). As an update gets closer to rolling out, it is communicated through your [Microsoft 365 Message center](https://admin.microsoft.com/Adminportal/Home?source=applauncher#/MessageCenter).
enterprise Advanced Data Residency https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/advanced-data-residency.md
Previously updated : 12/18/2023 Last updated : 02/29/2024 audience: ITPro - must-keep
+- essentials-overview
ms.localizationpriority: medium search.appverid: - MET150
## Overview of Advanced Data Residency
-The Microsoft 365 Advanced Data Residency add-on ("ADR") provides eligible customers with expanded coverage of Microsoft 365 workloads and Customer Data, committed data residency for local country/region datacenter regions, and prioritized tenant migration services. With Advanced Data Residency, enterprise customers can best address their data residency compliance and tenant location requirements.
+The Microsoft 365 Advanced Data Residency add-on (ADR) provides eligible customers with expanded coverage of Microsoft 365 workloads and Customer Data, committed data residency for local country/region datacenter regions, and prioritized tenant migration services. With Advanced Data Residency, enterprise customers can best address their data residency compliance and tenant location requirements.
The following workloads are included in ADR. For more information, see: - [Exchange Online](m365-dr-workload-exo.md)-- [SharePoint Online and OneDrive for Business](m365-dr-workload-spo.md)
+- [SharePoint and OneDrive](m365-dr-workload-spo.md)
- [Microsoft Teams](m365-dr-workload-teams.md)
+- [Microsoft Copilot for Microsoft 365](m365-dr-workload-copilot.md)
- [Microsoft Defender for Office P1 and Exchange Online Protection](m365-dr-workload-mdo-p1.md) - [Office for the Web](m365-dr-workload-office-for-web.md) - [Viva Connections](m365-dr-workload-viva-connections.md)
The following workloads are included in ADR. For more information, see:
### Eligibility
-The Advanced Data Residency ("ADR") add-on is intended for Microsoft 365 enterprise customers who have comprehensive data residency requirements. To be eligible to purchase ADR, customers must meet the following prerequisites:
+The Advanced Data Residency ("ADR") add-on is intended for Microsoft 365 enterprise customers who have comprehensive data residency requirements. To be eligible to purchase ADR, customers must meet the following prerequisites:
- The _Tenant_ _Default Geography_ must be one of the countries or regions included in the _Local Region Geography_: Australia, Brazil, Canada, France, Germany, India, Israel, Italy, Japan, Poland, Qatar, South Korea, Norway, South Africa, Sweden, Switzerland, United Arab Emirates, and United Kingdom. - Customers must have licenses one or more of the following products: - Microsoft 365 F1, F3, E3, or E5 - Office 365 F3, E1, E3, or E5 - Exchange Online Plan 1 or Plan 2
- - OneDrive for Business Plan 1 or Plan 2
- - SharePoint Online Plan 1 or Plan 2
+ - OneDrive Plan 1 or Plan 2
+ - SharePoint Plan 1 or Plan 2
- Microsoft 365 Business Basic, Standard or Premium Geographic availability is updated as available.
-Customers must cover 100% of paid seats in the tenant with ADR add-on license for tenant to receive data residency for ADR workloads. See the table for an example.
+Customers must cover 100% of paid licenses in the tenant with ADR add-on license for tenant to receive data residency for ADR workloads. See the table for an example.
-| ADR-related SKU | Available Seats | Allocated Seats | ADR Required Seats |
+| ADR-related SKU | Available Licenses | Allocated Licenses | ADR Required Licenses |
| | | | | | Office 365 E3 | 200 | 125 | 200 | | Microsoft 365 F1 | 1420 | 1100 | 1420 | | Exchange Online Plan 2 | 25 | 22 | 25 | | Totals | 1645 | 1247 | 1645 <sup>1</sup> |
-If you have 1645 seats purchased for ADR, then you have a data residency commitment for your _Local Region Geography_. If you have less than 1645 seats, then you do NOT have a data residency commitment, and your tenant is subject to being moved out of the _Local Region Geography_.
+If you have 1,645 licenses purchased for ADR, then you have a data residency commitment for your _Local Region Geography_. If you have fewer than 1,645 licenses, then you do NOT have a data residency commitment, and your tenant is subject to being moved out of the _Local Region Geography_.
-Customers who purchase Multi-Geo seats for their tenant don't have to also pay for ADR for the same seats. You avoid ΓÇ£double licensingΓÇ¥ a single seat for two different data residency programs. For example, if a customer would normally require 15,000 ADR seats to satisfy the program requirements, but they also have 4,000 Multi-Geo seats, then they're only required to purchase 11,000 ADR seats. The two programs combined would cover the normal ADR program requirement of 100% user coverage.
+Customers who purchase Multi-Geo licenses for their tenant don't have to also pay for ADR for the same licenses. You avoid 'double licensing' a single seat for two different data residency programs. For example, if a customer would normally require 15,000 ADR licenses to satisfy the program requirements, but they also have 4,000 Multi-Geo licenses, then they're only required to purchase 11,000 ADR licenses. The two programs combined would cover the normal ADR program requirement of 100% user coverage.
-To find out how many ADR seats, you need go to **Tenant Admin Center | Billing | Your Products** within your tenant and add up the total Purchase Quantity for all ADR-eligible SKUs to get the proper total of ADR seats required.
+To find out how many ADR licenses, you need go to the Microsoft 365 admin center under **Billing > Your Products** within your tenant and add up the total Purchased Quantity for all ADR-eligible SKUs to get the proper total of ADR licenses required.
### Tenants with a mix of Commercial and Education subscriptions When a customer has a mix of commercial and education license types including both Commercial/Public Sector (for example, E3, E5) and Education (for example, A1, A3, etc.) licenses in their subscription, the following applies: -- Customers have rights to purchase full ADR add-on for only the paid portion of Microsoft 365 SKUs and aren't obligated to cover free subscription types. However, they must cover the paid education seats with ADR (Microsoft 365 A3/A5, Office 365 A3/A5 student or faculty).
+- Customers have rights to purchase full ADR add-on for only the paid portion of Microsoft 365 SKUs and aren't obligated to cover free subscription types. However, they must cover the paid education licenses with ADR (Microsoft 365 A3/A5, Office 365 A3/A5 student or faculty).
- ADR for Education products is only available to Volume Licensing / EES (Microsoft Enrollment for Education Solutions) customers; contact your Microsoft account representative for details on how to obtain an ADR Education related SKU. ## Data Migration Management
-If all of a customer's tenant data covered by the Advanced Data Residency feature isn't already stored at rest within their eligible _Local Region Geography_, then a data migration to the _Local Region Geography_ is required. If customer tenant data covered by the Advanced Data Residency feature is already stored at rest within their eligible _Local Region Geography_, then no data migration to the _Local Region Geography_ is required.
+If all of a customer's tenant data covered by the Advanced Data Residency feature isn't already stored at rest within their eligible _Local Region Geography_, then a data migration to the _Local Region Geography_ is required. If customer tenant data covered by the Advanced Data Residency feature is already stored at rest within their eligible _Local Region Geography_, then no data migration to the _Local Region Geography_ is required.
### Starting Data Migration
-After a customer receives their Advanced Data Residency licenses, the customer needs to signal that they're ready to schedule data migration, if one is necessary. To signal your tenant is ready for its data migration, the customer administrator visits the Data Location section of the Microsoft 365 Admin Console within the **Settings -> Org Settings -> Organization Profile** area. From here the customer administrator is able to see the current location of their data-at-rest and what _Local Region Geography_ their customer data is migrated to.
+After a customer receives their Advanced Data Residency licenses, the customer needs to signal that they're ready to schedule data migration, if one is necessary. To signal your tenant is ready for its data migration, the customer _tenant_ administrator visits the Data Location section of the Microsoft 365 Admin Console within the **Settings -> Org Settings -> Organization Profile** area. From here, the customer administrator is able to see the current location of their data-at-rest and what _Local Region Geography_ their customer data is migrated to.
> [!NOTE] > Data migration won't be scheduled until the customer administrator has completed this task. The migration expectation discussed elsewhere in this documentation won't start being tracked until this task has been completed.
In addition to a notification posted to the Message Center, the Data Location se
### Migration Expectations
-Microsoft uses reasonable efforts to try to complete an Advanced Data Residency add-on customer migration within 12 months from the time the customer administrator signals they're ready for migration. However, Microsoft might not be able to complete the migration within this timeframe for all customers. For example, larger or more complex customers or situations outside of Microsoft's control might require extra time to complete the migration. Advanced Data Residency add-on customers also receive prioritized migration services for their tenants over the legacy Move Program migration option. These migration expectations also apply to all ADR EDU customers as well. Customers utilizing the legacy Move Program for a data migration who don't have the Advanced Data Residency feature, should follow [Legacy Move Program Migration Expectations](m365-dr-legacy-move-program.md#migration-expectations).
+Microsoft uses reasonable efforts to try to complete an Advanced Data Residency add-on customer migration within 12 months from the time the customer administrator signals they're ready for migration. However, Microsoft might not be able to complete the migration within this timeframe for all customers. For example, larger or more complex customers or situations outside of Microsoft's control might require extra time to complete the migration. Advanced Data Residency add-on customers also receive prioritized migration services for their tenants over the legacy Move Program migration option. These migration expectations also apply to all ADR EDU customers as well. Customers utilizing the legacy Move Program for a data migration who don't have the Advanced Data Residency feature should follow [Legacy Move Program Migration Expectations](m365-dr-legacy-move-program.md#migration-expectations).
Data moves are a back-end service operation with minimal effect on end users. We adhere to the [Microsoft Online Services Service Level Agreement (SLA)](https://go.microsoft.com/fwlink/p/?LinkId=523897) for availability so there's nothing that customers need to prepare for or to monitor during the move. Notification of any service maintenance is sent if needed.
No action is required while Microsoft moves each service and associated customer
Watch the Microsoft 365 Message Center for confirmation when moves for each workload service are complete.
-### Affect on End Users and Workloads
+### Effect on End Users and Workloads
As mentioned, data moves are a back-end operation with minimal if any effect on end users. We adhere to the [Microsoft Online Services Service Level Agreement (SLA)](https://go.microsoft.com/fwlink/p/?LinkId=523897) for availability so there's nothing that customers need to prepare for or to monitor during the move. Notification of any service maintenance is done if needed.
Due to the nature of how migrations work, there's no granular status provided to
## Related articles [Legacy Move Program](m365-dr-legacy-move-program.md)
-
+
[New datacenter geos for Microsoft Dynamics CRM Online](/power-platform/admin/new-datacenter-regions?branch=main)
-
+
[Azure services by region](https://azure.microsoft.com/regions/) [Teams experience in a Microsoft 365 Multi-Geo-enabled tenancy](/microsoftteams/teams-experience-o365odb-spo-multi-geo?branch=main)
enterprise M365 Dr Commitments https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-commitments.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro
>[!NOTE] >If you have purchased a Multi-Geo subscription, then Microsoft will store certain customer data at rest in more than one Geography based on your configuration even if you have purchased the Microsoft 365 Advanced Data Residency add-on ("ADR").
-Microsoft makes commitments to store certain customer data at rest in the applicable _Local Region Geography_ for [eligible customers](advanced-data-residency.md#eligibility) that purchase ADR. The commitments are specified below.
+Microsoft makes commitments to store certain customer data at rest in the applicable _Local Region Geography_ for [eligible customers](advanced-data-residency.md#eligibility) that purchase ADR. The commitments are specified as follows.
## Exchange Online
The following customer data is stored at rest in the _Local Region Geography_:
- Exchange Online mailbox content (e-mail body, calendar entries, and the content of e-mail attachments stored in the related _Local Region Geography_).
-## SharePoint Online/OneDrive for Business
+## SharePoint/OneDrive
The following customer data is stored at rest in the _Local Region Geography_: -- SharePoint Online site content and the files stored within that site and files uploaded to OneDrive for Business
+- SharePoint site content and the files stored within that site and files uploaded to OneDrive
## Microsoft Teams
The following customer data is stored at rest in the _Local Region Geography_:
- Microsoft Teams chat messages (including private messages, channel messages, meeting messages and images used in chats), and, for customers using Microsoft Stream (on SharePoint), meeting recordings
+## Microsoft Copilot for Microsoft 365
+
+The following customer data is stored at rest in the _Local Region Geography_:
+
+- Any stored content of interactions with Microsoft Copilot for Microsoft 365 to the extent not included in the preceding commitments.
+ ## Microsoft Defender for Office P1 The following customer data is stored at rest in the _Local Region Geography_: - MDO P1 doesn't store any customer data within its service.-- Exchange Online Protection (EOP). The following customer data is stored at rest in the _Local Region Geography_: Service configuration data and policies, quarantined email and attachments, junk email, grading analysis, block lists (url, tenant, user), spam domains, reports, and alerts
+- Exchange Online Protection (EOP). The following customer data is stored at rest in the _Local Region Geography_: Service configuration data and policies, quarantined email and attachments, junk email, grading analysis, blocklists (url, tenant, user), spam domains, reports, and alerts
## Office for the Web
The following customer data is stored at rest in the _Local Region Geography_:
The following customer data is stored in the _Local Region Geography_: -- Viva Connections Dashboard and Feed can have content sourced from SharePoint Online, Exchange Online and Microsoft Teams. All customer data sourced from these services covered by data residency commitments will be stored in the _Local Region Geography_. Refer to [Exchange Online](m365-dr-workload-exo.md), [SharePoint Online](m365-dr-workload-spo.md) and [Microsoft Teams](m365-dr-workload-teams.md) workload data residency pages for more details.
+- Viva Connections Dashboard and Feed can have content sourced from SharePoint, Exchange Online and Microsoft Teams. All customer data sourced from these services covered by data residency commitments will be stored in the _Local Region Geography_. Refer to [Exchange Online](m365-dr-workload-exo.md), [SharePoint](m365-dr-workload-spo.md), and [Microsoft Teams](m365-dr-workload-teams.md) workload data residency pages for more details.
## Viva Topics The following customer data is stored at rest in the _Local Region Geography_: - All the topics and customer data snippets discovered are stored within the relevant _Geographies_ in Exchange Online Substrate (site or arbitration mailboxes, and Substrate). All topic customer data is partitioned based on which _Local Region Geography_ the data came from within your tenant.-- Machine Learning ("ML") models are trained on public web data, and as such don't contain any customer data from your tenant. In the future it's possible we'll use customer data to improve accuracy of the ML models, in which case the data handling of ML models will follow the same policies as any other customer content (including data residency, retention, access control, sensitivity).-- Topic highlighting is computed dynamically when the SharePoint Online page is rendered by running a language model against the content of the page and linking it with the knowledge base of Topics. The Topics data is sourced from the Substrate in the _Local Region Geography_.
+- Machine Learning ("ML") models are trained on public web data, and as such don't contain any customer data from your tenant. In the future, it's possible we'll use customer data to improve accuracy of the ML models, in which case the data handling of ML models will follow the same policies as any other customer content (including data residency, retention, access control, sensitivity).
+- Topic highlighting is computed dynamically when the SharePoint page is rendered by running a language model against the content of the page and linking it with the knowledge base of Topics. The Topics data is sourced from the Substrate in the _Local Region Geography_.
- The administration configuration data is stored within the _Local Region Geography_. ## Purview Audit (Standard)
The following customer data is stored at rest in the _Local Region Geography_:
- Teams channel messages - Teams chats - Teams private channel messages
- - SharePoint Online, OneDrive for Business, Exchange Online and Microsoft Teams follow the data residency commitments for those services. Refer to [Exchange Online](m365-dr-workload-exo.md), [SharePoint Online](m365-dr-workload-spo.md) and [Microsoft Teams](m365-dr-workload-teams.md) workload data residency pages for more details.
+ - SharePoint, OneDrive, Exchange Online and Microsoft Teams follow the data residency commitments for those services. Refer to [Exchange Online](m365-dr-workload-exo.md), [SharePoint](m365-dr-workload-spo.md), and [Microsoft Teams](m365-dr-workload-teams.md) workload data residency pages for more details.
- Training classifiers - Disposition data - Mappings between retention labels and Data Loss Prevention (DLP) policies ## Data lifecycle management - Records Management
-The following customer data will be stored at rest in the _Local Region Geography_:
+The following customer data is stored at rest in the _Local Region Geography_:
- Record retention label definitions, file plan definitions, event-based retention policy settings, disposition review records and records of deletion
The following customer data is stored at rest in the _Local Region Geography_:
The following customer data is stored at rest in the _Local Region Geography_: -- DLP admin configuration, DLP policies in Compliance Center, DLP monitored activities, violation history, Activity Explorer and Microsoft 365 unified audit logs, quarantine storage, DLP Alerts and DLP Alert management dashboard
+- DLP admin configuration, DLP policies in Compliance Portal, DLP monitored activities, violation history, Activity Explorer and Microsoft 365 unified audit logs, quarantine storage, DLP Alerts and DLP Alert management dashboard
## Information Protection - Office Message Encryption
enterprise M365 Dr Legacy Move Program https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-legacy-move-program.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro
## Remaining Countries/regions in the Move Program > [!NOTE]
-> Even though the Move Program is officially ending, we still have some in-flight geographies that we will see through to completion, based on the original 24-month migration commitment. Please refer to the table below for the remaining countries/regions and their migration deadlines.
+> Even though the Move Program is officially ending, we still have some in-flight geographies that we will see through to completion, based on the original 24-month migration commitment. Please refer to the following table for the remaining countries/regions and their migration deadlines.
| Customers with signup country/region in | Original Opt-in: migration commitment date | Final Opt-in (above): migration commitment date | |:--|:--|:--|
With the release of Advanced Data Residency, we're only providing a data residen
### Migration Expectations
-Microsoft will use reasonable efforts to try to complete a legacy Move Program migration for customers who request a migration between November 1, 2022 and April 30, 2023, by June 2025. Customers who requested a migration in the legacy Move Program prior to November 1, 2022, will continue being migrated with reasonable efforts by Microsoft towards the intended completion date provided to them previously. However, Microsoft may not be able to complete the migration within this timeframe for all customers. For example, significantly larger or more complex customers or situations outside of Microsoft's control may require additional time to complete the migration. Customers utilizing the Advanced Data Residency feature for a data migration will instead follow the [Advanced Data Residency Migration Expectations](advanced-data-residency.md#migration-expectations).
+Microsoft will use reasonable efforts to try to complete a legacy Move Program migration for customers who request a migration between November 1, 2022 and April 30, 2023, by June 2025. Customers who requested a migration in the legacy Move Program prior to November 1, 2022, will continue being migrated with reasonable efforts by Microsoft towards the intended completion date provided to them previously. However, Microsoft might not be able to complete the migration within this timeframe for all customers. For example, significantly larger or more complex customers or situations outside of Microsoft's control might require more time to complete the migration. Customers utilizing the Advanced Data Residency feature for a data migration will instead follow the [Advanced Data Residency Migration Expectations](advanced-data-residency.md#migration-expectations).
Data moves are a back-end service operation with minimal impact to end-users. We adhere to the [Microsoft Online Services Service Level Agreement (SLA)](https://go.microsoft.com/fwlink/p/?LinkId=523897) for availability so there's nothing that customers need to prepare for or to monitor during the move. Notification of any service maintenance is done if needed.
Here are answers to general questions about moving applicable customer data at
Applicable customer data is a term that refers to a subset of customer data defined in the [Microsoft Online Services Terms](https://aka.ms/ost): - Exchange Online mailbox content (email body, calendar entries, and the content of email attachments)-- SharePoint Online site content and the files stored within that site-- Files uploaded to OneDrive for Business-- Teams chat data for group and private chats (files in Teams folders or placed in chat are managed by SharePoint Online and OneDrive for Business, respectively)
+- SharePoint site content and the files stored within that site
+- Files uploaded to OneDrive
+- Teams chat data for group and private chats (files in Teams folders or placed in chat are managed by SharePoint and OneDrive, respectively)
</details> ### What is in scope for Teams migration? <details><summary>Select to expand</summary>
-In addition to Exchange Online, SharePoint Online, and OneDrive for Business; Microsoft will migrate Teams data to the local datacenter.
+In addition to Exchange Online, SharePoint, and OneDrive; Microsoft will migrate Teams data to the local datacenter.
- Teams chat messages, including private messages and channel messages. - Teams images used in chats.
-Teams files are stored in SharePoint Online and Teams chat files are stored in OneDrive for Business. Voicemail, calendar, and contacts are stored in Exchange Online. In many cases, Exchange Online, SharePoint Online, and OneDrive for Business are already used by the customer in the local datacenter geo and are also part of the Microsoft 365 migration program for eligible customer countries/regions.
+Teams files are stored in SharePoint and Teams chat files are stored in OneDrive. Voicemail, calendar, and contacts are stored in Exchange Online. In many cases, Exchange Online, SharePoint, and OneDrive are already used by the customer in the local datacenter geo and are also part of the Microsoft 365 migration program for eligible customer countries/regions.
</details> ### At what point is my migration complete so that my _Tenant's_ applicable customer data is being stored at rest in my new geo? <details><summary>Select to expand</summary>
-Due to shared dependencies between Exchange Online and SharePoint Online/OneDrive for Business, any migration can't be considered
-completed until both services are migrated. Exchange Online and SharePoint Online/OneDrive for Business often migrate at separate times and independently from one another. Customer _Tenant_ admins receive confirmation in Message Center when each service migration is completed and can view the data location card in the Admin Center at any time to confirm the applicable customer data at rest location for
+Due to shared dependencies between Exchange Online and SharePoint/OneDrive, any migration can't be considered
+completed until both services are migrated. Exchange Online and SharePoint/OneDrive often migrate at separate times and independently from one another. Customer _Tenant_ admins receive confirmation in Message Center when each service migration is completed and can view the data location card in the Admin Center at any time to confirm the applicable customer data at rest location for
each service. </details>
All Microsoft 365 services run the same versions in the datacenters, so you can
### What is the impact of having different services located in different geos? <details><summary>Select to expand</summary>
-Some of the Microsoft 365 services may be located in different geos for some existing customers and for customers that are in the middle of the move process. Our services run independently of each other and there's no impact on the user experience if this is the case. However, for data residency purposes, a _Tenant_ migration can't be considered as complete until both Exchange Online and SharePoint Online/OneDrive for Business are migrated to the same datacenter geo.
+Some of the Microsoft 365 services may be located in different geos for some existing customers and for customers that are in the middle of the move process. Our services run independently of each other and there's no impact on the user experience if this is the case. However, for data residency purposes, a _Tenant_ migration can't be considered as complete until both Exchange Online and SharePoint/OneDrive are migrated to the same datacenter geo.
</details>
See [User experience in a Multi-Geo environment](multi-geo-user-experience.md) f
### How do I know the move is complete? <details><summary>Select to expand</summary>
-Watch the Microsoft 365 Message Center for confirmation that the move of each service's data is complete. When each service's data is moved, we post a completion notice so you get three completion notices: one each for Exchange Online, SharePoint Online, and Skype for Business Online. You can also verify the location of your customer data at rest via the Data Location section under your Organization Profile in the Microsoft 365 admin center.
+Watch the Microsoft 365 Message Center for confirmation that the move of each service's data is complete. When each service's data is moved, we post a completion notice so you get three completion notices: one each for Exchange Online, SharePoint, and Skype for Business Online. You can also verify the location of your customer data at rest via the Data Location section under your Organization Profile in the Microsoft 365 admin center.
</details>
enterprise M365 Dr Overview https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-overview.md
f1.keywords: - NOCSH Previously updated : 12/19/2023 Last updated : 02/29/2024 - it-pro
In order to promote clarity in the capability descriptions on data residency fun
| Term | Definition | |:--|:--|
-|Macro Region Geography <br/> |Macro Region Geography 1 ΓÇô EMEA, Macro Region Geography 2 ΓÇô Asia Pacific, Macro Region Geography 3 - Americas <br/> |
-|Macro Region Geography 1 - EMEA <br/> |Data centers in Austria, Finland, France, Ireland, Israel, Italy, Netherlands, Poland, Sweden <br/> |
-|Macro Region Geography 2 - Asia Pacific <br/> |Data centers in Australia, Hong Kong Special Administrative Region, Japan, Malaysia, Singapore, South Korea <br/> |
-|Macro Region Geography 3 - Americas <br/> |Data centers in Brazil, Chile, United States <br/> |
-|Local Region Geography <br/> |Australia, Brazil, Canada, France, Germany, India, Israel, Italy, Japan, Poland, Qatar, South Korea, Norway, South Africa, Sweden, Switzerland, United Arab Emirates, United Kingdom <br/> |
-|Expanded Local Region Geography <br/> | Future planned data center regions: Indonesia, Spain, Mexico, Malaysia, Austria, Chile, New Zealand, Denmark, Greece, Taiwan, Saudi Arabia <br/> |
-|Geography <br/> |_Local Region Geography, Expanded Local Region Geography_, or _Macro Region Geography_ <br/> |
-|Satellite Geography <br/> |If a customer subscribes to the Multi Geo service, then they can cause defined user customer data to be stored in other Geographies outside of the _Tenant_ _Primary Provisioned Geography_ <br/> |
-|Microsoft Entra ID <br/> |Microsoft Entra ID <br/> |
-|Tenant <br/> |A _Tenant_ represents an organization in Microsoft Entra ID. It's a reserved Microsoft Entra service instance that an organization receives and owns when it signs up for a Microsoft cloud service such as Azure or Microsoft 365. Each Microsoft Entra ID _Tenant_ is distinct and separate from other Microsoft Entra ID _Tenant's_ <br/> |
-|Default Geography <br/> |When an _AAD Tenant_ is created, a country/region is provided by the customer during the sign-up process. This country/region determines the default Geography for all Microsoft 365 services. In some cases, not all services are able to provision in this single _Default Geography_. See _Microsoft 365 Service provisioning mapping_ below for a description. <br/> |
-|Microsoft 365 Service provisioning mapping <br/> |All Microsoft 365 Services use the _Default Geography_ to determine where a given _Tenant's_ specified data will be provisioned and stored. <br/> |
-|Microsoft 365 Service provisioning country mapping <br/> |Refer to [data maps](https://aka.ms/datamaps) to learn where a given service provisions specified customer data, based on the _Tenant Default Geography._ <br/> |
-|Primary Provisioned Geography <br/> |A given Microsoft 365 service use the _Tenant Default Geography_ combined with the _Microsoft 365 Service provisioning country mapping_ to determine which _Geography_ to provision customer data into. <br/> |
-|Microsoft 365 Admin Center Data Location <br/> |To see the _Primary Provisioned Geography_ for Exchange Online, SharePoint Online and Microsoft Teams refer to Office 365 Admin Center in Settings; Org settings; Organization profile; Data location card. <br/> |
-|Microsoft 365 Multi-Geo Capabilities <br/> |Microsoft 365 Multi-Geo Capabilities allows a single _Tenant_ to store customer data-at-rest across multiple geographies rather than be limited to the single _Primary Provisioned Geography_. See the Multi-Geo description for more detail. <br/> |
-|Preferred Data Location (PDL) <br/> |Used for _Tenants_ with a Multi-Geo subscription. A property set by the administrator that indicates where the user or shared resource's s data should be stored at-rest. See the Multi-Geo description for more detail. <br/> |
-|Advanced Data Residency (ADR) <br/> |A new Microsoft 365 add-on service that guarantees customer data residency for a defined set of services. See section 3 <br/> |
-|Privacy and Security Product Terms <br/> |Privacy and Security Terms for Microsoft 365 services provides some customer data location related commitments. The document can be found <a href="https://www.microsoft.com/licensing/terms/en-US/product/PrivacyandSecurityTerms/EAEAS" target="_blank">here</a>. The extract of the relevant section (on November 1, 2022) is:<br>**Office 365 Services.** If Customer provisions its _Tenant_ in Australia, Brazil, Canada, the European Union, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, the United Kingdom, the United Arab Emirates, or the United States, Microsoft stores the following Customer Data at rest only within that Geo: (1) Exchange Online mailbox content (e-mail body, calendar entries, and the content of e-mail attachments), (2) SharePoint Online site content and the files stored within that site, (3) files uploaded to OneDrive for Business, and (4) Microsoft Teams chat messages (including private messages, channel messages, meeting messages and images used in chats), and for customers using Microsoft Stream (on SharePoint), meeting recordings.
-|Workloads <br/> |Often used to refer to a Microsoft 365 service such as but not limited to Exchange Online, SharePoint Online, Microsoft Teams, etc.|
+|Macro Region Geography <br/> |Macro Region Geography 1 ΓÇô EMEA, Macro Region Geography 2 ΓÇô Asia Pacific, Macro Region Geography 3 - Americas <br/> |
+|Macro Region Geography 1 - EMEA <br/> |Data centers in Austria, Finland, France, Ireland, Israel, Italy, Netherlands, Poland, Sweden <br/> |
+|Macro Region Geography 2 - Asia Pacific <br/> |Data centers in Australia, Hong Kong Special Administrative Region, Japan, Malaysia, Singapore, South Korea <br/> |
+|Macro Region Geography 3 - Americas <br/> |Data centers in Brazil, Chile, United States <br/> |
+|Local Region Geography <br/> |Australia, Brazil, Canada, France, Germany, India, Israel, Italy, Japan, Poland, Qatar, South Korea, Norway, South Africa, Sweden, Switzerland, United Arab Emirates, United Kingdom <br/> |
+|Future Local Region Geography <br/> | Future planned data center regions: Indonesia, Spain, Mexico, Malaysia, Austria, Chile, New Zealand, Denmark, Greece, Taiwan, Saudi Arabia <br/> |
+|Geography <br/> |_Local Region Geography, Future Local Region Geography_, or _Macro Region Geography_ <br/> |
+|Satellite Geography <br/> |If a customer subscribes to the Multi Geo service, then they can set policy at a user level to store customer data in other Geographies outside of the _Tenant_ _Primary Provisioned Geography_ <br/> |
+|Microsoft Entra ID <br/> |Microsoft Entra ID <br/> |
+|Tenant <br/> |A _Tenant_ represents an organization in Microsoft Entra ID. It's a reserved Microsoft Entra service instance that an organization receives and owns when it signs up for a Microsoft cloud service such as Azure or Microsoft 365. Each Microsoft Entra ID _Tenant_ is distinct and separate from other Microsoft Entra ID _Tenant's_ <br/> |
+|Default Geography <br/> |When a _Microsoft Entra ID Tenant_ is created, a country/region is provided by the customer during the sign-up process. This country/region determines the default Geography for all Microsoft 365 services. In some cases, not all services are able to provision in this single _Default Geography_. See _Microsoft 365 Service provisioning mapping_ below for a description. <br/> |
+|Microsoft 365 Service provisioning mapping <br/> |All Microsoft 365 Services use the _Default Geography_ to determine where a given _Tenant's_ specified data will be provisioned and stored. <br/> |
+|Microsoft 365 Service provisioning country mapping <br/> |Refer to [data maps](https://aka.ms/datamaps) to learn where a given service provisions specified customer data, based on the _Tenant Default Geography._ <br/> |
+|Primary Provisioned Geography <br/> |A given Microsoft 365 service uses the _Tenant Default Geography_ combined with the _Microsoft 365 Service provisioning country mapping_ to determine which _Geography_ to provision customer data into. <br/> |
+|Microsoft 365 admin center Data Location <br/> |To see the _Primary Provisioned Geography_ for Exchange Online, SharePoint, OneDrive, and Microsoft Teams refer to Microsoft 365 admin center in **Admin > Settings > Org Settings > Organization Profile > Data Location**. <br/> |
+|Microsoft 365 Multi-Geo Capabilities <br/> |Microsoft 365 Multi-Geo Capabilities allows a single _Tenant_ to store customer data-at-rest across multiple geographies rather than be limited to the single _Primary Provisioned Geography_. See the Multi-Geo description for more detail. <br/> |
+|Preferred Data Location (PDL) <br/> |Used for _Tenants_ with a Multi-Geo subscription. A property set by the administrator that indicates where the user or shared resource's data should be stored at-rest. See the Multi-Geo description for more detail. <br/> |
+|Advanced Data Residency (ADR) <br/> |A new Microsoft 365 add-on service that guarantees customer data residency for a defined set of services. See section 3 <br/> |
+|Privacy and Security Product Terms <br/> |Privacy and Security Terms for Microsoft 365 services provides some customer data location related commitments. The document can be found <a href="https://www.microsoft.com/licensing/terms/en-US/product/PrivacyandSecurityTerms/EAEAS" target="_blank">here</a>. The extract of the relevant section (on November 1, 2022) is:<br>**Office 365 Services.** If Customer provisions its _Tenant_ in Australia, Brazil, Canada, the European Union, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, the United Kingdom, the United Arab Emirates, or the United States, Microsoft stores the following Customer Data at rest only within that Geo: (1) Exchange Online mailbox content (e-mail body, calendar entries, and the content of e-mail attachments), (2) SharePoint site content and the files stored within that site, (3) files uploaded to OneDrive, and (4) Microsoft Teams chat messages (including private messages, channel messages, meeting messages and images used in chats), and for customers using Microsoft Stream (on SharePoint), meeting recordings, and (5) any stored content of interactions with Microsoft Copilot for Microsoft 365 to the extent not included in the preceding commitments.
+|Workloads <br/> |Often used to refer to a Microsoft 365 service such as but not limited to Exchange Online, SharePoint, OneDrive, Microsoft Teams, etc.|
## Overview of Data Residency
-Microsoft 365 Cloud services run on our data centers around the world and provide services to customers around the world. Customer data may be stored in multiple data centers. Data residency refers to the geographic location where customer data is stored at rest. Data residency is important for government, public sector, education and regulated commercial entities to help ensure protection of personal and/or sensitive information. In many countries/regions, customers are expected to comply with laws, regulations or industry standards that explicitly govern the location of data storage.
+Microsoft 365 Cloud services run on our data centers around the world and provide services to customers around the world. Customer data might be stored in multiple data centers. Data residency refers to the geographic location where customer data is stored at rest. Data residency is important for government, public sector, education and regulated commercial entities to help ensure protection of personal and/or sensitive information. In many countries/regions, customers are expected to comply with laws, regulations or industry standards that explicitly govern the location of data storage.
Microsoft makes decisions on where to persistently store customer data based on two factors:
Microsoft makes decisions on where to persistently store customer data based on
### _Default Geography_ of the Microsoft Entra ID _Tenant_
-When a customer creates a new Microsoft Entra ID _Tenant_, the customer enters a country/region during the creation process. This country/region is what defines the _Default Geography_ for the _Tenant_. There are multiple paths to creating _Tenants_. They can be created through Microsoft Entra ID forms, they can be created when trying out new Microsoft 365 services (trials), etc. Once a _Tenant_ is created, the _Default Geography_ cannot be changed.
+When a customer creates a new Microsoft Entra ID _Tenant_, the customer enters a country/region during the creation process. This country/region is what defines the _Default Geography_ for the _Tenant_. There are multiple paths to creating _Tenants_. They can be created through Microsoft Entra ID forms, they can be created when trying out new Microsoft 365 services (trials), etc. Once a _Tenant_ is created, the _Default Geography_ can't be changed.
### Available Geographies for a given service
-Microsoft 365 services are not deployed to all Microsoft data centers globally. The larger services, like Exchange Online, SharePoint Online and Microsoft Teams are universally deployed to all _Geographies_. Other services make decisions on where to deploy their services based on the number of customers, regional affiliations, and software architectures. When a customer first uses a service in this category, the provisioning logic uses the _Default Geography_ and the supported _Geographies_ to determine where to provision a given customer.
+Microsoft 365 services aren't deployed to all Microsoft data centers globally. The larger services, like Exchange Online, SharePoint, OneDrive, and Microsoft Teams are universally deployed to all _Geographies_. Other services make decisions on where to deploy their services based on the number of customers, regional affiliations, and software architectures. When a customer first uses a service in this category, the provisioning logic uses the _Default Geography_ and the supported _Geographies_ to determine where to provision a given customer.
-Over time, a particular service may deploy their software to additional _Geographies_, so the provisioning locations for new customers can change over time. This doesn't necessarily cause customer data to move to a new _Geography_.
+Over time, a particular service may deploy their software to additional _Geographies_, so the provisioning locations for new customers can change over time. This doesn't necessarily cause customer data to move to a new _Geography_.
-In order to understand where your data, for a given service is stored, your primary tool for understanding this is in the _Tenant_ Admin Center. As a _Tenant_ administrator you can find the actual data location by navigating to Admin->Settings->Org Settings->Organization Profile->Data Location. Currently the data location is available for Exchange Online, SharePoint Online and Microsoft Teams. In addition to this resource, see the [Data Maps page](o365-data-locations.md).
+You can use the Microsoft 365 admin center to understand where your data for a given service is stored. As a _Tenant_ administrator you can find the actual data location by navigating to **Admin > Settings > Org Settings > Organization Profile > Data Location**. Currently the data location is available for Exchange Online, SharePoint, OneDrive, Microsoft Teams, Microsoft Copilot for Microsoft 365, Exchange Online Protection, Viva Connections and Viva Topics. In addition to this resource, see the [Data Maps page](o365-data-locations.md).
Some examples:
-**Example 1:** For a _Tenant_ with the sign-up country/region as "France" that has a new subscription that includes Exchange Online, SharePoint Online and Microsoft Teams, then the customer data for those services will be provisioned into the French _Local Region Geography_. Why? Because those services are deployed into the French data centers and the _Tenant_ has a France sign up country/region.
+**Example 1:** For a _Tenant_ with the sign-up country/region as "France" that has a new subscription that includes Exchange Online, SharePoint, OneDrive and Microsoft Teams, then the customer data for those services will be provisioned into the French _Local Region Geography_. Why? Because those services are deployed into the French data centers and the _Tenant_ has a France sign up country/region.
-**Example 2:** For a _Tenant_ with the sign-up country/region as "Belgium" that has a new subscription that includes Exchange Online, SharePoint Online and Microsoft Teams, then the customer data for those services will be provisioned into the _Macro Region Geography 1 ΓÇô EMEA_. Why? Because there are no Microsoft 365 data centers in Belgium and the closest Geography is _Macro Region Geography 1 - EMEA_.
+**Example 2:** For a _Tenant_ with the sign-up country/region as "Belgium" that has a new subscription that includes Exchange Online, SharePoint, OneDrive and Microsoft Teams, then the customer data for those services will be provisioned into the _Macro Region Geography 1 ΓÇô EMEA_. Why? Because there are no Microsoft 365 data centers in Belgium and the closest Geography is _Macro Region Geography 1 - EMEA_.
-**Example 3:** For a _Tenant_ with the sign-up country/region as "Japan" that has a new subscription that includes Microsoft Forms, then the customer data for Forms will be provisioned into the _Macro Region Geography 3 - Americas_. Why? Because Forms is only deployed in _Macro Region Geography 3 - Americas_ and _Macro Region Geography 1 ΓÇô EMEA_ (EU _Tenants_ only).
+**Example 3:** For a _Tenant_ with the sign-up country/region as "Japan" that has a new subscription that includes Microsoft Forms, then the customer data for Forms will be provisioned into the _Macro Region Geography 3 - Americas_. Why? Because Forms is only deployed in _Macro Region Geography 3 - Americas_ and _Macro Region Geography 1 ΓÇô EMEA_ (EU _Tenants_ only).
-**Example 4a:** For a _Tenant_ with the sign-up country/region as "Sweden" that has a new subscription that includes Microsoft Viva Engage, then the customer data for Viva Engage will be provisioned into the _Macro Region Geography 1 - EMEA_. Why? Because Viva Engage is deployed in _Macro Region Geography 1 - EMEA_ and Swedish _Tenants_ are best served out of that _Geography_.
+**Example 4a:** For a _Tenant_ with the sign-up country/region as "Sweden" that has a new subscription that includes Microsoft Viva Engage, then the customer data for Viva Engage will be provisioned into the _Macro Region Geography 1 - EMEA_. Why? Because Viva Engage is deployed in _Macro Region Geography 1 - EMEA_ and Swedish _Tenants_ are best served out of that _Geography_.
-**Example 4b:** For a _Tenant_ with the sign-up country/region as "Sweden" that has a subscription that includes Microsoft Viva Engage from before Viva Engage was deployed to _Macro Regional Geography 1 - EMEA_, then the customer data for Viva Engage will be located in _Macro Region Geography 3 - Americas_. Why? Because, at that time, Viva Engage only had a single deployment for all customers in _Macro Region Geography 3 - Americas_.
+**Example 4b:** For a _Tenant_ with the sign-up country/region as "Sweden" that has a subscription that includes Microsoft Viva Engage from before Viva Engage was deployed to _Macro Regional Geography 1 - EMEA_, then the customer data for Viva Engage will be located in _Macro Region Geography 3 - Americas_. Why? Because, at that time, Viva Engage only had a single deployment for all customers in _Macro Region Geography 3 - Americas_.
### Migrations/Moves Once a Microsoft 365 service provisions a _Tenant_ into a particular _Geography_, there are three ways that this data could move to another _Geography_: 1. The Microsoft 365 service decides to move the data to a new _Geography_ for service operations reasons, if there are no other policies in place to prevent the move.
-1. If a _Tenant_ subscribes to the _Multi-Geo_ service, then _Tenants_ user's data for Exchange Online, SharePoint Online and Microsoft Teams can be assigned to _Satellite Geographies_.
-1. If a _Tenant_ has sign up country/region as a _Local Region Geography_ and has a subscription to the _Advanced Data Residency_ service add-on, then the _Tenant_ data for the included services will be migrated from the _Regional Geography_ to the relevant _Local Region Geography_.
+1. If a _Tenant_ subscribes to the _Multi-Geo_ service, then _Tenants_ user's data for Exchange Online, SharePoint, OneDrive, Microsoft Teams and Microsoft Copilot for Microsoft 365 can be assigned to _Satellite Geographies_.
+1. If a _Tenant_ has sign up country/region as a _Local Region Geography_ and has a subscription to the _Advanced Data Residency_ service add-on, then the _Tenant_ data for the included services will be migrated from the _Regional Geography_ to the relevant _Local Region Geography_.
### Durable commitments on data location There are three methods for ensuring that the _Tenant_ data location for a particular service doesn't change.
-1. Product Terms: Exchange Online, SharePoint Online, OneDrive for Business and Microsoft Teams provisioned in Australia, Brazil, Canada, France, Germany, India, Japan, Qatar, South Korea, Norway, South Africa, Sweden, Switzerland, United Arab Emirates, United Kingdom, European Union and the United States have a commitment for customer data residency expressed in the [Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all). For more information, see the [Product Terms Data Residency page](m365-dr-product-terms-dr.md).
-1. _Multi Geo_ subscription: allows customers to assign data location for Exchange Online, SharePoint Online, OneDrive for Business and Microsoft Teams to any supported _Geography_. For more information, see [Multi Geo Data Residency](microsoft-365-multi-geo.md).
-1. _Advanced Data Residency_ subscription guarantees data residency for an expanded set of Microsoft 365 services in any _Local Region Geography_. For more information, see the [Advanced Data Residency page](advanced-data-residency.md).
+1. Product Terms: Exchange Online, SharePoint, OneDrive, Microsoft Teams and Microsoft Copilot for Microsoft 365 provisioned in Australia, Brazil, Canada, France, Germany, India, Japan, Qatar, South Korea, Norway, South Africa, Sweden, Switzerland, United Arab Emirates, United Kingdom, European Union and the United States have a commitment for customer data residency expressed in the [Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all). For more information, see the [Product Terms Data Residency page](m365-dr-product-terms-dr.md).
+1. _Multi Geo_ subscription: allows customers to assign data location for Exchange Online, SharePoint, OneDrive, Microsoft Teams and Microsoft Copilot for Microsoft 365 to any supported _Geography_. For more information, see [Multi Geo Data Residency](microsoft-365-multi-geo.md).
+1. _Advanced Data Residency_ subscription provides data residency commitments for an expanded set of Microsoft 365 services in any _Local Region Geography_. For more information, see the [Advanced Data Residency page](advanced-data-residency.md).
#### **Table 2: Available Data Residency by Workload** | Service Name | Product Terms | Multi-Geo | ADR | |:--|:--|:--|:--|
-|Exchange Online |X<sup>1</sup> |X<sup>2</sup> |X<sup>3</sup> |
-| SharePoint Online / OneDrive for Business |X<sup>1</sup> |X<sup>2</sup> |X<sup>3</sup> |
-| Microsoft Teams |X<sup>1</sup> |X<sup>2</sup> |X<sup>3</sup> |
-| Microsoft Defender for Office P1 |- |- |X<sup>3</sup> |
-| Office for the Web |- |- |X<sup>3</sup> |
-| Viva Connections |- |- |X<sup>3</sup> |
-| Viva Topics |- |- |X<sup>3</sup> |
-| Microsoft Purview |- |- |X<sup>3</sup> |
+|Exchange Online |X<sup>1</sup> |X<sup>2</sup> |X<sup>3</sup> |
+| SharePoint / OneDrive |X<sup>1</sup> |X<sup>2</sup> |X<sup>3</sup> |
+| Microsoft Teams |X<sup>1</sup> |X<sup>2</sup> |X<sup>3</sup> |
+| Microsoft Copilot for Microsoft 365 |X<sup>1</sup> |X<sup>2</sup> |X<sup>3</sup> |
+| Microsoft Defender for Office P1 |- |- |X<sup>3</sup> |
+| Office for the Web |- |- |X<sup>3</sup> |
+| Viva Connections |- |- |X<sup>3</sup> |
+| Viva Topics |- |- |X<sup>3</sup> |
+| Microsoft Purview |- |- |X<sup>3</sup> |
1. Only available in the following countries/regions: Australia, Brazil, Canada, France, Germany, India, Japan, Qatar, South Korea, Norway, South Africa, Sweden, Switzerland, United Arab Emirates, United Kingdom, European Union and the United States.
-1. Available in _Local Region Geography_, _Expanded Local Region Geography_ (when the future data center is launched) and _Regional Geography countries/regions_
-1. Only available for _Local Region Geography_ and _Expanded Local Region Geography_ (when the future data center is launched) countries/regions. [Learn about supported Microsoft Purview services and solutions](m365-dr-workload-purview.md).
-
+1. Available in _Local Region Geography_, _Future Local Region Geography_ (when the future data center is launched) and _Regional Geography countries/regions_
+1. Only available for _Local Region Geography_ and _Future Local Region Geography_ (when the future data center is launched) countries/regions.
+
> [!NOTE] > See the [Workload Data Residency Capabilities section](m365-dr-workload-exo.md) for more details on these topics. #### **Table 3: Available Data Residency by Country/Region**
-| Country/Region | Exchange Online | SharePoint Online | Teams | MDO P1 | Office for the web | Viva Connections | Viva Topics | Purview |
-| | | | | | | | | |
-| Australia | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| Brazil | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| Canada | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| European Union | P-M | P-M | P-M | - | - | - | - | - |
-| France | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| Germany | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| India | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| Israel | M-A | M-A | M-A | A | A | A | A | A |
-| Italy | M-A | M-A | M-A | A | A | A | A | A |
-| Japan | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| Poland | M-A | M-A | M-A | A | A | A | A | A |
-| Qatar | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| South Korea | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| Norway | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| South Africa | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| Sweden | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| Switzerland | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| United Arab Emirates | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| United Kingdom | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
-| United States | P-M | P-M | P-M | - | - | - | - | - |
+| Country/Region | Exchange Online | SharePoint, OneDrive | Teams | Copilot for Microsoft 365 | MDO P1 | Office for the web | Viva Connections | Viva Topics | Purview |
+| | | | | | | | | | |
+| Australia | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| Brazil | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| Canada | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| European Union | P-M | P-M | P-M | P-M | - | - | - | - | - |
+| France | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| Germany | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| India | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| Israel | M-A | M-A | M-A | M-A | A | A | A | A | A |
+| Italy | M-A | M-A | M-A | M-A | A | A | A | A | A |
+| Japan | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| Poland | M-A | M-A | M-A | M-A | A | A | A | A | A |
+| Qatar | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| South Korea | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| Norway | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| South Africa | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| Sweden | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| Switzerland | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| United Arab Emirates | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| United Kingdom | P-M-A | P-M-A | P-M-A | P-M-A | A | A | A | A | A |
+| United States | P-M | P-M | P-M | P-M | - | - | - | - | - |
P: Product Terms Data Residency<br> M: Multi-Geo Data Residency<br>
A: Advanced Data Residency
The following Regional Geographies can store data at rest.
-#### **Table 4: Regional Geographies**
-
-| Regional Geographies | Locations where customer data may be stored |
-|||
-|Macro Region Geography 1 - EMEA (Europe, Middle East and Africa) | Austria, Finland, France, Ireland, Israel, Italy, Netherlands, Poland, Sweden |
-|Macro Region Geography 2 - Asia Pacific | Hong Kong SAR, Japan, Malaysia, Singapore, South Korea |
-|Macro Region Geography 3 - Americas | Brazil, Chile, United States |
-
-#### **Table 5: Current Local Geographies and Region specific Datacenter locations**
+#### **Table 4: Current Local Geographies and Region specific Datacenter locations**
-|Country/Region |Datacenter Location |
+|Country/Region |Datacenter Location |
|||
-|Australia |Sydney, Melbourne |
-|Brazil |Rio, Campinas |
-|Canada |Quebec City, Toronto |
-|European Union |Austria (Vienna), Finland (Helsinki), France (Paris, Marseille), Ireland (Dublin), Italy (Milan), Netherlands (Amsterdam), Poland (Warsaw), Sweden (Gävle, Sandviken, Staffanstorp) |
-|France |Paris, Marseille |
-|Germany |Frankfurt, Berlin |
-|India |Chennai, Mumbai, Pune |
-|Israel |Tel Aviv |
-|Italy |Milan |
-|Japan |Osaka, Tokyo |
-|South Korea |Busan, Seoul |
-|Norway |Oslo, Stavanger |
-|Poland |Warsaw |
-|Qatar |Doha |
-|South Africa |Cape Town, Johannesburg |
-|Sweden |Gävle, Sandviken, Staffanstorp |
-|Switzerland |Geneva, Zurich |
-|United Arab Emirates |Dubai, Abu Dhabi |
-|United Kingdom |Durham, London, Cardiff |
-|United States |Boydton, Cheyenne, Chicago, Des Moines, Quincy, San Antonio, Santa Clara, San Jose |
+|Australia |Sydney, Melbourne |
+|Brazil |Rio, Campinas |
+|Canada |Quebec City, Toronto |
+|European Union |Austria (Vienna), Finland (Helsinki), France (Paris, Marseille), Ireland (Dublin), Italy (Milan), Netherlands (Amsterdam), Poland (Warsaw), Sweden (Gävle, Sandviken, Staffanstorp) |
+|France |Paris, Marseille |
+|Germany |Frankfurt, Berlin |
+|India |Chennai, Mumbai, Pune |
+|Israel |Tel Aviv |
+|Italy |Milan |
+|Japan |Osaka, Tokyo |
+|South Korea |Busan, Seoul |
+|Norway |Oslo, Stavanger |
+|Poland |Warsaw |
+|Qatar |Doha |
+|South Africa |Cape Town, Johannesburg |
+|Sweden |Gävle, Sandviken, Staffanstorp |
+|Switzerland |Geneva, Zurich |
+|United Arab Emirates |Dubai, Abu Dhabi |
+|United Kingdom |Durham, London, Cardiff |
+|United States |Boydton, Cheyenne, Chicago, Des Moines, Quincy, San Antonio, Santa Clara, San Jose |
### FAQ
enterprise M365 Dr Product Terms Dr https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-product-terms-dr.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro
Microsoft Privacy and Security product terms included with Microsoft's Cloud product terms provides data residency commitment with the following scope:
-1. Online
+1. Online
2. Commitments period: The length of the customers contract with Microsoft. Typically, this is 1-3 years. 3. Country/regions included: Australia, Brazil, Canada, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, the United Kingdom, the United Arab Emirates, United States and the European Union. The language at time of writing this article is: -- **Office 365 Services** If Customer provisions its tenant in Australia, Brazil, Canada, the European Union, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, the United Kingdom, the United Arab Emirates, or the United States, Microsoft stores the following Customer Data at rest only within that Geo: (1) Exchange Online mailbox content (e-mail body, calendar entries, and the content of e-mail attachments), (2) SharePoint Online site content and the files stored within that site, (3) files uploaded to OneDrive for Business, and (4) Microsoft Teams chat messages (including private messages, channel messages, meeting messages and images used in chats), and for customers using Microsoft Stream (on SharePoint), meeting recordings.-- For current language, refer to the Privacy and Security Product Terms <a href="https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all" target="_blank">webpage</a> and view the section titled "Location of Customer Data at Rest for Core Online Services".
+- **Office 365 Services** If Customer provisions its tenant in Australia, Brazil, Canada, the European Union, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, the United Kingdom, the United Arab Emirates, or the United States, Microsoft stores the following Customer Data at rest only within that Geo: (1) Exchange Online mailbox content (e-mail body, calendar entries, and the content of e-mail attachments), (2) SharePoint site content and the files stored within that site, (3) files uploaded to OneDrive, (4) Microsoft Teams chat messages (including private messages, channel messages, meeting messages and images used in chats), and for customers using Microsoft Stream (on SharePoint), meeting recordings, and (5) any stored content of interactions with Copilot for Microsoft 365 to the extent not included in the preceding commitments.
+- For current language, refer to the Privacy and Security Product Terms <a href="https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all" target="_blank">webpage</a> and view the section titled "Location of Customer Data at Rest for Core Online Services."
-For additional data residency capabilities, refer to the [_Multi-Geo_ service](microsoft-365-multi-geo.md) and/or the [_Advanced Data Residency_ service](advanced-data-residency.md).
+For more data residency capabilities, refer to the [_Multi-Geo_ service](microsoft-365-multi-geo.md) and/or the [_Advanced Data Residency_ service](advanced-data-residency.md).
## Product Terms Data Residency Migration
-When Microsoft's data centers were launched in Australia, Brazil, Canada, the European Union, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, the United Kingdom, or the United Arab Emirates, it was possible for any _Tenant_ with the appropriate _Default Geography_ to opt in to move their data into the applicable geography. This opt in period was open for six months after the Data Center was operational.
-
+When Microsoft's data centers were launched in Australia, Brazil, Canada, the European Union, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, the United Kingdom, or the United Arab Emirates, it was possible for any _Tenant_ with the appropriate _Default Geography_ to opt in to move their data into the applicable geography. This opt in period was open for six months after the Data Center was operational. Today, the _tenant_ must have a valid subscription to the Advanced Data Residency add-on in order to migrate data into the country data centers.
enterprise M365 Dr Workload Copilot https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-copilot.md
+
+ Title: Data Residency for Microsoft Copilot for Microsoft 365
+description: Learn about data residency for Microsoft Copilot for Microsoft 365.
+++++
+f1.keywords:
+- NOCSH
Last updated : 02/29/2024++
+- it-pro
+ms.localizationpriority: medium
+
+- M365-subscription-management
+- must-keep
++
+# Data Residency for Microsoft Copilot for Microsoft 365
+
+## Overview
+
+Service documentation: [Microsoft Copilot for Microsoft 365 overview](/microsoft-365-copilot/microsoft-365-copilot-overview) and [Data, Privacy, and Security for Microsoft Copilot for Microsoft 365](/microsoft-365-copilot/microsoft-365-copilot-privacy)
+
+Capability Summary: Microsoft Copilot for Microsoft 365 is an AI-powered productivity tool that coordinates large language models (LLMs), content in Microsoft Graph, and the Microsoft 365 apps that you use every day, such as Word, Excel, PowerPoint, Outlook, and Teams. This integration provides real-time intelligent assistance, enabling users to enhance their creativity, productivity, and skills.
+The following applications provide the ability to interact with Microsoft Copilot for Microsoft 365: Microsoft Word, Excel, PowerPoint, Loop, Outlook, Teams (Chat, Meetings, Calls, Whiteboard), and OneNote.
+
+The content of interactions and the related semantic index with Microsoft Copilot for Microsoft 365 are stored at rest in the relevant _Local Region Geography_.
+
+## Data Residency Commitments Available for Microsoft Copilot for Microsoft 365
+
+### Product Terms
+
+Required Conditions:
+
+1. _Tenant_ has a sign-up country/region included in Australia, Brazil, Canada, the European Union, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, the United Kingdom, the United Arab Emirates, or the United States.
+
+**Commitment:**
+
+_For current language, refer to the [Privacy and Security Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all) and view the section titled "Location of Customer Data at Rest for Core Online Services."_
+
+### Advanced Data Residency (ADR) add-on
+
+Required Conditions:
+
+1. _Tenant_ has a sign-up country/region included in _Local Region Geography_.
+1. _Tenant_ has a valid Advanced Data Residency subscription for all users in the _Tenant_
+1. For existing _Tenant_ that has data stored in a _Macro Region Geography_, the _Tenant_ Global Admin must opt in to move the _Tenant_ data into the _Local Region Geography_.
+1. The Microsoft Copilot for Microsoft 365 subscription customer data is provisioned in _Local Region Geography_.
+
+**Commitment:**
+
+Refer to the [ADR Commitment page](m365-dr-commitments.md#microsoft-copilot-for-microsoft-365) to understand the specific data at rest commitments for Microsoft Copilot for Microsoft 365. Examples of the committed data include:
+
+- "Content of InteractionsΓÇ¥ such as the user's prompt and Microsoft Copilot's response, including citations to any information used to ground Microsoft Copilot's response.
+
+### Multi-Geo add-on
+
+Required Conditions:
+
+1. _Tenants_ have a valid Multi-Geo subscription that covers all users assigned to a _Satellite Geography_
+1. Customer must have an active Enterprise or CSP Partner Agreement.
+1. Total purchased Multi-Geo units must be greater than 5% of the total eligible licenses in the _Tenant_.
+
+**Commitment:**
+Multi-Geo capabilities in Microsoft Copilot for Microsoft 365 enable content of interactions with Microsoft Copilot for Microsoft 365 to be stored at rest in a specified _Macro Region Geography_ or _Local Region Geography_ location. Microsoft Copilot for Microsoft 365 uses the Preferred Data Location (PDL) for users and groups to determine where to store data. If the PDL isn't set or is invalid, data is stored in the _Tenant's Primary Provisioned Geography_ location. The _Geography_ where the content of interactions with Microsoft Copilot for Microsoft 365 are stored is determined by the PDL of the user interacting with Microsoft Copilot for Microsoft 365. This means that the storage of content of interactions for users in different regions will be based on their respective PDL configurations.
+
+To find the current location of a user's content of interactions with Microsoft Copilot for Microsoft 365 by referencing the PDL configuration for that user. Refer to [Multi-Geo Testing](m365-multi-geo-user-testing.md)
+
+**Illustrative examples**
+
+**Collaboration Experience**
+Two people are working together on a Microsoft Word document. User A authored the document and stored it in the OneDrive for Business personal storage site, which is located in France. User B is in Canada and asks Microsoft Copilot for Microsoft 365 to rewrite a paragraph in the document. The paragraph User B submitted as the prompt, as well as the rewrite options Microsoft Copilot for Microsoft 365 provides (the ΓÇ£content of interactionsΓÇ¥ in this case) are stored in Canada; the original document remains in France, as does any rewrite the user accepts into that document.
+
+**Teams Meeting Experience**
+Microsoft Teams meeting recording video location is determined by the user PDL that starts the recording, or when meetings have an automatic recording policy, the location is determined from the first person joining the meeting. When users in other regions interact with Microsoft Copilot for Microsoft 365 in Teams, those user prompts and corresponding responses are stored in the location of the user that asks the Microsoft Copilot for Microsoft 365 questions.
+
+### Migration
+
+Microsoft Copilot for Microsoft 365 is part of the Microsoft 365 Advanced Data Residency migration. You can learn more at [ADR Migration](advanced-data-residency.md#data-migration-management)
+
+### How can I determine customer data location?
+
+You can find the actual data location in Microsoft 365 admin center. In the coming months, you will be able to find the actual data location for committed data, by navigating to **Settings > Org settings > Organization profile > Data location**.
enterprise M365 Dr Workload Exo https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-exo.md
f1.keywords: - NOCSH Previously updated : 12/19/2023 Last updated : 02/29/2024
- - it-pro
- - has-azure-ad-ps-ref
- - azure-ad-ref-level-one-done
+ - it-pro
+ - has-azure-ad-ps-ref
+ - azure-ad-ref-level-one-done
ms.localizationpriority: medium - M365-subscription-management
_For current language, please refer to the Privacy and Security Product Terms <a
**Commitment:**
->[!NOTE]
->If Customer provisions its tenant in Australia, Brazil, Canada, the European Union, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, United Arab Emirates, United Kingdom, or United States, Microsoft will store the following Customer Data at rest only within that Geo: Exchange Online mailbox content (e-mail body, calendar entries, and the content of e-mail attachments)
+> [!NOTE]
+> If Customer provisions its tenant in Australia, Brazil, Canada, the European Union, France, Germany, India, Japan, Norway, Qatar, South Africa, South Korea, Sweden, Switzerland, United Arab Emirates, United Kingdom, or United States, Microsoft will store the following Customer Data at rest only within that Geo: Exchange Online mailbox content (e-mail body, calendar entries, and the content of e-mail attachments)
### Advanced Data Residency add-on
Exchange Online synchronizes the PreferredDataLocation property from Microsoft E
- Outlook for Mac users might experience a temporary loss of access to their Online Archive folder while you move their mailbox to a new _Geography_ location. This condition occurs when the user's the primary and archive mailboxes are in different _Geography_ locations, because cross-geo mailbox moves might complete at different times. - Users can't share mailbox folders across _Geography_ locations in Outlook on the web (formerly known as Outlook Web App or OWA). For example, a user in the European Union can't use Outlook on the web to open a shared folder in a mailbox located in the United States. However, Outlook on the Web users can open other mailboxes in different _Geography_ locations by using a separate browser window as described in Open another person's mailbox in a separate browser window in Outlook Web App.
- > [!NOTE]
- > Cross-geo mailbox folder sharing is supported in Outlook on Windows.
+ > [!NOTE]
+ > Cross-geo mailbox folder sharing is supported in Outlook on Windows.
- Public folders are supported in Multi-Geo organizations. However, the public folders must remain in the _Primary Provisioned Geography_ location. You can't move public folders to satellite geo locations. - In a Multi-Geo environment, cross-geo mailbox auditing isn't supported. For example, if a user is assigned permissions to access a shared mailbox in a different _Geography_ location, mailbox actions performed by that user aren't logged in the mailbox audit log of the shared mailbox. Exchange admin audit events are also only available for the default location. For more information, see Manage mailbox auditing.
The requirements for installing and using the Exchange Online PowerShell module
To connect Exchange Online PowerShell to a specific _Geography_ location, the ConnectionUri parameter is different than the regular connection instructions. The rest of the commands and values are the same. Specifically, you need to add the `?email=<emailaddress>` value to end of the ConnectionUri value, where `<emailaddress>` is the email address of **any** mailbox in the target _Geography_ location. Your permissions to that mailbox or the relationship to your credentials aren't a factor; the email address simply tells Exchange Online PowerShell where to connect.
-
+
Microsoft 365 or Microsoft 365 GCC customers typically don't need to use the _ConnectionUri_ parameter to connect to Exchange Online PowerShell. But, to connect to a specific _Geography_ location, you do need to use ConnectionUri parameter so you can use `?email=<emailaddress>` in the value.
-
+
#### Connect to a _Geography_ location in Exchange Online PowerShell The following connection instructions work for accounts that are or aren't configured for multifactor authentication (MFA). 1. In a Windows PowerShell window, load the EXO V2 module by running the following command:
- ```powershell
- Import-Module ExchangeOnlineManagement
- ```
-
+ ```powershell
+ Import-Module ExchangeOnlineManagement
+ ```
+
1. In the following example, admin@contoso.onmicrosoft.com is the admin account, and the target geo location is where the mailbox olga@contoso.onmicrosoft.com resides.
-
- ```powershell
- Connect-ExchangeOnline -UserPrincipalName admin@contoso.onmicrosoft.com -ConnectionUri https://outlook.office365.com/powershell?email=olga@contoso.onmicrosoft.com
- ```
-
+
+ ```powershell
+ Connect-ExchangeOnline -UserPrincipalName admin@contoso.onmicrosoft.com -ConnectionUri https://outlook.office365.com/powershell?email=olga@contoso.onmicrosoft.com
+ ```
+
1. Enter the password for the admin@contoso.onmicrosoft.com in the prompt that appears. If the account is configured for MFA, you also need to enter the security code.
-
+
#### View the available _Geography_ locations that are configured in your Exchange Online organization To see the list of configured _Geography_ locations in Microsoft 365 Multi-Geo, run the following command in Exchange Online PowerShell:
- ```powershell
+ ```powershell
Get-OrganizationConfig | Select -ExpandProperty AllowedMailboxRegions | Format-Table ```
-
+
#### View the _Primary Provisioned Geography_ location for your Exchange Online organization To view your tenant's _Primary Provisioned Geography_ location, run the following command in Exchange Online PowerShell:
To see these properties for a mailbox, use the following syntax:
Get-Mailbox -Identity <MailboxIdentity> | Format-List Database,MailboxRegion* ```
- For example, to see the _Geography_ location information for the mailbox chris@contoso.onmicrosoft.com, run the following command:
+ For example, to see the _Geography_ location information for the mailbox chris@contoso.onmicrosoft.com, run the following command:
- ```powershell
+ ```powershell
Get-Mailbox -Identity chris@contoso.onmicrosoft.com | Format-List Database, MailboxRegion* ```
- The output of the command looks like this:
+ The output of the command looks like this:
- ```powershell
-Database : EURPR03DG077-db007
-MailboxRegion : EUR
+ ```powershell
+Database : EURPR03DG077-db007
+MailboxRegion : EUR
MailboxRegionLastUpdateTime : 2/6/2018 8:21:01 PM ```
-
+
> [!NOTE] >If the _Geography_ location code in the database name doesn't match **MailboxRegion** value, the mailbox will be automatically be put into a relocation queue and moved to the _Geography_ location specified by the **MailboxRegion** value (Exchange Online looks for a mismatch between these property values).
MailboxRegionLastUpdateTime : 2/6/2018 8:21:01 PM
A cloud-only user is a user not synchronized to the tenant via Microsoft Entra Connect. This user was created directly in Microsoft Entra ID. Use the **Get-MgUser** and **Set-MgUser** cmdlets in the Microsoft Graph PowerShell SDK to view or specify the _Geography_ location where a cloud-only user's mailbox will be stored.
-First, you must connect to Microsoft Graph using the required permission scopes for the actions you will take in your Microsoft Graph PowerShell session.
+First, you must connect to Microsoft Graph using the required permission scopes for the actions you'll take in your Microsoft Graph PowerShell session.
The Microsoft Graph PowerShell SDK supports two types of authentication: delegated access, and app-only access. In this guide, you'll use delegated access to sign in as a user, grant consent to the SDK to act on your behalf, and call the Microsoft Graph.
To connect to your Microsoft 365 Organization, run the following command:
```powershell Connect-MgGraph -Scopes "User.Read.All","Group.ReadWrite.All"
-```
+```
The command prompts you to go to a web page to sign in with your credentials. Once you've done that, the command indicates success with a Welcome To Microsoft Graph! message. You only need to sign in once per session.
Update-MgUser -UserID michelle@contoso.onmicrosoft.com -PreferredDataLocation EU
> > - How long it takes to relocate a mailbox to a new geo location depends on several factors: >
-> - The size and type of mailbox.
-> - The number of mailboxes being moved.
-> - The availability of move resources.
+> - The size and type of mailbox.
+> - The number of mailboxes being moved.
+> - The availability of move resources.
#### Move an inactive mailbox to a specific _Geography_
-
+
You can't move inactive mailboxes that are preserved for compliance purposes (for example, mailboxes on Litigation Hold) by changing their **PreferredDataLocation** value. To move an inactive mailbox to a different _Geography_, do the following steps: 1. Recover the inactive mailbox. For instructions, see [Recover an inactive mailbox](/microsoft-365/compliance/recover-an-inactive-mailbox). 1. Prevent the Managed Folder Assistant from processing the recovered mailbox by replacing \<MailboxIdentity\> with the name, alias, account, or email address of the mailbox and running the following command in [Exchange Online PowerShell](/powershell/exchange/connect-to-exchange-online-powershell):
- ```powershell
- Set-Mailbox <MailboxIdentity> -ElcProcessingDisabled $true
- ```
+ ```powershell
+ Set-Mailbox <MailboxIdentity> -ElcProcessingDisabled $true
+ ```
1. Assign an **Exchange Online Plan 2** license to the recovered mailbox. This step is required to place the mailbox back on Litigation Hold. For instructions, see [Assign licenses to users](/microsoft-365/admin/manage/assign-licenses-to-users).
You can't move inactive mailboxes that are preserved for compliance purposes (fo
1. After verifying that the Litigation Hold is in place, allow the Managed Folder Assistant to process the mailbox again by replacing \<MailboxIdentity\> with the name, alias, account, or email address of the mailbox and running the following command in [Exchange Online PowerShell](/powershell/exchange/connect-to-exchange-online-powershell):
- ```powershell
- Set-Mailbox <MailboxIdentity> -ElcProcessingDisabled $false
- ```
+ ```powershell
+ Set-Mailbox <MailboxIdentity> -ElcProcessingDisabled $false
+ ```
1. Make the mailbox inactive again by removing the user account associated with the mailbox. For instructions, see [Delete a user from your organization](/admin/add-users/delete-a-user). This step also releases the Exchange Online Plan 2 license for other uses. **Note**: When you move an inactive mailbox to a different geo location, you might affect content search results or the ability to search the mailbox from the former geo location. For more information, see [Searching and exporting content in Multi-Geo environments](/microsoft-365/compliance/set-up-compliance-boundaries#searching-and-exporting-content-in-multi-geo-environments).
-
+
#### Create new cloud mailboxes in a specific _Geography_ location To create a new mailbox in a specific _Geographic_ location, you need to do either of these steps:
To create a new mailbox in a specific _Geographic_ location, you need to do eith
- Assign a license at the same time you set the **PreferredDataLocation** value.
-To create a new cloud-only licensed user (not Microsoft Entra Connect synchronized) in a specific _Geographic_ location, use the following syntax in Azure AD PowerShell:
+To create a new cloud-only licensed user (not Microsoft Entra Connect synchronized) in a specific _Geographic_ location, use the following syntax in Microsoft Graph PowerShell:
```powershell $params = @{
Or, you can use the following steps to onboard mailboxes directly in a specific
1. In Exchange Online PowerShell, store the on-premises administrator credentials used to perform a mailbox migration in a variable by running the following command:
- ```powershell
- $RC = Get-Credential
- ```
+ ```powershell
+ $RC = Get-Credential
+ ```
1. In Exchange Online PowerShell, create a new **New-MoveRequest** similar to the following example:
- ```powershell
- New-MoveRequest -Remote -RemoteHostName mail.contoso.com -RemoteCredential $RC -Identity user@contoso.com -TargetDeliveryDomain <YourAppropriateDomain>
- ```
+ ```powershell
+ New-MoveRequest -Remote -RemoteHostName mail.contoso.com -RemoteCredential $RC -Identity user@contoso.com -TargetDeliveryDomain <YourAppropriateDomain>
+ ```
1. Repeat step #4 for every mailbox you need to migrate from on-premises Exchange to the satellite geo location you're currently connected to. 1. If you need to migrate other mailboxes to different satellite geo locations, repeat steps 2 through 4 for each specific location. ## Multi-Geo reporting
-
+
> [!NOTE] > The multi-geo reporting feature is currently in Preview, is not available in all organizations, and is subject to change.
Some users open a shared mail folder from another mailbox (that the user has rea
| Configuration | Description | |:--|:--|
-|User has mailbox folder permission to another mailbox <br/> |Potentially limited. <br/> If User A and Mailbox B aren't in the same _Geography_ during the tenant move, User A can't open Mailbox B's folder in Outlook Web Access if User A only has permission to a specific folder in Mailbox B. <br/> To add a shared folder, right-click the user name in the left navigation panel and select **Add shared folder**. <br/> |
-|User with full mailbox permission to another mailbox <br/> |Fully supported. <br/> If User A has _Full Access_ permission to Mailbox B, then User A can select the shared folder in the left navigation panel in Outlook Web Access to open a window showing Mailbox B. A user can open a shared mailbox using Outlook Web Access during the move without any adverse affect. The limitation only applies to folder-level sharing in a mailbox.
+|User has mailbox folder permission to another mailbox <br/> |Potentially limited. <br/> If User A and Mailbox B aren't in the same _Geography_ during the tenant move, User A can't open Mailbox B's folder in Outlook Web Access if User A only has permission to a specific folder in Mailbox B. <br/> To add a shared folder, right-click the user name in the left navigation panel and select **Add shared folder**. <br/> |
+|User with full mailbox permission to another mailbox <br/> |Fully supported. <br/> If User A has _Full Access_ permission to Mailbox B, then User A can select the shared folder in the left navigation panel in Outlook Web Access to open a window showing Mailbox B. A user can open a shared mailbox using Outlook Web Access during the move without any adverse effect. The limitation only applies to folder-level sharing in a mailbox.|
The process of email data migration to Microsoft 365 during the Exchange Online is a common scenario and is supported. Cloud migration between datacenter geos doesn't interfere with any on-premises to cloud mailbox migrations. ### How can I determine customer data location?
-You can find the actual data location in Tenant Admin Center. As a tenant administrator you can find the actual data location, for committed data, by navigating to **Admin->Settings->Org Settings->Organization Profile->Data Location**.
+You can find the actual data location in Tenant Admin Center. As a tenant administrator you can find the actual data location, for committed data, by navigating to **Admin->Settings->Org Settings->Organization Profile->Data Location**.
enterprise M365 Dr Workload Mdo P1 https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-mdo-p1.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro
Service documentation: [Office 365 Security including Microsoft Defender for Office 365 and Exchange Online Protection](/microsoft-365/security/office-365-security/defender-for-office-365)
-Capability Summary: Protects email and collaboration from zero-day malware, phish, and business email compromise. MDO P1 builds on Exchange Online Protection (EOP).
+Capability Summary: Protects email and collaboration from zero-day malware, phish, and business email compromise. MDO P1 builds on Exchange Online Protection (EOP).
## Data Residency commitments available
Required Conditions:
**Commitment:**
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#microsoft-defender-for-office-p1) for the specific customer data at rest commitment for Microsoft Defender for Office P1.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#microsoft-defender-for-office-p1) for the specific customer data at rest commitment for Microsoft Defender for Office P1.
Other Information
Capability summary: Exchange Online Protection (EOP) is the cloud-based filterin
Required Conditions:
-1. _Tenant_ has a sign up country included in _Local Region Geography_ or _Expanded Local Region Geography_.
+1. _Tenant_ has a sign-up country included in _Local Region Geography_ or _Expanded Local Region Geography_.
1. _Tenant_ has a valid Advanced Data Residency subscription for all users in the _Tenant_ 1. The EOP subscription customer data is provisioned in _Local Region Geography_ or _Expanded Local Region Geography_ **Commitment:**
-Please refer to the [Advanced Data Residency Commitment](m365-dr-commitments.md) page for the specific customer data at rest commitment for Exchange Online Protection.
+Refer to the [Advanced Data Residency Commitment](m365-dr-commitments.md) page for the specific customer data at rest commitment for Exchange Online Protection.
## Migration
-EOP customer data migrates after ADR migration is initated. MDO P1 does not have customer data to migrate.
+EOP customer data migrates after ADR migration is initiated. MDO P1 doesn't have customer data to migrate.
## How can I determine customer data location?
enterprise M365 Dr Workload Office For Web https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-office-for-web.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro
Required Conditions:
**Commitment:**
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#office-for-the-web) for the specific customer data at rest commitment for Office for the Web.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#office-for-the-web) for the specific customer data at rest commitment for Office for the Web.
### Migration
-The cache for documents are not migrated to the new _Geography_, and will be reestablished as users work on documents.
+The cache for documents isn't migrated to the new _Geography_, and will be reestablished as users work on documents.
### How can I determine customer data location?
-We are in the process of updating the actual data location in _Tenant_ Admin Center. When this change is complete the tenant will be able to see the actual data location, for in scope data, by navigating to Admin|Settings|Org Settings|Organization Profile|Data Location. Until that change is visible, you can view the Exchange Online data or SharePoint Online location information in order to understand where the in scope data is stored for this service.
+We are in the process of updating the actual data location in _Tenant_ Admin Center. When this change is complete the tenant will be able to see the actual data location, for in scope data, by navigating to Admin|Settings|Org Settings|Organization Profile|Data Location. Until that change is visible, you can view the Exchange Online data or SharePoint location information in order to understand where the in scope data is stored for this service.
enterprise M365 Dr Workload Other https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-other.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro ms.localizationpriority: medium
# Data Residency for Other Microsoft 365 Services >[!NOTE]
->Unless otherwise stated in the [Microsoft Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all), the following Microsoft 365 services do not have specific commitments for data residency. You can use the following guidance to determine where your data may be provisioned at this time.
+>Unless otherwise stated in the [Microsoft Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all), the following Microsoft 365 services do not have specific commitments for data residency. You can use the following guidance to determine where your data may be provisioned at this time.
-Use the following guidance to determine where your data is located. Please reference your _tenant Default Geography_.
+Use the following guidance to determine where your data is located. Reference your _tenant Default Geography_.
<a name='azure-active-directory-aad'></a> ## Microsoft Entra ID
-Please refer to [Microsoft Entra Data Locations](https://aka.ms/aaddatamap).
+Refer to [Microsoft Entra Data Locations](https://aka.ms/aaddatamap).
## Forms
-Tenants in EU member Countries/regions maintain data in Macro Region Geography 1 ΓÇô EMEA. All other tenants have customer data stored in the United States, except Australia. For customers in Australia, Microsoft Forms customer data will be stored at rest in Australia for all new tenants using Forms and existing tenants that have not previously used Forms.
+Tenants in EU member Countries/regions maintain data in Macro Region Geography 1 ΓÇô EMEA. All other tenants have customer data stored in the United States, except Australia. For customers in Australia, Microsoft Forms customer data is stored at rest in Australia for all new tenants using Forms and existing tenants that haven't previously used Forms.
## Intune
-Refer to endpoint.microsoft.com, Tenant Administration | Tenant Status for existing tenants. If you do not have an existing tenant, create a trial tenant and provision Intune. Microsoft will not store Intune customer data at rest outside the stated geo, except if:
+Refer to endpoint.microsoft.com, Tenant Administration | Tenant Status for existing tenants. If you don't have an existing tenant, create a trial tenant and provision Intune. Microsoft won't store Intune customer data at rest outside the stated geo, except if:
-- It is necessary for Microsoft to provide customer support, troubleshoot the service, or comply with legal requirements.-- The customer configures an account to enable such storage of customer data, including through the use of the following:
+- It's necessary for Microsoft to provide customer support, troubleshoot the service, or comply with legal requirements.
+- The customer configures an account to enable such storage of customer data, including by using the following:
- Features that are designed to operate globally, such as Content Delivery Network (CDN), which provides a global caching service and stores customer data at edge locations around the world. -- If you are using the Remote Help feature, the Helper and Sharer's information may be sent outside of the stated Geo for 48 hours.-- For Microsoft Entra ID: Please refer to [Microsoft Entra Data Locations](https://aka.ms/aaddatamap).-- Preview, beta, or other prerelease services, which typically store customer data in the United States but may store it globally. Regardless, Microsoft does not control or limit the Geo from which customers or their end users may access customer data. Similarly, where customer data in other services is subsequently integrated into Intune, the originating customer data will continue to be stored subject to the other service's own Geo commitments (if any); only the copy of the customer data integrated into Intune will be stored in the stated Geo for Intune.
+- If you're using the Remote Help feature, the Helper and Sharer's information might be sent outside of the stated Geo for 48 hours.
+- For Microsoft Entra ID: Refer to [Microsoft Entra Data Locations](https://aka.ms/aaddatamap).
+- Preview, beta, or other prerelease services, which typically store customer data in the United States but might store it globally. Regardless, Microsoft doesn't control or limit the Geo from which customers or their end users might access customer data. Similarly, where customer data in other services is subsequently integrated into Intune, the originating customer data will continue to be stored subject to the other service's own Geo commitments (if any); only the copy of the customer data integrated into Intune will be stored in the stated Geo for Intune.
## Office for Mobile
-Customer data for this service comes from other services, like Exchange Online and SharePoint Online. There is no customer data stored outside of those services with the exception of the mobile device.
+Customer data for this service comes from other services, like Exchange Online and SharePoint Online. There's no customer data stored outside of those services with the exception of the mobile device.
## OneNote Services
-OneNote stores customer data in OneDrive for Business. It does however have an API that can cause persistent caches to be made outside of the Geography where OneDrive for Business stores customer data.
+OneNote stores customer data in OneDrive. It does however have an API that can cause persistent caches to be made outside of the Geography where OneDrive stores customer data.
## Planner
-Please see the [Static data location information for select workloads](#static-data-location-information-for-select-workloads) section.
+See the [Static data location information for select workloads](#static-data-location-information-for-select-workloads) section.
## Power Apps for Microsoft 365
-Please refer to [Dynamics 365 availability and data locations | Microsoft Learn](/dynamics365/get-started/availability).
+Refer to [Dynamics 365 availability and data locations | Microsoft Learn](/dynamics365/get-started/availability).
## Stream
Capability summary: Microsoft Viva Goals is a goal-alignment solution that conne
### Data Residency Available
-Starting December 5, 2022, Viva Goals [Customer Data](/privacy/eudb/eu-data-boundary-learn) for new tenants in the [European Union Data Boundary (EUDB)](/privacy/eudb/eu-data-boundary-learn#eu-data-boundary-countries-and-datacenter-locations) and in the United Kingdom will be stored in data centers located in the EU. All other tenants will have their Viva Goals Customer Data stored in data centers located in the United States. Tenants aren't provided with a choice for the specific deployment region for data storage.
+Starting December 5, 2022, Viva Goals [Customer Data](/privacy/eudb/eu-data-boundary-learn) for new tenants in the [European Union Data Boundary (EUDB)](/privacy/eudb/eu-data-boundary-learn#eu-data-boundary-countries-and-datacenter-locations) and in the United Kingdom will be stored in data centers located in the EU. All other tenants will have their Viva Goals Customer Data stored in data centers located in the United States. Tenants aren't provided with a choice for the specific deployment region for data storage.
To be considered a tenant in the EUDB:
To be considered a tenant in the EUDB:
### Migration
-Customers based in EU and UK who signed up for Viva Goals prior to December 5, 2022, have now been migrated to EU data centers.
+Customers based in EU and UK who signed up for Viva Goals prior to December 5, 2022, have now been migrated to EU data centers.
## Viva Insights ΓÇô Advanced, Mgr, Leader
-Please see the [Static data location information for select workloads](#static-data-location-information-for-select-workloads) section. The data region for Manager/Leader and Advanced is determined by the _Default Geography_ of the _tenant_, not individual users.
+See the [Static data location information for select workloads](#static-data-location-information-for-select-workloads) section. The data region for Manager/Leader and Advanced is determined by the _Default Geography_ of the _tenant_, not individual users.
## Viva Insights ΓÇô Personal
Customer data is processed and stored in the employee's Exchange Online mailbox.
## Viva Learning
-Please see the [Static data location information for select workloads](#static-data-location-information-for-select-workloads) section.
+See the [Static data location information for select workloads](#static-data-location-information-for-select-workloads) section.
## Whiteboard
-Please refer to [Manage data for Microsoft Whiteboard | Microsoft Learn](/microsoft-365/whiteboard/manage-data-organizations).
+Refer to [Manage data for Microsoft Whiteboard | Microsoft Learn](/microsoft-365/whiteboard/manage-data-organizations).
## Viva Engage
-Please refer to [Data Residency - Viva Engage | Microsoft Learn](/viva/engage/manage-security-and-compliance/data-residency).
+Refer to [Data Residency - Viva Engage | Microsoft Learn](/viva/engage/manage-security-and-compliance/data-residency).
## Static data location information for select workloads
enterprise M365 Dr Workload Purview https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-purview.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro
This article lists the Data Residency commitments (available with the Advanced Data Residency add-on) for supported Microsoft Purview services and solutions.
-The required conditions for the related commitments for the services described below are:
+The required conditions for the related commitments for the following services are:
-1. _Tenant_ has a sign up country/region included in _Local Region Geography_ or _Expanded Local Region Geography_.
+1. _Tenant_ has a sign-up country/region included in _Local Region Geography_ or _Expanded Local Region Geography_.
1. _Tenant_ has a valid Advanced Data Residency subscription for all users in the _Tenant_. 1. The Purview service Customer Data is provisioned in _Local Region Geography_ or _Expanded Local Region Geography_. ## Migration
-Customer Data supporting Purview services is closely aligned with the Exchange Online and SharePoint Online services, and the bulk of the data migrated, if required to fulfill the data residency commitments for the Purview services, will be handled by those services. In the cases where supporting Customer Data is maintained in an Azure Service, for example, the migration of that data is tied to the migration of the underlying Exchange Online/SharePoint Online data.
+Customer Data supporting Purview services is closely aligned with the Exchange Online and SharePoint services, and the bulk of the data migrated, if required to fulfill the data residency commitments for the Purview services, will be handled by those services. In the cases where supporting Customer Data is maintained in an Azure Service, for example, the migration of that data is tied to the migration of the underlying Exchange Online/SharePoint data.
## How can I determine Customer Data location?
-We are in the process of updating the actual data location in _Tenant_ Admin Center. When this change is complete you will be able to see the actual data location, for committed data, by navigating to Admin->Settings->Org Settings->Organization Profile->Data Location. Until that change is visible, you can view the Exchange Online data location information in order to understand where your committed data is stored for this service.
+We are in the process of updating the actual data location in _Tenant_ Admin Center. When this change is complete you will be able to see the actual data location, for committed data, by navigating to Admin->Settings->Org Settings->Organization Profile->Data Location. Until that change is visible, you can view the Exchange Online data location information in order to understand where your committed data is stored for this service.
### Purview Audit (Standard)
Capability summary: Microsoft Purview Audit (Standard) provides you with the abi
Commitment:
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#purview-audit-standard) for the specific Customer Data at rest commitment for Purview Audit (Standard).
+Refer to the [ADR Commitment page](m365-dr-commitments.md#purview-audit-standard) for the specific Customer Data at rest commitment for Purview Audit (Standard).
### Purview Audit (Premium)
Capability summary: Microsoft Purview Audit (Premium) builds on the capabilities
Commitment:
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#purview-audit-premium) for the specific Customer Data at rest commitment for Purview Audit (Premium).
+Refer to the [ADR Commitment page](m365-dr-commitments.md#purview-audit-premium) for the specific Customer Data at rest commitment for Purview Audit (Premium).
### Data lifecycle management - Data Retention
ADR applies to the following services within Purview Data lifecycle management,
- Machine Learning-based retention - Teams message retention policies
-Service documentation: [Learn about retention policies & labels](/microsoft-365/compliance/retention)
+Service documentation: [Learn about retention policies & labels](/microsoft-365/compliance/retention)
For more detailed information about how retention settings work for different workloads, see the following articles:
Capability summary: Lets you retain or delete content with policy management for
Commitment:
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#data-lifecycle-managementdata-retention) for the specific Customer Data at rest commitment for Data lifecycle management - Data Retention.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#data-lifecycle-managementdata-retention) for the specific Customer Data at rest commitment for Data lifecycle management - Data Retention.
### Data lifecycle management - Records Management
Capability summary: Organizations of all types require a records-management solu
Commitment:
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#data-lifecycle-managementrecords-management) for the specific Customer Data at rest commitment for Data lifecycle management - Records Management.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#data-lifecycle-managementrecords-management) for the specific Customer Data at rest commitment for Data lifecycle management - Records Management.
### Information Protection - Sensitivity labels
Capability summary: Sensitivity labels from Microsoft Purview Information Protec
Commitment:
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#information-protectionsensitivity-labels) for the specificCustomer Data at rest commitment for Information Protection - Sensitivity labels.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#information-protectionsensitivity-labels) for the specificCustomer Data at rest commitment for Information Protection - Sensitivity labels.
### Information Protection - Data Loss Prevention (DLP)
In Microsoft Purview, you implement data loss prevention by defining and applyin
- Microsoft 365 services such as Teams, Exchange, SharePoint, and OneDrive - Office applications such as Word, Excel, and PowerPoint-- Windows 10, Windows 11 and macOS (Catalina 10.15 and higher) endpoints
+- Windows 10, Windows 11, and macOS (Catalina 10.15 and higher) endpoints
- non-Microsoft cloud apps - on-premises file shares and on-premises SharePoint.
DLP detects sensitive items by using deep content analysis, not by just a simple
Commitment:
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#information-protectiondata-loss-prevention-dlp) for the specific Customer Data at rest commitment for Information Protection - Data Loss Prevention (DLP).
+Refer to the [ADR Commitment page](m365-dr-commitments.md#information-protectiondata-loss-prevention-dlp) for the specific Customer Data at rest commitment for Information Protection - Data Loss Prevention (DLP).
### Information Protection - Office Message Encryption
Capability summary: With Office 365 Message Encryption, your organization can se
Commitment:
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#information-protectionoffice-message-encryption) for the specific Customer Data at rest commitment for Information Protection - Office Message Encryption.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#information-protectionoffice-message-encryption) for the specific Customer Data at rest commitment for Information Protection - Office Message Encryption.
### Risk and compliance - information barriers
Capability summary: Microsoft Purview Information Barriers (IB) is a compliance
Commitment:
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#risk-and-complianceinformation-barriers) for the specific Customer Data at rest commitment for IB.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#risk-and-complianceinformation-barriers) for the specific Customer Data at rest commitment for IB.
enterprise M365 Dr Workload Spo https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-spo.md
Title: Data Residency for SharePoint Online and OneDrive for Business
-description: Data Residency for SharePoint Online and OneDrive for Business
+ Title: Data Residency for SharePoint and OneDrive
+description: Data Residency for SharePoint and OneDrive
f1.keywords: - NOCSH Previously updated : 12/19/2023 Last updated : 02/29/2024 - it-pro
- must-keep
-# Data Residency for SharePoint Online and OneDrive for Business
+# Data Residency for SharePoint and OneDrive
## **Data Residency Commitments Available**
Required Conditions:
1. _Tenant_ has a sign-up country/region included in _Local Region Geography_ or _Expanded Local Region Geography_. 1. _Tenant_ has a valid Advanced Data Residency subscription for all users in the _Tenant_.
-1. The SharePoint Online subscription customer data is provisioned in _Local Region Geography_ or _Expanded Local Region Geography_.
+1. The SharePoint subscription customer data is provisioned in _Local Region Geography_ or _Expanded Local Region Geography_.
**Commitment:**
-Refer to the [ADR Commitment page](m365-dr-commitments.md#sharepoint-onlineonedrive-for-business) for the specific customer data at rest commitment for SharePoint Online and OneDrive for Business.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#sharepointonedrive) for the specific customer data at rest commitment for SharePoint and OneDrive.
### Multi-Geo add-on
Required Conditions:
1. Total purchased Multi-Geo units must be greater than 5% of the total eligible licenses in the _Tenant_. **Commitment:**
-Customers can assign users of SharePoint Online/OneDrive for Business to any _Satellite Geography_ supported by Multi-Geo (see Section 4.1.3). The following customer data is stored in the relevant _Satellite Geography_:
-- SharePoint Online site content and the files stored within that site, and files uploaded to OneDrive for Business.
+Customers can assign users of SharePoint/OneDrive to any _Satellite Geography_ supported by Multi-Geo (see Section 4.1.3). The following customer data will be stored in the relevant _Satellite Geography_:
+
+- SharePoint site content and the files stored within that site, and files uploaded to OneDrive.
## Migration with Advanced Data Residency
-When SharePoint Online is moved, data for the following services is also moved:
-
-- OneDrive for Business
+When SharePoint is moved, data for the following services is also moved:
+
+- OneDrive
- Microsoft 365 Video services - Office in a browser - Microsoft 365 Apps for enterprise - Visio Pro for Microsoft 365
-After the move completes, you might see some of the following effects.
-
+After we've completed moving your SharePoint data, you might see some of the following effects.
+
### Microsoft 365 Video Services -- The data move for video takes longer than the moves for the rest of your content in SharePoint Online.-- After the SharePoint Online content is moved, there's a time frame when videos aren't able to be played.
+- The data move for video takes longer than the moves for the rest of your content in SharePoint.
+- After the SharePoint content is moved, there will be a time frame when videos aren't able to be played.
- We're removing the trans-coded copies from the previous datacenter and transcoding them again in the new datacenter. ### Search
-In the course of moving your SharePoint Online data, we migrate your search index and search settings to a new location. Until we've **completed** the move of your SharePoint Online data, we continue to serve your users from the index in the original location. In the new location, search automatically starts crawling your content after your move completes. From this point and onwards, we serve your users from the migrated index. Changes to your content that occurred after the migration aren't included in the migrated index until crawling picks them up. Most customers don't notice that results are less fresh right after your move completes, but some customers might experience reduced freshness in the first 24-48 hours.
-
+In the course of moving your SharePoint data, we migrate your search index and search settings to a new location. Until we've **completed** the move of your SharePoint data, we continue to serve your users from the index in the original location. In the new location, search automatically starts crawling your content after we've completed moving your SharePoint data. From this point and onwards, we serve your users from the migrated index. Changes to your content that occurred after the migration aren't included in the migrated index until crawling picks them up. Most customers don't notice that results are less fresh right after we've completed moving their SharePoint data, but some customers might experience reduced freshness in the first 24-48 hours.
+
The following search features are affected:
-
+
- Search results and Search Web Parts: Results don't include changes that occurred after the migration until crawling picks them up. - Delve: Delve doesn't include changes that occurred after the migration until crawling picks them up.-- Popularity and Search Reports for the site: Counts for Excel reports in the new location only include migrated counts and counts from usage reports that have run after we completed moving your SharePoint Online data. Any counts from the interim period are lost and can't be recovered. This period is typically a couple of days. Some customers might experience shorter or longer losses.
+- Popularity and Search Reports for the site: Counts for Excel reports in the new location only include migrated counts and counts from usage reports that have run after we completed moving your SharePoint data. Any counts from the interim period are lost and can't be recovered. This period is typically a couple of days. Some customers might experience shorter or longer losses.
- Video Portal: View counts and statistics for the Video Portal depend on the statistics for Excel Reports, so view counts and statistics for the Video Portal are lost for the same time period as for the Excel reports. - eDiscovery: Items that changed during the migration aren't shown until crawling picks up the changes. - Data Loss Protection (DLP): Policies aren't enforced on items that change until crawling picks up the changes.
-As part of the migration, the _Primary Provisioned Geography_ changes and all new content are stored at rest in the new _Primary Provisioned Geography_. Existing content moves in the background with no impact to you for up to 90 days after the first change to the SharePoint Online data location in the admin center.
+As part of the migration, the _Primary Provisioned Geography_ changes and all new content will be stored at rest in the new _Primary Provisioned Geography_. Existing content will move in the background with no impact to you for up to 90 days after the first change to the SharePoint data location in the admin center.
-## **Multi-Geo Capabilities in SharePoint Online / OneDrive for Business**
+## **Multi-Geo Capabilities in SharePoint / OneDrive**
-Multi-Geo capabilities in OneDrive and SharePoint Online enable control of shared resources like SharePoint team sites and Microsoft 365 group mailboxes stored at rest in a specified _Macro Region Geography_ or _Local Region Geography_.
+Multi-Geo capabilities in OneDrive and SharePoint enable control of shared resources like SharePoint team sites and Microsoft 365 group mailboxes stored at rest in a specified _Macro Region Geography_ or _Local Region Geography_.
Each user, Group mailbox, and SharePoint site have a Preferred Data Location (PDL) which denotes the _Macro Region Geography_ or _Local Region Geography_ (location where related data is to be stored). Users' personal data (Exchange mailbox and OneDrive) along with any Microsoft 365 Groups or SharePoint sites that they create can be stored in the specified _Macro Region Geography_ or _Local Region Geographies_ location to meet data residency requirements. You can specify different administrators for each _Macro Region Geography_ or _Local Region Geographies_ location.
By default, all _Geography_ locations of a multi-geo environment share the avail
With the SharePoint geo storage quota setting, you can manage the storage quota for each _Geography_ location. When you allocate a storage quota for a _Geography_ location, it becomes the maximum amount of storage available for that _Geography_ location, and is deducted from the available _Tenant_ storage quota. The remaining available _Tenant_ storage quota is then shared across the configured _Geography_ locations for which a specific storage quota hasn't been allocated.
-The SharePoint storage quota for any _Geography_ location can be allocated by the SharePoint Online administrator by connecting to the _Primary Provisioned Geography_. _Geography_ administrators for _Satellite Geography_ locations can view the storage quota but can't allocate it.
+The SharePoint storage quota for any _Geography_ location can be allocated by the SharePoint administrator by connecting to the _Primary Provisioned Geography_. _Geography_ administrators for _Satellite Geography_ locations can view the storage quota but can't allocate it.
#### **Configure a storage quota for a _Geography_ location**
-To allocate the storage quota for a _Geography_ location, use the [Microsoft SharePoint Online Management Shell](https://www.microsoft.com/download/details.aspx?id=35588) and connect to the _Primary Provisioned Geography_ location.
+Use the [Microsoft SharePoint Management Shell](https://www.microsoft.com/download/details.aspx?id=35588) and connect to the _Primary Provisioned Geography_ location to allocate the storage quota for a _Geography_ location.
To allocate Storage Quota for a location, run cmdlet:
Set-SPOGeoStorageQuota -GeoLocation <geolocationcode> -StorageQuotaMB 0
#### Move a OneDrive site to a different _Geography_ location
-With OneDrive _Geography_ move, you can move a user's OneDrive to a different _Geography_ location. OneDrive _Geography_ move is performed by the SharePoint Online administrator or the Microsoft 365 global administrator. Before you start a OneDrive _Geography_ move, be sure to notify the user whose OneDrive is being moved and recommend they close all files for the duration of the move. (If the user has a document open using the Office client during the move, then upon move completion the document will need to be saved to the new location.) The move can be scheduled for a future time, if desired.
+With OneDrive _Geography_ move, you can move a user's OneDrive to a different _Geography_ location. OneDrive _Geography_ move is performed by the SharePoint administrator or the Microsoft 365 global administrator. Before you start a OneDrive _Geography_ move, be sure to notify the user whose OneDrive is being moved and recommend they close all files for the duration of the move. (If the user has a document open using the Office client during the move, then upon move completion the document will need to be saved to the new location.) The move can be scheduled for a future time, if desired.
The OneDrive service uses Azure Blob Storage to store content. The Storage blob associated with the user's OneDrive is moved from the source to destination _Geography_ location within 40 days of destination OneDrive being available to the user. The access to the user's OneDrive is restored as soon as the destination OneDrive is available.
-During OneDrive _Geography_ move window (about 2-6 hours) the user's OneDrive is set to read-only. The user can still access their files via the OneDrive sync app or their OneDrive site in SharePoint Online. After OneDrive _Geography_ move is complete, the user is automatically connected to their OneDrive at the destination _Geography_ location when they navigate to OneDrive in the Microsoft 365 app launcher. The sync app automatically begins syncing from the new location.
+During OneDrive _Geography_ move window (about 2-6 hours) the user's OneDrive is set to read-only. The user can still access their files via the OneDrive sync app or their OneDrive site in SharePoint. After OneDrive _Geography_ move is complete, the user will be automatically connected to their OneDrive at the destination _Geography_ location when they navigate to OneDrive in the Microsoft 365 app launcher. The sync app will automatically begin syncing from the new location.
-The procedures in this article require the [Microsoft SharePoint Online PowerShell Module](https://www.microsoft.com/download/details.aspx?id=35588).
+The procedures in this article require the [Microsoft SharePoint PowerShell Module](https://www.microsoft.com/download/details.aspx?id=35588).
#### Communicating to your users When moving OneDrive sites between _Geography_ locations, it's important to communicate to your users what to expect. This can help reduce user confusion and calls to your help desk. Email your users before the move and let them know the following information: -- When the move is expected to start and how long it is expected to take
+- When the move is expected to start and how long it's expected to take
- What _Geography_ location their OneDrive is moving to, and the URL to access the new location - They should close their files and not make edits during the move.-- File permissions and sharing don't change as a result of the move.
+- File permissions and sharing won't change as a result of the move.
- What to expect from the user experience in a multi-geo environment Be sure to send your users an email when the move completes, informing them that they can resume working in OneDrive.
Connect-SPOService -url https://contosoenergyeur-admin.sharepoint.com
``` #### **Validating the environment**
-
+
Before you start a OneDrive _Geography_ move, we recommend that you validate the environment. To ensure that all _Geography_ locations are compatible, run:
To ensure that all _Geography_ locations are compatible, run:
Get-SPOGeoMoveCrossCompatibilityStatus ```
-You will see a list of your _Geography_ locations and whether content can be moved between is denoted as "Compatible". If the command returns "Incompatible", please retry validating the status later.
+You'll see a list of your _Geography_ locations and whether content can be moved between will be denoted as "Compatible". If the command returns "Incompatible" please retry validating the status at a later date.
If a OneDrive contains a subsite, for example, it can't be moved. You can use the `Start-SPOUserAndContentMove` cmdlet with the `-ValidationOnly` parameter to validate if the OneDrive is able to be moved:
If a OneDrive contains a subsite, for example, it can't be moved. You can use th
Start-SPOUserAndContentMove -UserPrincipalName <UPN> -DestinationDataLocation <DestinationDataLocation> -ValidationOnly ```
- This returns Success if the OneDrive is ready to be moved or Fail if there's a legal hold or subsite that would prevent the move. Once you have validated that the OneDrive is ready to move, you can start the move.
+This will return Success if the OneDrive is ready to be moved or Fail if there's a legal hold or subsite that would prevent the move. Once you have validated that the OneDrive is ready to move, you can start the move.
#### **Start a OneDrive geo move**
To schedule a _Geography_ move for a later time, use one of the following parame
- _PreferredMoveEndDate_ ΓÇô The move will likely be completed by this specified time, on a best effort basis. Time must be specified in Coordinated Universal Time (UTC). #### **Cancel a OneDrive _Geography_ move**
-
-You can stop the _Geography_ move of a user's OneDrive, provided the move is not in progress or completed by using the cmdlet:
+
+You can stop the _Geography_ move of a user's OneDrive, provided the move isn't in progress or completed by using the cmdlet:
```powershell Stop-SPOUserAndContentMove ΓÇô UserPrincipalName <UserPrincipalName>
The move statuses are described in the following table.
|Status|Description| |||
-|NotStarted|The move is pending|
+|NotStarted|The move hasn't started|
|InProgress (_n_/4)|The move is in progress in one of the following states: <ul><li>Validation (1/4)</li><li>Backup (2/4)</li><li>Restore (3/4)</li><li>Cleanup (4/4)</li></ul>| |Success|The move completed successfully.| |Failed|The move failed.|
Users of OneDrive should notice minimal disruption if their OneDrive is moved to
#### **User's OneDrive**
-While the move is in progress, the user's OneDrive is set to read-only. Once the move is completed, the user is directed to their OneDrive in the new _Geography_ location when they navigate to OneDrive the Microsoft 365 app launcher or a web browser.
+While the move is in progress, the user's OneDrive is set to read-only. Once the move is completed, the user is directed to their OneDrive in the new _Geography_ location when they navigate to OneDrive the Microsoft 365 app launcher or a web browser.
#### **Permissions on OneDrive content**
When moving SharePoint sites between _Geography_ locations, it's important to co
- When the move is expected to start and how long it is expected to take. - What _Geography_ location their site is moving to, and the URL to access the new location. - They should close their files and not make edits during the move.-- File permissions and sharing don't change because of the move.
+- File permissions and sharing won't change because of the move.
- What to expect from the user experience in a multi-geo environment. Be sure to send your sites' users an email when the move completes, informing them that they can resume working on their sites.
Start-SPOSiteContentMove -SourceSiteUrl <SourceSiteUrl> -ValidationOnly -Destina
This returns _Success_ if the site is ready to be moved or _Fail_ if any of blocked conditions are present. #### **Start a SharePoint site _Geography_ move for a site with no associated Microsoft 365 group**
-
+
By default, initial URL for the site will change to the URL of the destination _Geography_ location. For example: `https://Contoso.sharepoint.com/sites/projectx` to `https://ContosoEUR.sharepoint.com/sites/projectx`
Start-SPOSiteContentMove -SourceSiteUrl <siteURL> -DestinationDataLocation <Dest
#### **Start a SharePoint site _Geography_ move for a Microsoft 365 group-connected site**
- To move a Microsoft 365 group-connected site, the Global Administrator or SharePoint Administrator must first change the Preferred Data Location (PDL) attribute for the Microsoft 365 group.
+ To move a Microsoft 365 group-connected site, the Global Administrator or SharePoint Administrator must first change the Preferred Data Location (PDL) attribute for the Microsoft 365 group.
To set the PDL for a Microsoft 365 group:
Start-SPOUnifiedGroupMove -GroupAlias <GroupAlias> -DestinationDataLocation <Des
#### **Cancel a SharePoint site _Geography_ move**
-You can stop a SharePoint site _Geography_ move, provided the move is not in progress or completed by using the `Stop-SPOSiteContentMove` cmdlet.
+You can stop a SharePoint site _Geography_ move, provided the move isn't in progress or completed by using the `Stop-SPOSiteContentMove` cmdlet.
#### **Determining the status of a SharePoint site _Geography_ move**
The move statuses are described in the following table.
|Status|Description| |||
-|Ready to Trigger|The move is pending.|
-|Scheduled|The move is in queue but is yet to start.|
+|Ready to Trigger|The move hasn't started.|
+|Scheduled|The move is in queue but hasn't yet started.|
|InProgress (n/4)|The move is in progress in one of the following states: Validation (1/4), Back up (2/4), Restore (3/4), Cleanup (4/4).| |Success|The move completed successfully.| |Failed|The move failed.|
OneNote Win32 client and UWP (Universal) App automatically detects and seamlessl
#### **Teams (applicable to Microsoft 365 group connected sites)**
-When the SharePoint site _Geography_ move completes, users have access to their Microsoft 365 group site files on the Teams app. Additionally, files shared via Teams chat from their site before the _Geography_ move continue to work after move is complete.
+When the SharePoint site _Geography_ move completes, users will have access to their Microsoft 365 group site files on the Teams app. Additionally, files shared via Teams chat from their site prior to _Geography_ move will continue to work after move is complete.
SharePoint site _Geography_ move doesn't support moving sites backing Private and Shared Channels from one _Geography_ to another, when using the `Start-SPOUnifiedGroupMove` command. Sites backing Private and Shared Channels remain in the original _Geography_. To move those sites individually, admins can initiate direct moves using the `Start-SPOSiteContentMove` command. #### **SharePoint Mobile App (iOS/Android)**
Power Apps need to be recreated in the destination location.
#### **Data movement between geo locations**
-SharePoint uses Azure Blob Storage for its content, while the metadata associated with sites and its files is stored within SharePoint. After the site is moved from its source _Geography_ location to its destination _Geography_ location, the service will also move its associated Blob Storage. Blob Storage moves complete in approximately 40 days. This will not have any impact to users interaction with the data.
+SharePoint uses Azure Blob Storage for its content, while the metadata associated with sites and its files is stored within SharePoint. After the site is moved from its source _Geography_ location to its destination _Geography_ location, the service will also move its associated Blob Storage. Blob Storage moves complete in approximately 40 days. This won't have any impact to users interaction with the data.
**** ### **Enabling SharePoint Multi-Geo in your _Satellite Geography_ location**
-This article is for Global or SharePoint administrators who created a Multi-Geo _Satellite Geography_ location **before** SharePoint Multi-Geo capabilities became generally available on March 27, 2019, and who have not enabled SharePoint Multi-Geo in their _Satellite Geography_ location(s).
+This article is for Global or SharePoint administrators who have created a Multi-Geo _Satellite Geography_ location **before** SharePoint Multi-Geo capabilities became generally available on March 27, 2019, and who haven't enabled SharePoint Multi-Geo in their _Satellite Geography_ location(s).
> [!NOTE] > If you have added a new _Geography_ location **after March 27th, 2019**, you don't need to perform these instructions, as your new _Geography_ location will already be enabled for OneDrive and SharePoint Multi-Geo.
These instructions allow you to enable SharePoint in your _Satellite Geography_
To set a _Geography_ location into SPO mode, connect to the _Geography_ location you want to set in SPO Mode:
-1. Open your SharePoint Online Management Shell and then run and confirm the following code:
+1. Open your SharePoint Management Shell and then run and confirm the following code:
```powershell Connect-SPOService -URL "https://$tenantGeo-admin.sharepoint.com" -Credential $credential
This operation usually takes about an hour while we perform various publish back
## How can I determine customer data location?
-You can find the actual data location in Microsoft 365 admin center. As a _Tenant_ administrator you can find the actual data location, for committed data, by navigating to **Admin->Settings->Org Settings->Organization Profile->Data Location**. If you don't have a _Tenant_ created, you can have a _Tenant_ created when signing up for a Microsoft 365 trial.
+You can find the actual data location in Microsoft 365 admin center. As a _Tenant_ administrator you can find the actual data location, for committed data, by navigating to **Admin->Settings->Org Settings->Organization Profile->Data Location**. If you don't have a _Tenant_ created, you can have a _Tenant_ created when signing up for a Microsoft 365 trial.
enterprise M365 Dr Workload Teams https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-teams.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro
Required Conditions:
-1. _Tenant_ has a sign up country/region included in _Local Region Geography_, the European Union or the United States.
+1. _Tenant_ has a sign-up country/region included in _Local Region Geography_, the European Union, or the United States.
**Commitment:**
-_For current language please refer to the [Privacy and Security Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all) and view the section titled "Location of Customer Data at Rest for Core Online Services"._
+_For current language, please refer to the [Privacy and Security Product Terms](https://www.microsoft.com/licensing/terms/product/PrivacyandSecurityTerms/all) and view the section titled "Location of Customer Data at Rest for Core Online Services."_
### Advanced Data Residency add-on
Required Conditions:
**Commitment:**
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#microsoft-teams) to understand the specific commitments provided via Product Terms. Examples of the committed data include:
+Refer to the [ADR Commitment page](m365-dr-commitments.md#microsoft-teams) to understand the specific commitments provided via Product Terms. Examples of the committed data include:
-- Chat/ channel messages and team structure: Every team in Microsoft Teams is backed by a Microsoft 365 Modern Group and its SharePoint site and Exchange mailbox. Private chats (including group chats), messages sent as part of a conversation in a channel, and the structure of teams and channels are stored in an Azure powered chat service. The data is also stored in a hidden folder in the user and group mailboxes to enable information protection features. -- Images and Media: Media used in chats (except for Giphy GIFs which are not stored but are a reference link to the original Giphy URL) are stored in an Azure based Media Service deployed to the same locations as the chat service.-- Meeting Recordings: For users of Microsoft Stream (on SharePoint) Meeting Recordings are stored in the OneDrive for Business storage of the user that initiates the recording.
+- Chat/ channel messages and team structure: Every team in Microsoft Teams is backed by a Microsoft 365 Modern Group and its SharePoint site and Exchange mailbox. Private chats (including group chats), messages sent as part of a conversation in a channel, and the structure of teams and channels are stored in an Azure powered chat service. The data is also stored in a hidden folder in the user and group mailboxes to enable information protection features.
+- Images and Media: Media used in chats (except for Giphy GIFs which aren't stored but are a reference link to the original Giphy URL) are stored in an Azure based Media Service deployed to the same locations as the chat service.
+- Meeting Recordings: For users of Microsoft Stream (on SharePoint) Meeting Recordings are stored in the OneDrive storage of the user that initiates the recording.
### Multi-Geo add-on
Teams Multi-Geo is seamless to the end user. Once you change the PDL of a user o
### Migration **Files Tab**
-After the migration is complete the Files tab may take additional time (up to 7 seconds) to fully load when the user first attempts to use it.
+After the migration is complete the Files tab might take additional time (up to 7 seconds) to fully load when the user first attempts to use it.
**Read-only period** Teams chat services moves each thread individually. The thread is locked in a read-only state during the move, which lasts a few seconds per thread. Threads remain accessible during the migration.
Teams files are stored in SharePoint and Teams chat files are stored in OneDrive
### How can I determine customer data location?
-You can find the actual data location in _Tenant_ Admin Center. As a _Tenant_ administrator you can find the actual data location, for committed data, by navigating to Admin|Settings|Org Settings|Organization Profile|Data Location.
+You can find the actual data location in _Tenant_ Admin Center. As a _Tenant_ administrator you can find the actual data location, for committed data, by navigating to **Settings > Org settings > Organization profile > Data location**.
enterprise M365 Dr Workload Viva Connections https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-viva-connections.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro
Service documentation: [Overview: Viva Connections](/viva/connections/viva-connections-overview)
-Capability Summary: Microsoft Viva Connections is your gateway to a modern employee experience designed to keep everyone engaged and informed. Viva Connections is a customizable app in Microsoft Teams that gives everyone a personalized destination to discover relevant news, conversations, and the tools they need to succeed. Data storage is related to the following Viva Connections Components: Dashboard and feed.
+Capability Summary: Microsoft Viva Connections is your gateway to a modern employee experience designed to keep everyone engaged and informed. Viva Connections is a customizable app in Microsoft Teams that gives everyone a personalized destination to discover relevant news, conversations, and the tools they need to succeed. Data storage is related to the following Viva Connections Components: Dashboard and feed.
## Data Residency Commitments Available
Required Conditions:
**Commitment:**
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#viva-connections) for the specific customer data at rest commitment for Viva Connections.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#viva-connections) for the specific customer data at rest commitment for Viva Connections.
### Migration
-Data is stored within Exchange Online, SharePoint Online and Microsoft Teams. Migration processes are handled by the applicable/relevant workloads.
+Data is stored within Exchange Online, SharePoint and Microsoft Teams. Migration processes are handled by the applicable/relevant workloads.
### How can I determine customer data location?
enterprise M365 Dr Workload Viva Topics https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/m365-dr-workload-viva-topics.md
f1.keywords: - NOCSH Previously updated : 12/27/2023 Last updated : 02/29/2024 - it-pro
Required Conditions:
**Commitment:**
-Please refer to the [ADR Commitment page](m365-dr-commitments.md#viva-topics) for the specific customer data at rest commitment for Viva Topics.
+Refer to the [ADR Commitment page](m365-dr-commitments.md#viva-topics) for the specific customer data at rest commitment for Viva Topics.
## Migration
-Data stored is maintained within Exchange Online, SharePoint Online, and Microsoft Teams. Migration processes are handled by the applicable/relevant workloads.
+Data stored is maintained within Exchange Online, SharePoint, and Microsoft Teams. Migration processes are handled by the applicable/relevant workloads.
## How can I determine customer data location?
enterprise O365 Data Locations https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/o365-data-locations.md
Previously updated : 07/31/2023 Last updated : 02/29/2024 audience: ITPro
- Ent_TLGs - admindeeplinkMAC ms.assetid: 706d5449-45e5-4b0c-a012-ab60501899ad
-description: "Determine where your Microsoft 365 customer data is stored worldwide"
+description: "Determine where your Microsoft 365 customer data is stored worldwide."
# Where your Microsoft 365 customer data is stored
description: "Determine where your Microsoft 365 customer data is stored worldwi
See the following links to understand how you can determine current data residency and data residency commitments. - Exchange Online [Data Location](m365-dr-workload-exo.md#how-can-i-determine-customer-data-location)-- SharePoint Online (ODSP) and OneDrive for Business [Data Location](m365-dr-workload-spo.md#how-can-i-determine-customer-data-location)
+- SharePoint (ODSP) and OneDrive [Data Location](m365-dr-workload-spo.md#how-can-i-determine-customer-data-location)
- Microsoft Teams [Data Location](m365-dr-workload-teams.md#how-can-i-determine-customer-data-location)
+- Microsoft Copilot for Microsoft 365 [Data Location](m365-dr-workload-copilot.md#how-can-i-determine-customer-data-location)
- Microsoft Defender for Office (MDO P1) [Data Location](m365-dr-workload-mdo-p1.md#how-can-i-determine-customer-data-location) - Office for the Web (Office Online) [Data Location](m365-dr-workload-office-for-web.md#how-can-i-determine-customer-data-location) - Viva Connections [Data Location](m365-dr-workload-viva-connections.md#how-can-i-determine-customer-data-location)
includes Microsoft 365 Multi Geo Locations https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/includes/microsoft-365-multi-geo-locations.md
Last updated 05/24/2023
|Macro Region Geography 2 - Asia-Pacific |APC |Southeast or East Asia datacenters| |Australia |AUS |Southeast or East Asia datacenters| |Brazil |BRA |(eDiscovery data location coming soon)|
-|Canada |CAN |US datacenters |
+|Canada |CAN |Canada datacenters |
|Macro Region Geography 1 - EMEA |EUR |Europe datacenters | |France |FRA |Europe datacenters | |Germany |DEU |Europe datacenters |
security Adv Tech Of Mdav https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/adv-tech-of-mdav.md
As part of Microsoft's defense-in-depth solution, the superior performance of th
These protections are further amplified through [Microsoft Defender XDR](https://www.microsoft.com/security/business/siem-and-xdr/microsoft-defender-xdr), Microsoft's comprehensive, end-to-end security solution for the modern workplace. Through [signal-sharing and orchestration of remediation across Microsoft's security technologies](https://techcommunity.microsoft.com/t5/Security-Privacy-and-Compliance/Announcing-Microsoft-Threat-Protection/ba-p/262783), Microsoft Defender XDR secures identities, endpoints, email and data, apps, and infrastructure. 
+## Memory protection and memory scanning
+
+Microsoft Defender Antivirus (MDAV) provides memory protection with different engines:
+
+|Client|Cloud|
+|:|:|
+|Behavior Monitoring | Behavior-based Machine Learning|
+|Antimalware Scan Interface(AMSI) integration | AMSI-paired Machine Learning|
+|Emulation |Detonation-based Machine Learning|
+|Memory scanning |N/A|
+
+An additional layer to help prevent memory-based attacks is to use the Attack Surface Reduction (ASR) rule ΓÇô **Block Office applications from injecting code into other processes**. For more information see, [Block Office applications from injecting code into other processes](attack-surface-reduction-rules-reference.md#block-office-applications-from-injecting-code-into-other-processes).
+ ## Frequently asked questions ### How many malware threats does Microsoft Defender Antivirus block per month?  [Five billion threats on devices every month](https://www.microsoft.com/en-us/security/blog/2019/05/14/executing-vision-microsoft-threat-protection/).
+### How does Microsoft Defender Antivirus memory protection help?
+
+See [Detecting reflective DLL loading with Windows Defender for Endpoint](https://www.microsoft.com/security/blog/2017/11/13/detecting-reflective-dll-loading-with-windows-defender-atp/) to learn about one way Microsoft Defender Antivirus memory attack protection helps.
+ ### Do you all focus your detections/preventions in one specific geographic area?  No, we are in all the geographical regions (Americas, EMEA, and APAC). 
security Evaluate Microsoft Defender Antivirus https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/evaluate-microsoft-defender-antivirus.md
search.appverid: met150
- [Microsoft Defender for Endpoint Plan 2](https://go.microsoft.com/fwlink/?linkid=2154037) **Platforms**+ - Windows Use this guide to determine how well Microsoft Defender Antivirus protects you from viruses, malware, and potentially unwanted applications. It explains the important next-generation protection features of Microsoft Defender Antivirus available for both small and large enterprises, and how they increase malware detection and protection across your network. You can choose to configure and evaluate each setting independently, or all at once. We have grouped similar settings based upon typical evaluation scenarios, and include instructions for using PowerShell to enable the settings.
-The guide is available in PDF format for offline viewing:
+The guide is available:
-- [Download the guide in PDF format](https://www.microsoft.com/download/details.aspx?id=54795)
+- [Evaluate Microsoft Defender Antivirus using PowerShell](microsoft-defender-antivirus-using-powershell.md)
+- in PDF format for offline viewing: [Download the guide in PDF format](https://www.microsoft.com/download/details.aspx?id=54795).
You can also download a PowerShell that will enable all the settings described in the guide automatically. You can obtain the script alongside the PDF download above, or individually from PowerShell Gallery:
You can also download a PowerShell that will enable all the settings described i
> [!TIP] > If you're looking for Antivirus related information for other platforms, see:+ > - [Set preferences for Microsoft Defender for Endpoint on macOS](mac-preferences.md) > - [Microsoft Defender for Endpoint on Mac](microsoft-defender-endpoint-mac.md) > - [macOS Antivirus policy settings for Microsoft Defender Antivirus for Intune](/mem/intune/protect/antivirus-microsoft-defender-settings-macos)
You can also download a PowerShell that will enable all the settings described i
- [Microsoft Defender Antivirus in Windows 10](microsoft-defender-antivirus-in-windows-10.md) - [Deploy Microsoft Defender Antivirus](deploy-manage-report-microsoft-defender-antivirus.md)+ [!INCLUDE [Microsoft Defender for Endpoint Tech Community](../../includes/defender-mde-techcommunity.md)]
security Evaluate Network Protection https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/evaluate-network-protection.md
audience: ITPro
-+
- tier2 - mde-asr search.appverid: met150 Previously updated : 12/18/2020 Last updated : 02/28/2024 # Evaluate network protection
To review apps that would have been blocked, open Event Viewer and filter for Ev
| 1125 | Windows Defender (Operational) | Event when a network connection is audited | | 1126 | Windows Defender (Operational) | Event when a network connection is blocked |
+### Troubleshooting Network Protection
+
+If network protection fails to detect, make sure that the following pre-requisites are enabled:
+
+1. Microsoft Defender Antivirus is the primary antivirus app (active mode)
+
+1. [Behavior Monitoring is enabled](/microsoft-365/security/defender-endpoint/behavior-monitor)
+
+1. [Cloud Protection is enabled](/microsoft-365/security/defender-endpoint/enable-cloud-protection-microsoft-defender-antivirus)
+
+1. [Cloud Protection network connectivity is functional](/microsoft-365/security/defender-endpoint/configure-network-connections-microsoft-defender-antivirus)
+ ## See also - [Network protection](network-protection.md)
security Hardware Acceleration And Mdav https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/hardware-acceleration-and-mdav.md
+
+ Title: Hardware acceleration and Microsoft Defender Antivirus.
+description: How Microsoft Defender Antivirus incorporates hardware acceleration and Microsoft Defender Antivirus.
++++++ Last updated : 02/26/2024+
+ms.localizationpriority: medium
+
+search.appverid: MET150
+f1 keywords: NOCSH
+audience: ITPro
++
+# Hardware acceleration and Microsoft Defender Antivirus
+
+**Applies to:**
+
+- [Microsoft Defender XDR](https://go.microsoft.com/fwlink/?linkid=2118804)
+- [Microsoft Defender for Endpoint Plan 2](https://go.microsoft.com/fwlink/p/?linkid=2154037)
+- [Microsoft Defender for Business](https://www.microsoft.com/security/business/endpoint-security/microsoft-defender-business)
+- [Microsoft Defender for Endpoint Plan 1](https://go.microsoft.com/fwlink/?linkid=2154037)  
+- Microsoft Defender Antivirus
+- [Microsoft Defender for Individuals](https://www.microsoft.com/microsoft-365/microsoft-defender-for-individuals)
+
+**Platforms:**
+
+- Windows 11, Windows 10
+
+**Known limitations:**
+
+- Intel TDT doesn't support processors designated as servers.
+- Multi-level virtualization isn't currently supported.
+- Windows Server workloads aren't supported.
+- Windows clients running on Xeon processors aren't supported due to Intel Xeon processors not supporting Intel TDT functionality.
+
+## Microsoft Defender Antivirus (MDAV) and Intel Threat Detection Technology (TDT)
+
+This table shows the Intel TDT technologies Microsoft collaborated with Intel on to provide security while also balancing performance:
+
+|Available since |Intel TDT technology | Intel Threat Detection Technology (TDT) available on|
+|:|:|:|
+|2018|Intel TDT ΓÇô Accelerated Memory Scanning (AMS)|Intel integrated graphic 6th Gen Core (circa 2015) or newer family of processors, running on laptops, tablets, and desktop systems.|
+|2021|Intel TDT - Cryptojacking detector| Intel 6th Gen Core (circa 2015) or newer family of processors, running on laptops, tablets, and desktop systems.|
+|2022|Intel TDT - Ransomware detector| Intel 8th Gen Core or newer family of processors.|
+
+**Intel Threat Detection Technology (TDT) - Accelerated Memory Scanning (AMS):** Introduced extra memory scanning capabilities to detect fileless attacks that are expensive on the Central Processing Unit (CPU), and then offload them to the integrated Graphics Processor Unit (integrated GPU). Two benefits are:
+
+- lower CPU consumption
+- A reduction of System-on-a-chip (SoC) power consumption leading to longer battery life on laptops and tablets
+
+**Intel Threat Detection Technology (TDT) - Cryptojacking:** Enhanced detection by leveraging IntelΓÇÖs Central Processing Unit (CPU) performance monitoring unit (PMU) and offloading to the integrated Graphics Processor Unit (integrated GPU) to detect the malware code execution (fingerprint) of repeated mathematical operations at runtime. The signals are processed by a layer of machine learning with minimal overhead.
+
+### How do you enable Intel TDT AMS or Cryptojacking integration?
+
+Enabled by default when Microsoft Defender Antivirus is running.
+
+### What do the detections show up as?
+
+The regular Microsoft Defender Antivirus Event ID **1116**.
+
+### What type of attacks does it help with?
+
+- We use the Intel TDT - Cryptojacking detector to thwart various cryptojacking mallards. The following Coinminer campaigns were successfully detected and blocked using the TDT Cryptojacking detector: [YouTube Pirated Software Videos Deliver Triple Threat: Vidar Stealer, LaPlasa Clipper, XMRig Miner](https://www.fortinet.com/blog/threat-research/youtube-pirated-software-videos-deliver-triple-threat-vidar-stealer-laplas-clipper-xmrig-miner)
+
+- We use the Intel TDT detector to identify instances of CryptoJacking malware abusing Windows binaries (lolbins), and then employ Defender behavior monitoring to prevent and block such activities effectively. For more information, see [Hardware-based threat defense against increasingly complex cryptojackers](https://www.microsoft.com/security/blog/2022/08/18/hardware-based-threat-defense-against-increasingly-complex-cryptojackers/).
+
+## Related articles
+
+- [Defending against ransomware with Microsoft Defender for Endpoint and Intel TDT: A Case Study](https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/defending-against-ransomware-with-microsoft-defender-for/ba-p/3243941).
security Linux Deploy Defender For Endpoint With Chef https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-deploy-defender-for-endpoint-with-chef.md
description: Learn how to deploy Defender for Endpoint on Linux with Chef.
+ ms.localizationpriority: medium audience: ITPro
security Linux Exclusions https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-exclusions.md
description: Provide and validate exclusions for Microsoft Defender for Endpoint
+ ms.localizationpriority: medium audience: ITPro
security Linux Install Manually https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-install-manually.md
Title: Deploy Microsoft Defender for Endpoint on Linux manually- description: Describes how to deploy Microsoft Defender for Endpoint on Linux manually from the command line. + ms.localizationpriority: medium audience: ITPro
security Linux Install With Ansible https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-install-with-ansible.md
Title: Deploy Microsoft Defender for Endpoint on Linux with Ansible-+ description: Describes how to deploy Microsoft Defender for Endpoint on Linux using Ansible.
security Linux Install With Puppet https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-install-with-puppet.md
Title: Deploy Microsoft Defender for Endpoint on Linux with Puppet-+ description: Describes how to deploy Microsoft Defender for Endpoint on Linux using Puppet.
security Linux Install With Saltack https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-install-with-saltack.md
Title: Deploy Microsoft Defender for Endpoint on Linux with SaltStack-+ description: Describes how to deploy Microsoft Defender for Endpoint on Linux using Saltstack.
security Linux Preferences https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-preferences.md
Title: Set preferences for Microsoft Defender for Endpoint on Linux-+ description: Describes how to configure Microsoft Defender for Endpoint on Linux in enterprises.
security Linux Privacy https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-privacy.md
description: Privacy controls, how to configure policy settings that impact priv
+ ms.localizationpriority: medium audience: ITPro
security Linux Pua https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-pua.md
description: Detect and block Potentially Unwanted Applications (PUA) using Micr
+ ms.localizationpriority: medium audience: ITPro
security Linux Resources https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-resources.md
Title: Microsoft Defender for Endpoint on Linux resources-+ description: Describes resources for Microsoft Defender for Endpoint on Linux, including how to uninstall it, how to collect diagnostic logs, CLI commands, and known issues with the product.
security Linux Schedule Scan Mde https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-schedule-scan-mde.md
description: Learn how to schedule an automatic scanning time for Microsoft Defe
+ ms.localizationpriority: medium audience: ITPro
Use the following commands:
cron - Manage cron.d and crontab entries ```
-For more information, see [Ansible documentation](https://docs.ansible.com/ansible/latest/modules/cron_module.html).
+For more information, see [Ansible documentation](https://docs.ansible.com/ansible/latest).
### To set crontabs in Chef
security Linux Static Proxy Configuration https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-static-proxy-configuration.md
Title: Microsoft Defender for Endpoint on Linux static proxy discovery-+ description: Describes how to configure Microsoft Defender for Endpoint on Linux, for static proxy discovery.
security Linux Support Connectivity https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-support-connectivity.md
Title: Troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint on Linux-+ description: Learn how to troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint on Linux.
security Linux Support Ebpf https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-support-ebpf.md
description: eBPF-based sensor deployment in Microsoft Defender for Endpoint on
+ ms.localizationpriority: medium audience: ITPro
security Linux Support Events https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-support-events.md
description: Troubleshoot missing events or alerts issues in Microsoft Defender
+ ms.localizationpriority: medium audience: ITPro
security Linux Support Install https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-support-install.md
Title: Troubleshoot installation issues for Microsoft Defender for Endpoint on Linux-+ description: Troubleshoot installation issues for Microsoft Defender for Endpoint on Linux.
security Linux Support Perf https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-support-perf.md
description: Troubleshoot performance issues in Microsoft Defender for Endpoint
+ ms.localizationpriority: medium Last updated 01/18/2023
security Linux Support Rhel https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-support-rhel.md
Title: Troubleshoot issues for Microsoft Defender for Endpoint on Linux RHEL6- description: Troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint on Linux search.appverid: met150 + ms.localizationpriority: medium audience: ITPro
security Linux Update Mde Linux https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-update-mde-linux.md
description: Learn how to schedule an update of the Microsoft Defender for Endpo
+ ms.localizationpriority: medium audience: ITPro
Use the following commands:
cron - Manage cron.d and crontab entries ```
-See <https://docs.ansible.com/ansible/latest/modules/cron_module.html> for more information.
+See <https://docs.ansible.com/ansible/latest> for more information.
### To set crontabs in Chef
security Linux Updates https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-updates.md
Title: Deploy updates for Microsoft Defender for Endpoint on Linux- description: Describes how to deploy updates for Microsoft Defender for Endpoint on Linux in enterprise environments. + ms.localizationpriority: medium audience: ITPro
security Linux Whatsnew https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-whatsnew.md
description: List of major changes for Microsoft Defender for Endpoint on Linux.
-+ ms.localizationpriority: medium Last updated 02/12/2024
security Manage Auto Investigation https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/manage-auto-investigation.md
For incidents with a remediation status of **Pending approval**, you can also ap
- Select the Approve pending action option to initiate a pending action. - Select the Reject pending action option to prevent a pending action from being taken. ## Review completed actions
security Microsoft Defender Antivirus Using Powershell https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-using-powershell.md
+
+ Title: Evaluate Microsoft Defender Antivirus using PowerShell.
+description: Businesses of all sizes can use this guide to evaluate and test the protection offered by Microsoft Defender Antivirus in Windows using PowerShell.
+
+ms.localizationpriority: medium
++++ Last updated : 10/18/2018++++
+- m365-security
+- tier2
+- mde-ngp
+search.appverid: met150
++
+# Evaluate Microsoft Defender Antivirus using Powershell
++
+**Applies to:**
+
+- Microsoft Defender Antivirus
+- [Microsoft Defender for Endpoint Plan 1](https://go.microsoft.com/fwlink/?linkid=2154037)
+- [Microsoft Defender for Endpoint Plan 2](https://go.microsoft.com/fwlink/?linkid=2154037)
+
+In Windows 10 or newer and Windows Server 2016 or newer you can use next-generation protection features offered by Microsoft Defender Antivirus(MDAV) and Microsoft Defender Exploit Guard (Microsoft Defender EG).
+
+This topic explains how to enable and test the key protection features in Microsoft Defender AV and Microsoft Defender EG, and provides you with guidance and links to more information.
+
+We recommend you use [this evaluation PowerShell script](https://aka.ms/wdeppscript) to configure these features, but you can individually enable each feature with the cmdlets described in the rest of this document.
+
+See the following product documentation libraries for more information about our EPP products:
+
+- [Microsoft Defender Antivirus](https://aka.ms/wdavdocs)
+- [Microsoft Defender Exploit Guard](https://aka.ms/wdegdocs)
+
+This article describes configuration options in Windows 10 or newer and Windows Server 2016 or newer.
+
+If you have any questions about a detection that Microsoft Defender AV makes, or you discover a missed detection, you can submit a file to us at [our sample submission help site.](https://www.microsoft.com/security/portal/mmpc/help/submission-help.aspx)
+
+## Use PowerShell to enable the features
+
+This guide provides the [Microsoft Defender Antivirus cmdlets](/powershell/module/defender/?view=windowsserver2022-ps) that configure the features you should use to evaluate our protection.
+
+To use these cmdlets:
+
+> 1\. Open an elevated instance of PowerShell (choose to Run as administrator).
+>
+> 2\. Enter the command listed in this guide and press Enter.
+
+You can check the status of all settings before you begin, or during your evaluation, by using the [Get-MpPreference PowerShell cmdlet](/powershell/module/defender/get-mppreference?view=windowsserver2022-ps).
+
+Microsoft Defender AV indicates a detection through [standard Windows notifications](configure-notifications-microsoft-defender-antivirus.md). You can also [review detections in the Microsoft Defender AV app](review-scan-results-microsoft-defender-antivirus.md).
+
+The Windows event log also records detection and engine events. [See the Microsoft Defender Antivirus events article for a list of event IDs](troubleshoot-microsoft-defender-antivirus.yml) and their corresponding actions.
+
+## Cloud protection features
+
+Standard definition updates can take hours to prepare and deliver; our cloud-delivered protection service can deliver this protection in seconds.
+
+More details are available in [Use next-gen technologies in Microsoft Defender Antivirus through cloud-delivered protection](/windows/threat-protection/windows-defender-antivirus/utilize-microsoft-cloud-protection-windows-defender-antivirus).
+
+| Description | PowerShell Command |
+|||
+|Enable the Microsoft Defender Cloud for near-instant protection and increased protection|Set-MpPreference -MAPSReporting Advanced|
+|Automatically submit samples to increase group protection|Set-MpPreference -SubmitSamplesConsent Always|
+|Always Use the cloud to block new malware within seconds|Set-MpPreference -DisableBlockAtFirstSeen 0|
+|Scan all downloaded files and attachments|Set-MpPreference -DisableIOAVProtection 0|
+|Set cloud block level to 'High'|Set-MpPreference -CloudBlockLevel High|
+|High Set cloud block timeout to 1 minute|Set-MpPreference -CloudExtendedTimeout 50|
+
+## Always-on protection (real-time scanning)
+
+Microsoft Defender AV scans files as soon as they're seen by Windows, and will monitor running processes for known or suspected malicious behaviors. If the antivirus engine discovers malicious modification, it will immediately block the process or file from running.
+
+See [Configure behavioral, heuristic, and real-time protection](configure-protection-features-microsoft-defender-antivirus.md) for more details on these options.
+
+| Description | PowerShell Command |
+|||
+|Constantly monitor files and processes for known malware modifications | Set-MpPreference -DisableRealtimeMonitoring 0 |
+|Constantly monitor for known malware behaviors ΓÇô even in ΓÇÿcleanΓÇÖ files and running programs | Set-MpPreference -DisableBehaviorMonitoring 0 |
+|Scan scripts as soon as they are seen or run | Set-MpPreference -DisableScriptScanning 0 |
+|Scan removable drives as soon as they are inserted or mounted | Set-MpPreference -DisableRemovableDriveScanning 0 |
+
+## Potentially Unwanted Application protection
+
+[Potentially unwanted applications](detect-block-potentially-unwanted-apps-microsoft-defender-antivirus.md) are files and apps that are not traditionally classified as malicious. These include third-party installers for common software, ad-injection, and certain types of toolbars in your browser.
+
+| Description | PowerShell Command |
+|||
+|Prevent grayware, adware, and other potentially unwanted apps from installing|Set-MpPreference -PUAProtection Enabled|
+
+## Email and archive scanning
+
+You can set Microsoft Defender Antivirus to automatically scan certain types of email files and archive files (such as .zip files) when they are seen by Windows. More information about this feature can be found under the [Manage email scans in Microsoft Defender](configure-advanced-scan-types-microsoft-defender-antivirus.md) article.
++
+| Description | PowerShell Command |
+|||
+|Scan email files and archives|Set-MpPreference -DisableArchiveScanning 0 </br> Set-MpPreference -DisableEmailScanning 0|
+
+## Manage product and protection updates
+
+Typically, you receive Microsoft Defender AV updates from Windows update once per day. However, you can increase the frequency of those updates by setting the following options, and [ensuring that your updates are managed either in System Center Configuration Manager, with Group Policy, or in Intune](deploy-manage-report-microsoft-defender-antivirus.md).
+
+| Description | PowerShell Command |
+|||
+|Update signatures every day|Set-MpPreference -SignatureUpdateInterval|
+|Check to update signatures before running a scheduled scan|Set-MpPreference -CheckForSignaturesBeforeRunningScan 1|
+
+## Advanced threat and exploit mitigation and prevention Controlled folder access
+
+Microsoft Defender Exploit Guard provides features that help protect devices from known malicious behaviors and attacks on vulnerable technologies.
+
+| Description | PowerShell Command |
+|||
+|Prevent malicious and suspicious apps (such as ransomware) from making changes to protected folders with Controlled folder access|Set-MpPreference -EnableControlledFolderAccess Enabled|
+|Block connections to known bad IP addresses and other network connections with [Network protection](network-protection.md)|Set-MpPreference -EnableNetworkProtection Enabled|
+|Apply a standard set of mitigations with [Exploit protection](exploit-protection.md)|Invoke-WebRequest </br> https://demo.wd.microsoft.com/Content/ProcessMitigation.xml -OutFile ProcessMitigation.xml </br >Set-ProcessMitigation -PolicyFilePath ProcessMitigation.xml|
+|Block known malicious attack vectors with [Attack surface reduction](attack-surface-reduction.md)|Add-MpPreference -AttackSurfaceReductionRules\_Ids 56a863a9-875e-4185-98a7-b882c64b5ce5 -AttackSurfaceReductionRules\_Actions Enabled </br>Add-MpPreference -AttackSurfaceReductionRules\_Ids 7674ba52-37eb-4a4f-a9a1-f0f9a1619a2c -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids D4F940AB-401B-4EfC-AADCAD5F3C50688A -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids 9e6c4e1f-7d60-472f-ba1a-a39ef669e4b2 -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids BE9BA2D9-53EA-4CDC-84E5- 9B1EEEE46550 -AttackSurfaceReductionRules\_Actions Enabled </br>Add-MpPreference -AttackSurfaceReductionRules\_Ids 01443614-CD74-433A-B99E2ECDC07BFC25 -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids 5BEB7EFE-FD9A-4556801D275E5FFC04CC -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids D3E037E1-3EB8-44C8-A917- 57927947596D -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids 3B576869-A4EC-4529-8536- B80A7769E899 -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids 75668C1F-73B5-4CF0-BB93- 3ECF5CB7CC84 -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids 26190899-1602-49e8-8b27-eb1d0a1ce869 -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids e6db77e5-3df2-4cf1-b95a-636979351e5b -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids D1E49AAC-8F56-4280-B9BA993A6D77406C -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids 33ddedf1-c6e0-47cb-833e-de6133960387 -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids B2B3F03D-6A65-4F7B-A9C7- 1C7EF74A9BA4 -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids c0033c00-d16d-4114-a5a0-dc9b3a7d2ceb -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids a8f5898e-1dc8-49a9-9878-85004b8a61e6 -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids 92E97FA1-2EDF-4476-BDD6- 9DD0B4DDDC7B -AttackSurfaceReductionRules\_Actions Enabled</br>Add-MpPreference -AttackSurfaceReductionRules\_Ids C1DB55AB-C21A-4637-BB3FA12568109D35 -AttackSurfaceReductionRules\_Actions Enabled|
+
+Some rules may block behavior you find acceptable in your organization. In these cases, change the rule from Enabled to Audit to prevent unwanted blocks.
+
+## One-click Microsoft Defender Offline Scan
+
+Microsoft Defender Offline Scan is a specialized tool that comes with Windows 10 or newer, and allows you to boot a machine into a dedicated environment outside of the normal operating system. ItΓÇÖs especially useful for potent malware, such as rootkits.
+
+See [Microsoft Defender Offline](microsoft-defender-offline.md) for more information on how this feature works.
+
+| Description | PowerShell Command |
+|||
+|Ensure notifications allow you to boot the PC into a specialized malware removal environment|Set-MpPreference -UILockdown 0|
+
+## Resources
+
+This section lists many resources that can assist you with evaluating Microsoft Defender Antivirus.
+
+- [Microsoft Defender in Windows 10 library](microsoft-defender-antivirus-windows.md)
+- [Microsoft Defender for Windows Server 2016 library](/windows-server/security/windows-defender/windows-defender-overview-windows-server)
+- [Windows 10 security library](/windows/resources/)
+- [Windows 10 security overview](/windows/security/threat-protection/overview-of-threat-mitigations-in-windows-10)
+- [Microsoft Defender Security Intelligence (Microsoft Malware Protection Center (MMPC)) website ΓÇô threat research and response](https://www.microsoft.com/wdsi)
+- [Microsoft Security website](https://www.microsoft.com/security)
+- [Microsoft Security blog](https://www.microsoft.com/security/blog)
security Microsoft Defender Antivirus Windows https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-windows.md
Title: Microsoft Defender Antivirus in Windows
+ Title: Microsoft Defender Antivirus in Windows Overview
description: Learn how to manage, configure, and use Microsoft Defender Antivirus, built-in antimalware and antivirus protection. ms.localizationpriority: high
search.appverid: met150
-# Microsoft Defender Antivirus in Windows
+# Microsoft Defender Antivirus in Windows Overview
**Applies to:**
search.appverid: met150
- Microsoft Defender Antivirus **Platforms**-- Windows +
+- Windows
Microsoft Defender Antivirus is available in Windows 10 and Windows 11, and in versions of Windows Server.
Modern malware requires modern solutions. Microsoft Defender Antivirus stopped u
Microsoft Defender Antivirus can block almost all malware at first sight, in milliseconds.
-WeΓÇÖve also designed our antivirus solution to work in both online and offline scenarios. For offline scenarios, the latest dynamic intelligence from the Intelligence Security Graph is provisioned to the endpoint regularly throughout the day. When connected to the cloud, itΓÇÖs fed real-time intelligence from the [Intelligent Security Graph](https://www.microsoft.com/en-us/security/blog/2018/04/17/connect-to-the-intelligent-security-graph-using-a-new-api/).
+WeΓÇÖve also designed our antivirus solution to work in both online and offline scenarios. For offline scenarios, the latest dynamic intelligence from the Intelligence Security Graph is provisioned to the endpoint regularly throughout the day. When connected to the cloud, itΓÇÖs fed real-time intelligence from the [Intelligent Security Graph](https://www.microsoft.com/security/blog/2018/04/17/connect-to-the-intelligent-security-graph-using-a-new-api/).
Microsoft Defender Antivirus can also stop threats based on their behaviors and process trees even when the threat has started execution. A common example of these kinds of attacks is fileless malware. Microsoft's Next-generation protection features work together to identify and block malware based on abnormal behavior. To learn more, see [Behavioral blocking and containment](behavioral-blocking-containment.md).
security Network Protection Linux https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/network-protection-linux.md
Create indicators that define the detection, prevention, and exclusion of entiti
Currently supported sources are the cloud detection engine of Defender for Endpoint, the automated investigation and remediation engine, and the endpoint prevention engine (Microsoft Defender Antivirus). For more information, see: [Create indicators for IPs and URLs/domains](indicator-ip-domain.md).
security Network Protection https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/network-protection.md
Title: Use network protection to help prevent connections to bad sites
description: Protect your network by preventing users from accessing known malicious and suspicious network addresses ms.localizationpriority: medium Previously updated : 02/02/2024 Last updated : 02/28/2024 audience: ITPro
Network protection requires Windows 10 or 11 (Pro or Enterprise), Windows Server
| Windows version | Microsoft Defender Antivirus | |:|:|
-| Windows 10 version 1709 or later, Windows 11, Windows Server 1803 or later | Make sure that [Microsoft Defender Antivirus real-time protection](configure-real-time-protection-microsoft-defender-antivirus.md) and [cloud-delivered protection](enable-cloud-protection-microsoft-defender-antivirus.md) are enabled (active) |
+| Windows 10 version 1709 or later, Windows 11, Windows Server 1803 or later | Make sure that [Microsoft Defender Antivirus real-time protection](configure-real-time-protection-microsoft-defender-antivirus.md), [behavior monitoring](/microsoft-365/security/defender-endpoint/behavior-monitor) and [cloud-delivered protection](enable-cloud-protection-microsoft-defender-antivirus.md) are enabled (active) |
| Windows Server 2012 R2 and Windows Server 2016 with the unified agent | Platform Update version 4.18.2001.x.x or newer | ## Why network protection is important
security Respond File Alerts https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/respond-file-alerts.md
Last updated 08/07/2023
**Applies to:** -- [Microsoft Defender for Endpoint Plan 1](/microsoft-365/security/defender-endpoint/defender-endpoint-plan-1) - [Microsoft Defender for Endpoint Plan 2](https://go.microsoft.com/fwlink/p/?linkid=2154037) [!include[Prerelease information](../../includes/prerelease.md)]
Response actions run along the top of the file page, and include:
- Go hunt - Deep analysis
+> [!NOTE]
+> If you're using Defender for Endpoint Plan 1, you can take certain response actions manually. For more information, see [Manual response actions](/microsoft-365/security/defender-endpoint/defender-endpoint-plan-1#manual-response-actions).
+ You can also submit files for deep analysis, to run the file in a secure cloud sandbox. When the analysis is complete, you'll get a detailed report that provides information about the behavior of the file. You can submit files for deep analysis and read past reports by selecting the **Deep analysis** action. Some actions require certain permissions. The following table describes what action certain permissions can take on portable executable (PE) and non-PE files:
security Advanced Hunting Example https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/advanced-hunting-example.md
Last updated 9/13/2023
[!INCLUDE [Microsoft Defender XDR rebranding](../includes/microsoft-defender.md)] - **Applies to:** - Microsoft Defender XDR
Quickly navigating to Kusto query language to hunt for issues is an advantage of
```kusto EmailPostDeliveryEvents | where Timestamp > ago(7d)
- //List malicious emails that were not zapped successfullyconverge-2-endpoints-new.png
+ //List malicious emails that were not zapped successfully
| where ActionType has "ZAP" and ActionResult == "Error" | project ZapTime = Timestamp, ActionType, NetworkMessageId , RecipientEmailAddress //Get logon activity of recipients using RecipientEmailAddress and AccountUpn
Quickly navigating to Kusto query language to hunt for issues is an advantage of
The data from this query appears in the **Results** panel below the query itself. Results include information like `DeviceName`, `AccountDisplayName`, and `ZapTime` in a customizable result set. Results can also be exported for your records. To save the query for reuse, select **Save** \> **Save As** to add the query to your list of queries, shared, or community queries. ## Related information+ - [Advanced hunting best practices](advanced-hunting-best-practices.md) - [Overview - Advanced hunting](advanced-hunting-overview.md) [!INCLUDE [Microsoft Defender XDR rebranding](../../includes/defender-m3d-techcommunity.md)]
security Api Partner Access https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/api-partner-access.md
The following steps with guide you how to create a multi-tenant Microsoft Entra
After you're done filling out the form, select **Register**.
- :::image type="content" source="../..//media/atp-api-new-app-partner.png" alt-text="An application's registration sections in the Microsoft Defender portal" lightbox="../..//media/atp-api-new-app-partner.png":::
+ :::image type="content" source="../../media/atp-api-new-app-partner.png" alt-text="An application's registration sections in the Microsoft Defender portal" lightbox="../..//media/atp-api-new-app-partner.png":::
4. On your application page, select **API Permissions** > **Add permission** > **APIs my organization uses** >, type **Microsoft Threat Protection**, and select **Microsoft Threat Protection**. Your app can now access Microsoft Defender XDR.
security Defender Xdr Custom Reports https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/defender-xdr-custom-reports.md
Title: Create custom Microsoft Defender XDR reports using Microsoft Graph security API and Power BI
-description: How to create custom Microsoft Defender XDR reports using Microsoft Graph security API and Power BI
+ Title: Create custom Microsoft Defender XDR reports using Microsoft Graph security API and Power BI
+description: How to create custom Microsoft Defender XDR reports using Microsoft Graph security API and Power BI.
keywords: reports, Microsoft Defender XDR, Microsoft Graph security API, Power BI ms.sitesec: library
Last updated 01/03/2023 -+ - m365-security - tier2 search.appverid: met150
-# Create custom Microsoft Defender XDR reports using Microsoft Graph security API and Power BI
+# Create custom Microsoft Defender XDR reports using Microsoft Graph security API and Power BI
[!INCLUDE [Microsoft Defender XDR rebranding](../includes/microsoft-defender.md)]
Empowering security professionals to visualize their data enables them to quickl
There are multiple ways to visualize Microsoft Defender security data: -- Navigating built-in reports in the Microsoft Defender portal-- Using Microsoft Sentinel workbooks with prebuilt templates for every Defender product (requires integration with Microsoft Sentinel)-- Applying the render function in Advanced Hunting
+- Navigating built-in reports in the Microsoft Defender portal.
+- Using Microsoft Sentinel workbooks with prebuilt templates for every Defender product (requires integration with Microsoft Sentinel).
+- Applying the render function in Advanced Hunting.
- Using Power BI to expand existing reporting capabilities.
-In this article we'll create a sample Security Operations Center (SOC) efficiency dashboard in Power BI using Microsoft Graph security API. We'll access it in user context, therefore user must have [corresponding permissions](manage-rbac.md) to be able to view alerts and incidents data.
+In this article, we create a sample Security Operations Center (SOC) efficiency dashboard in Power BI using Microsoft Graph security API. We access it in user context, therefore user must have [corresponding permissions](manage-rbac.md) to be able to view alerts and incidents data.
> [!NOTE] > **Example below is based on our new MS Graph security API**. Find out more at: [Use the Microsoft Graph security API](/graph/api/resources/security-api-overview). - ## Importing data into Power BI
-In this section we'll go through the steps required to get Microsoft Defender XDR data into Power BI, using Alerts data as an example.
+In this section, we go through the steps required to get Microsoft Defender XDR data into Power BI, using Alerts data as an example.
-1. Open Microsoft Power BI Desktop.
-2. Select **Get Data > Blank Query**.
-3. Select **Advanced Editor**.
+1. Open Microsoft Power BI Desktop.
+2. Select **Get Data > Blank Query**.
+3. Select **Advanced Editor**.
- :::image type="content" source="../../../microsoft-365/media/defender/power-bi/manage-parameters.png" alt-text="Screenshot that shows how to create a new data query in PowerBI Desktop.." lightbox="../../../microsoft-365/media/defender/power-bi/manage-parameters.png":::
+ :::image type="content" source="../../media/defender/power-bi/manage-parameters.png" alt-text="Screenshot that shows how to create a new data query in Power BI Desktop." lightbox="../../media/defender/power-bi/manage-parameters.png":::
-5. Paste in Query:
- ```
+4. Paste in Query:
+
+ ```console
let Source = OData.Feed("https://graph.microsoft.com/v1.0/security/alerts_v2", null, [Implementation="2.0"]) in Source ```
-6. Select **Done**.
-7. You'll be prompted for credentials, select **Edit Credentials**:
-
- :::image type="content" source="../../../microsoft-365/media/defender/power-bi/edit-credentials-api.png" alt-text="Screenshot of how to edit credentials for API connection." lightbox="../../../microsoft-365/media/defender/power-bi/edit-credentials-api.png":::
-9. Select **Organizational account > Sign in**.
-
- :::image type="content" source="../../../microsoft-365/media/defender/power-bi/sign-in-org-account.png" alt-text="Screenshot of the organizational account authentication window." lightbox="../../../microsoft-365/media/defender/power-bi/sign-in-org-account.png":::
+5. Select **Done**.
+6. When you're prompted for credentials, select **Edit Credentials**:
+
+ :::image type="content" source="../../media/defender/power-bi/edit-credentials-api.png" alt-text="Screenshot of how to edit credentials for API connection." lightbox="../../media/defender/power-bi/edit-credentials-api.png":::
-11. Enter credentials for account with access to Microsoft Defender XDR incidents data.
-12. Select **Connect**.
+7. Select **Organizational account > Sign in**.
+
+ :::image type="content" source="../../media/defender/power-bi/sign-in-org-account.png" alt-text="Screenshot of the organizational account authentication window." lightbox="../../media/defender/power-bi/sign-in-org-account.png":::
+
+8. Enter credentials for account with access to Microsoft Defender XDR incidents data.
+9. Select **Connect**.
Now the results of your query appear as a table, and you can start building visualizations on top of it. > [!TIP] > If you are looking to visualize other forms of Microsoft Graph security data like Incidents, Advanced Hunting, Secure Score, etc., see [Microsoft Graph security API Overview](/graph/api/resources/security-api-overview). - ## Filtering data Microsoft Graph API supports OData protocol so that users don't have to worry about pagination - or requesting the next set of data. However, filtering data is essential to improving load times in a busy environment.
-Microsoft Graph API supports [query parameters](/graph/filter-query-parameter). Below are few examples of filters used in the report:
+Microsoft Graph API supports [query parameters](/graph/filter-query-parameter). Here are few examples of filters used in the report:
-- The query below will return the list of alerts generated over the past three days. Note that using this query in environments with high volumes of data may result in hundreds of megabytes of data that could take a moment to load. By using this hardcoded approach, you'll be able to quickly see your most recent alerts over the last three days as soon as you open the report.
+- The following query returns the list of alerts generated over the past three days. Using this query in environments with high volumes of data might result in hundreds of megabytes of data that could take a moment to load. By using this hardcoded approach, you're able to quickly see your most recent alerts over the last three days as soon as you open the report.
- ```
+ ```console
let AlertDays = "3", TIME = "" & Date.ToText(Date.AddDays(Date.From(DateTime.LocalNow()), -AlertDays), "yyyy-MM-dd") & "",
Microsoft Graph API supports [query parameters](/graph/filter-query-parameter).
- Instead of collecting data across a date range, we can gather alerts across more precise dates by inputting a date using the YYYY-MM-DD format.
- ```
+ ```console
let StartDate = "YYYY-MM-DD", EndDate = "YYYY-MM-DD",
Microsoft Graph API supports [query parameters](/graph/filter-query-parameter).
Source ``` -- When historical data is required (for example, comparing the number of incidents per month), filtering by date isn't an option (since we want to go as far back as possible). In this case we need to pull a few selected fields shown below:
+- When historical data is required (for example, comparing the number of incidents per month), filtering by date isn't an option (since we want to go as far back as possible). In this case, we need to pull a few selected fields as shown in the following example:
- ```
+ ```console
let
- Source = OData.Feed("https://graph.microsoft.com/v1.0/security/alerts_v2?$filter=createdDateTime ge " & StartLookbackDate & " and createdDateTime lt " & EndLookbackDate &
+ Source = OData.Feed("https://graph.microsoft.com/v1.0/security/alerts_v2?$filter=createdDateTime ge " & StartLookbackDate & " and createdDateTime lt " & EndLookbackDate &
"&$select=id,title,severity,createdDateTime", null, [Implementation="2.0"]) in Source
Microsoft Graph API supports [query parameters](/graph/filter-query-parameter).
## Introducing parameters
-Instead of constantly querying the code to adjust the timeframe, use parameters to set a Start and End Date each time you open the report. To do this, follow the steps below:
+Instead of constantly querying the code to adjust the timeframe, use parameters to set a Start and End Date each time you open the report.
-1. Go to **Query Editor**.
-2. Select **Manage Parameters > New Parameter**.
-3. Set desired parameters.
+1. Go to **Query Editor**.
+2. Select **Manage Parameters** \> **New Parameter**.
+3. Set desired parameters.
-In the example below, we use two different time frames, Start and End dates.
+ In the following example, we use two different time frames, Start and End dates.
+ :::image type="content" source="../../media/defender/power-bi/manage-parameters.png" alt-text="Screenshot of how to manage Parameters in Power BI." lightbox="../../media/defender/power-bi/manage-parameters.png":::
-4. Remove hardcoded values from the queries and make sure that StartDate and EndDate variable names correspond to parameter names:
+4. Remove hardcoded values from the queries and make sure that StartDate and EndDate variable names correspond to parameter names:
- ```
+ ```console
let Source = OData.Feed("https://graph.microsoft.com/v1.0/security/incidents?$filter=createdDateTime ge " & StartDate & " and createdDateTime lt " & EndDate & "", null, [Implementation="2.0"]) in
In the example below, we use two different time frames, Start and End dates.
## Reviewing the report
-Once the data has been queried and the parameters are set, now we can review the report. During the first launch of the .PBIT report file you'll be prompted to provide the parameters that we specified earlier:
---
-The dashboard offers three tabs intended to provide SOC insights. The first tab provides a summary of all recent alerts (depending on the selected timeframe). This helps analysts clearly understand the security state over their environment using alert details broken down by detection source, severity, total number of alerts and mean-time-to-resolution.
+Once the data has been queried and the parameters are set, now we can review the report. During the first launch of the PBIT report file, you're prompted to provide the parameters that we specified earlier:
+The dashboard offers three tabs intended to provide SOC insights. The first tab provides a summary of all recent alerts (depending on the selected timeframe). This tab helps analysts clearly understand the security state over their environment using alert details broken down by detection source, severity, total number of alerts and mean-time-to-resolution.
The second tab offers more insight into the attack data collected across the incidents and alerts. This view can provide analysts with greater perspective into the types of attacks executed and how they map to the MITRE ATT&CK framework. ## Power BI dashboard samples
-For more information, see the
-[Power BI report templates sample file](https://download.microsoft.com/download/0/1/6/01686830-b4e4-4cc1-af5b-7e07eab3ff55/defender-xdr-soc-overview.zip).
+For more information, see the [Power BI report templates sample file](https://download.microsoft.com/download/0/1/6/01686830-b4e4-4cc1-af5b-7e07eab3ff55/defender-xdr-soc-overview.zip).
## Related articles
security Investigate Incidents https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/investigate-incidents.md
For incidents with a remediation status of **Pending approval**, you can approve
- Select the Approve pending action option to initiate a pending action. - Select the Reject pending action option to prevent a pending action from being taken. ## Next steps
security Security Copilot M365d Create Incident Report https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/security-copilot-m365d-create-incident-report.md
Security Copilot creates an incident report containing the following information
To create an incident report, perform the following steps: 1. Open an incident page. In the incident page, select **Generate incident report** located at the top right corner of the page. Alternately, you can select the report icon found in the Security Copilot pane.+
+ :::image type="content" source="../../media/copilot-in-defender/incident-report/fig1-new-sec-copilot-m365d-create-report.png" alt-text="Screenshot highlighting the generate incident report and report icon buttons in the incident page." lightbox="../../media/copilot-in-defender/incident-report/fig1-expand-sec-copilot-m365d-create-report.png":::
+ 2. Security Copilot creates the incident report. You can stop the report creation by selecting **Cancel** and restart report creation by selecting **Regenerate**. Additionally, you can restart report creation if you encounter an error. 3. The incident report card appears on the Security Copilot pane. The generated report depends on the incident information available from Microsoft Defender XDR and Microsoft Sentinel. Refer to the [recommendations](security-copilot-m365d-create-incident-report.md#recommendations-for-incident-report-creation) to ensure a comprehensive incident report.+
+ :::image type="content" source="../../media/copilot-in-defender/incident-report/fig2-new-sec-copilot-m365d-create-report.png" alt-text="Screenshot of the incident report card in the incident page." lightbox="../../media/copilot-in-defender/incident-report/fig2-expand-sec-copilot-m365d-create-report.png":::
+ 4. Select the three dots located on the right side of the incident report card. To copy the report, select **copy to clipboard** and paste the report to your preferred system, or **Post to comments and history** to add the report to the comments and history of the incident. 5. Select **Regenerate** to restart report creation. You can also opt to **Open in Security Copilot** to view the results and continue accessing other plugins available in the Security Copilot standalone portal.
security Quarantine Admin Manage Messages Files https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/office-365-security/quarantine-admin-manage-messages-files.md
To filter the entries, select :::image type="icon" source="../../media/m365-cc-s
When you're finished on the **Filters** flyout, select **Apply**. To clear the filters, select :::image type="icon" source="../../media/m365-cc-sc-clear-filters-icon.png" border="false"::: **Clear filters**.
+> [!TIP]
+> Filters are cached. The filters from the last sessions are selected by default the next time you open the **Quarantine** page. This behavior helps with triage operations.
+ Use the :::image type="icon" source="../../media/m365-cc-sc-search-icon.png" border="false"::: **Search** box and a corresponding value to find specific messages. Wildcards aren't supported. You can search by the following values: - Sender email address
security Quarantine End User https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/office-365-security/quarantine-end-user.md
To filter the entries, select :::image type="icon" source="../../media/m365-cc-s
When you're finished on the **Filters** flyout, select **Apply**. To clear the filters, select :::image type="icon" source="../../media/m365-cc-sc-clear-filters-icon.png" border="false"::: **Clear filters**.
+> [!TIP]
+> Filters are cached. The filters from the last sessions are selected by default the next time you open the **Quarantine** page. This behavior helps with triage operations.
+ Use the :::image type="icon" source="../../media/m365-cc-sc-search-icon.png" border="false"::: **Search** box and a corresponding value to find specific messages. Wildcards aren't supported. You can search by the following values: - Sender email address
solutions Deploy Voice https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/solutions/deploy-voice.md
description: Learn how to choose and deploy the right Teams voice solution for y
A Teams voice solution enables people in your organization to make calls both within and outside your organization. A complete voice solution consists of Teams, Microsoft Phone System, and a choice of options for connecting to the Public Switched Telephone Network (PSTN).
-![Teams voice solutions overview.](..\media\solutions-architecture-center\voice-concepts.png)
+![Teams voice solutions overview.](../media/solutions-architecture-center/voice-concepts.png)
Phone System provides complete Private Branch Exchange (PBX) capabilities for your organization. Calls between users in your organization--no matter their geographic location--are handled internally within Phone System thereby removing long-distance costs on these internal calls.
This solution guidance helps you to:
Follow these steps to choose, plan, and configure your voice solution:
-![Choose your voice solution.](..\media\solutions-architecture-center\voice-solutions-overview-1.png)
+![Choose your voice solution.](../media/solutions-architecture-center/voice-solutions-overview-1.png)
1. [Choose your voice solution](/MicrosoftTeams/cloud-voice-landing-page?bc=%2fmicrosoft-365%2fsolutions%2fbreadcrumb%2ftoc.json&toc=%2fmicrosoft-365%2fsolutions%2ftoc.json)
syntex Use Contracts Management Site https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/syntex/use-contracts-management-site.md
- enabler-strategic - m365initiative-syntex ms.localizationpriority: medium+ description: Learn how to provision, use, and customize the contracts management site template in Microsoft Syntex. # Use the contracts management site template for Microsoft Syntex > [!NOTE]
-> The latest version of the contracts management site template is now available as a [team site template directly from SharePoint](https://support.microsoft.com/office/80820115-c700-4a62-bb59-69b33c8e3b4f). The look book version of this site template is no longer being updated.
+> The latest version of the contracts management site template is now available as a [team site template directly from SharePoint](https://support.microsoft.com/office/80820115-c700-4a62-bb59-69b33c8e3b4f). The look book version of this site template is no longer being updated.
The contracts management site is a ready-to-deploy and customizable SharePoint site template that helps your organization maximize the value of Microsoft Syntex. The site is designed to let you create a professional site to manage, process, and track the status of contracts in your organization.
test-base Memory https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/test-base/memory.md
ms.localizationpriority: medium
+f1.keywords: NOCSH
- # Memory Regression Analysis Test Base helps you more clearly notice significant memory usage increases in the test VMs running your apps. Performance metrics, such as memory usage, can be indicative of overall application health and we believe this addition will greatly help keep your apps performing optimally.
-Read on for more details or watch this video for a quick walk-through of the latest improvements.
+Read on for more details or watch this video for a quick walk-through of the latest improvements.
For more information on Test Base for Microsoft 365's ability to help with regression analysis, see Regression results based on process reliability. <b>Looking closer at memory regressions</b>
-The Test Base for Microsoft 365 dashboard shows the memory consumed by your application on a new pre-released Windows update and compares it with the memory used by the last released Windows update.
+The Test Base for Microsoft 365 dashboard shows the memory consumed by your application on a new pre-released Windows update and compares it with the memory used by the last released Windows update.
With this monthΓÇÖs enhancements, memory regression analysis is now featured in your favorited processes. Applications can contain multiple processes and you can manually select your favorite processes through the Reliability tab. Our service will then identify memory regressions in these favorited processes while comparing test runs across different Windows update releases. If a regression is detected, details about the regression are easily available.
The failure signal caused by a memory regression is shown in the Test Base for M
![Memory utilization results.](Media/01_memory-utilization-results.png) - Failure for the application due to higher memory consumption, will also be displayed as ```Fail``` on the Test Summary page: ![Test summary results.](Media/02_test-summary.png)
-By providing the failure signals upfront, our goal is to clearly flag potential issues that can disrupt and impact the end user experience for your application.
+By providing the failure signals upfront, our goal is to clearly flag potential issues that can disrupt and impact the end user experience for your application.
You can then download the log files and use the Windows Performance Analyzer, or your preferred toolkit, to investigate further. You can also work jointly with the Test Base for Microsoft 365 team on remediating the issue and help prevent issues impacting end users. Memory signals are captured in the Memory Utilization tab in the Test Base for Microsoft 365 service for all test runs. The example below shows a recent test run with the onboarded application ΓÇ£Smoke Test Memory StressΓÇ¥ against the pre-release August 2020 security update. (This application was written by our team to illustrate memory regressions.)
-![Memory regression results.](Media/03_memory-regression%20comparison.png)
+![Memory regression results.](Media/03_memory-regression-comparison.png)
-In this example, the favorite process ΓÇ£USLTestMemoryStress.exeΓÇ¥ process consumed an average of approximately 100 MB on the pre-release August update compared to the released July update, hence the Test Base for Microsoft 365 identified a regression.
+In this example, the favorite process ΓÇ£USLTestMemoryStress.exeΓÇ¥ process consumed an average of approximately 100 MB on the pre-release August update compared to the released July update, hence the Test Base for Microsoft 365 identified a regression.
The other processesΓÇöshown here as ΓÇ£USLTestMemoryStress_Aux1.exeΓÇ¥ and ΓÇ£USLTestMemoryStress_Aux2.exeΓÇ¥ΓÇöalso belong to the same application, but consumed approximately the same amount of memory for the two releases so they "passed" and were considered healthy.
-The regression on the main process was determined to be ΓÇ£statistically significantΓÇ¥ so the service communicated and highlighted this difference to the user. If the comparison wasn't statistically significant, it wouldn't be highlighted. Memory utilization can be noisy, so we use statistical models to distinguish, across builds and releases, meaningful differences from inconsequential differences.
+The regression on the main process was determined to be ΓÇ£statistically significantΓÇ¥ so the service communicated and highlighted this difference to the user. If the comparison wasn't statistically significant, it wouldn't be highlighted. Memory utilization can be noisy, so we use statistical models to distinguish, across builds and releases, meaningful differences from inconsequential differences.
A comparison may rarely be flagged when there's no true difference (a false positive), but this is a necessary tradeoff to improve the likelihood of correctly identifying regressions (or true positives.)
-The next step is to understand what caused the memory regression. You can download the zip files for both executions from the Download log files option, as shown below.
+The next step is to understand what caused the memory regression. You can download the zip files for both executions from the Download log files option, as shown below.
These zip files contain the results of your test run, including script results and memory and CPU performance data that is included in the ETL file. ![Memory regression test files.](Media/04_memory-regression-test-files.png) You can download and unzip the logs for the two test runs, then locate the ETL file within each folder and rename them as target.etl (for the test that run on the pre-release update) and baseline.etl (for the test that run on last released update) to simplify exploration and navigation.
-
+ ## Next steps Advance to the next article to get started with understanding intelligent CPU regression analysis.