Understanding Domains | Comstat | Ruthin, North Wales

Index of articles

by Steve Galloway | Mar 3, 2026 | Articles and help

Click open the Index headers below to browse FAQ

Our support articles address the most common issues we deal with “in the field” about Windows, Microsoft 365 Business, web server support, and web design. Click open the accordion sections below to look for self-serve help. Often, issues rely on a knowledge of IT concepts and language. Also, Microsoft, cPanel, and other software houses featured in these articles often update practice notes and procedures without notice. We review our pages regulalry, however you are advised to contact us for further help about these articles especially concerning issues around sovereign account identity and Multifactor Authentication (MFA).

Microsoft Windows 11

Microsoft 365 setup, licensing and user management

Microsoft 365, Exchange Online and Outlook

Microsoft 365 configuration and user tips and tricks

The following articles can be found using <Search> or scrolling through our list of articles. Procedures may have changed since and therefore this content is either being eidted or deprecated. So, although we are editing this content, you might still find useful information to help with issues.

– Exchange Online – room and equipment resources
– Reset Office 365 password expiration policy
– Exchange Email – EOP antivirus/spam
– Exchange Online Protection – EOP
– Microsoft 365 Exchange Email – data leakage & loss protection
– Microsoft ActiveSync

Support Articles - cPanel | web server | DNS

Support Articles - Sitejet web design software

OneNote Sync Troubleshooting: Fixing Missing Sections and Notebook Conflicts on Android

by Steve Galloway | Mar 2, 2026 | Articles and help

Case Study: OneNote Sync Troubleshooting

When OneNote works well, it offers a seamless experience across devices: imagine having your post-it notes: searchable, everywhere you go. Sometimes sync issues appear without warning, though. This case study explains a real example of OneNote sync troubleshooting where a user found that some notebook sections were missing on Android, Quick Notes were not syncing correctly, and another notebook caused unexpected behaviour.

This guide shows what happened, why it happened, and how a simple OneNote sync troubleshooting fix restored proper synchronisation across desktop, web, and mobile devices. This article uses an Android deployment as an example, and a workflow is included in *** explaining how to resolve OneNote sync in Apple iOS in section <How to reset OneNote for mobile sync> below.

Click open the headers below to learn more about keeping OneNote firing on all cylinders.

You can return to our Index of Articles by clicking here.

OneNote sync symptoms

The issue arose when a user noticed that the 2026 section of their notebook was visible on OneNote for Windows desktop and OneNote for the web, but the 2026 section did not appear on OneNote Mobile for Android. The older sections (2022–2025) appeared normally, and Quick Notes worked on desktop, but new Quick Notes did not show up in the correct place on mobile.

The user colour-coded his sections so that the current year is always coloured green. However, on his Android phone, last year’s section – 2025 – was coloured green. On his desktop and web notebook instances, 2025 was coloured grey and 2026 was green. This turned out to be instructructive as we will see later.

So, only part of the notebook structure was syncing, and section colours on Android mobile did not match the desktop or web versions. Partial mismatches are a classic signal that OneNote Mobile has cached an outdated version of the notebook.

At the same time, the user noticed a second notebook on his mobile. Let’s call this “Charlie’s Notebook.” This notebook was not open in Charlie’s desktop version, yet OneNote app on Charlie’s Android treated it as the default notebook on his mobile phone. This meant a feature called Quick Notes that were created on the phone were silently routed into Charlie’s Notebook whch the user never used, instead of the main M365 notebook where our user keeps all his client meeting notes in a date ordered journal. This meant that notes created in his desktop “Quick Notes” did not sync to the expected location on his mobile phone – instead, the “quick notes” were routing to Charlie’s notebook too.

This combination of missing sections, mismatched colours, and a phantom notebook is a common pattern addressed through OneNote sync troubleshooting. It is easily fixed – when you know how.

Click open the next section to find out more about fixing this OneNote sync problem.

Root Cause: A Cached Notebook Structure on Android

OneNote Mobile caches each notebook’s structure when it is first opened. It continues to use that cached structure until the app is forced to refresh it. Even when new sections are added on desktop or web, Android may not notice new sections unless the OneNote cache on the Android handset is fully cleared.

In this case, the “Charlie’s Notebook” entry was an old OneDrive notebook created years earlier when the user first setup OneNote. Android had continued treating it as the default notebook. The result was:

Quick Notes were sent to the wrong notebook
New sections like 2026 never appeared
Notebook colours stayed out of date
Recent Notes showed pages from two different notebooks

All of this pointed toward a stale cached notebook that needed a proper reset.

The Fix: Resetting OneNote’s Data on Android

The correct solution for this type of OneNote sync troubleshooting is not reinstalling the app, but clearing its cached notebook data through Android’s app settings. This approach forces OneNote Mobile to:

Forget all cached notebook versions
Re-download the correct structure from SharePoint
Rebuild section lists and colours
Refresh the default notebook
Drop any old notebooks that should no longer sync

How to reset OneNote for mobile sync

This workflow was performed on Android 12. The steps might vary from device to device, but the process is similar. For Apple iOS devices, see 2. Apple iOS below.

1. Android

Open Android Settings
Go to Apps
Choose OneNote
Open Storage & Cache
Tap Clear Storage
relaunch OneNote and sign in again if asked
Reopen only your principle notebook
do not open other notebooks

2. Apple iOS

iOS does not offer a “Clear data/cache” button like Android. So, to achieve the same result:

Remove the app (or offload it), which deletes local data.
Reinstall the app, which causes OneNote to rebuild its notebook list and download fresh copies from the cloud.

Once your mobile app downloads a fresh notebook structure, sections and notes will sync properly. Check for icon and colour-coding behaviours and compare to your OneNote desktop installation. Now, all Quick Notes (automatically installed when a notebook is created) will sync across desktop, web, and mobile exactly as expected. Test this by creating a test note in Quick Notes

Summary

The important point here is that when a notebook has changed significantly on OneNote desktop or Web, Android and Apple may need a full cache reset to see the updated structure.

This problem is not uncommon. Unfortunately, users often shrug their shoulders when this kind of sync fails and OneNote loses its utility as. Not unreasonably, users are not sure where to look for the problem or even what the problem is. Happily, functionality is easily fixed and this article should help you understand that OneNote caches on mobile devices can be easily remedied.

If you would like help exploring OneNote features implementing OneNote across devices, feel free to get in touch, or use out contact page to organize an appointment which suits your timetable. You can return to our Index of Articles by clicking here.

Laptop Battery Health: Practical Power Management Tips to Prolong Your Battery Lifespan

by Steve Galloway | Feb 21, 2026 | Articles and help

Laptop Battery Health: Tips to Prolong Your Battery's Lifespan

Laptop battery health is taken for granted. However, its original manufacture quality and ongoing useage are significant factors in extending your laptop’s longevity.

Modern laptops use lithium‑ion batteries. They are reliable and even though technology improves, they do wear down over time. The good news is that you can slow that ageing significantly. With the right settings, habits, and software tools, you can keep your laptop battery health strong for years. This guide explains practical steps any user can apply, whether you own a Dell, Lenovo, HP, ASUS, or another brand. If you need help fine‑tuning your setup, please get in touch.

Click open the headers below to learn more about how Windows Pro and Windows Pro are intended to be used. Support options are available for professional assistance. You can return to our Index of Articles by clicking here.

Why Power Management Matters for Laptop Battery Health

Lithium‑ion batteries age fastest when held at a very high charge or exposed to unnecessary heat. Manufacturers like Dell openly recommend limiting maximum charge to around 80% to reduce wear, noting that custom settings such as <Start Charging> at about 60% charge and <Stop Charging> at about 80–90% help preserve long‑term capacity. Especially with low cost hardware where componentry is necessarily inexpensive, it makes sense to ease stress on this kind of battery.

General battery‑care discussions from wider user communities also support keeping charge levels between 40% and 80% for optimal laptop battery health.

Keeping your laptop plugged in at 100% all day may feel convenient, but it increases chemical stress inside the battery. Likewise, letting it regularly drain to near zero also accelerates degradation. Managing these extremes will improve laptop battery health.

Use Charge Limits to Improve Laptop Battery Health

Major manufacturers feature built‑in tools that let you control when charging starts and stops. This is not necessarily a laptop issue. For instance, current iterations of Android and iOS provide battery power management tools.

Cautionary warning

Even among large manufacturers which use better quality components, low price points mean laptop batteries can often be prone to premature failure. This is not a universal eventuality. However, premium hardware is more durable and less prone to failure. So, especially where lower cost hardware is concerned, using a strategy that reduces strain on a lithium-ion battery is desirable.

Leading manufacturers have different approaches. Some provide software, and usually BIOS will include power management features, which is probably the better way to handle power management.

ASUS

ASUS Armoury Crate or MyASUS offers “Battery Health Charging” modes such as Maximum Lifespan Mode, keeping charge around 60% or 80%.

Dell

Dell Power Manager or BIOS settings allow users to set custom ranges such as Start at 60% / Stop at 80%, aligning with Dell’s guidance to reduce “high‑state‑of‑charge dwell.”

HP

Some HP Business models include BIOS‑level “Maximize Battery Life” settings that prevent charging to 100%.

Lenovo ThinkPad / IdeaPad

Lenovo Vantage typically includes a “Battery Conservation Mode,” often limiting charging to around 55–60%.

Laptop Battery failure symptoms

Battery failure is usually a gradually developing situation and it is not always obvious that a battery is compromised. There are three main symptoms to look out for:

your battery life starts degrading, requiring increasing mains power input to maintain charge
the maximum battery charge capacity diminishes as cells fail
the battery swells, often causing warping of the laptop chassis

The last symptom is the most serious. By this point, the battery is already compromised and poses catastrophic risk to the laptop as motherboard and circuits are stressed. Beyond damage to the device, this kind of battery damage poses a fire risk.

These symptoms are equally relevant to mobile phones and tablets.

Everyday Habits That Support Laptop Battery Health

Improving laptop battery health goes beyond charge limits. Higher-end laptops, and even more recent Android iterations provide AI monitoring to gauge charging strategies. Common sense is a cheap fix, too. These small habits make a long-term difference:

Avoid constant 100% charging. High charge levels accelerate wear.
Avoid deep discharges. Letting the battery reach 0% shortens lifespan.
Keep your laptop cool. Heat is one of the biggest contributors to cell damage. Using your device in a well‑ventilated area helps maintain battery longevity.
Store your laptop at around 50% charge if not used for several days. This aligns with Dell’s own storage guidance.
Avoid cheap chargers. Under‑powered power bricks can cause inconsistent charging and more heat, reducing battery health.

These straightforward changes can noticeably slow wear and prolong functional lifespan.

Summary

Not all systems expose the same settings, and some users may need organisation‑wide configuration, BIOS adjustments, or compatibility checks. If you want the best configuration for your device—or your fleet—comstat.uk can help you:

Select ideal charge‑limit ranges.
Configure BIOS‑based battery settings.
Recommend manufacturer‑approved power tools.
Diagnose battery‑health concerns.
Apply policies across multiple business devices.

Proper configuration ensures your laptop battery health remains as strong as possible over the full lifecycle of your device.

If you would like help checking your a laptop battery health settings, feel free to get in touch, or use out contact page to organize an appointment which suits your timetable. You can return to our Index of Articles by clicking here

Why Small Businesses Struggle With Microsoft 365 on Windows Home PCs

by Steve Galloway | Feb 18, 2026 | Articles and help

Why Small Businesses Struggle With Microsoft 365 on Windows Home PCs

Small businesses run into problems with Microsoft 365 long before they open Outlook, save a file to OneDrive or start collaborating. The trouble begins the moment a new computer is purchased. Usually, small business owners choose a PC or a laptop with Windows 11 Home pre-installed. They sign in with a personal Microsoft account, and only later discover that this creates a confusing mix of identities, storage locations, and settings. By the time Microsoft 365 gets added, the system is already working against them.

This article introduces a four‑part series that explains why things go wrong, what larger organisations do differently, and how small businesses can take simple steps to avoid the frustration altogether.

Click open the headers below to learn more about this series of articles which discusses how Microsoft intends Microsoft 365 to operate. You can jump to articles in this series in this list:

You can return to our Index of Articles by clicking here.

Where the Confusion Starts: Windows Home and Personal Microsoft Accounts

Windows 11 Home requires users to sign in with a personal Microsoft account. This makes sense for home users, but not for business environments that rely on Microsoft 365. The moment a personal account is used at setup, the computer becomes a consumer device rather than a business device. When Microsoft 365 is added later, the user ends up with two identities that often look identical—especially when the same email address is used.

This is where Microsoft 365 device setup begins to unravel:

Files get saved to personal OneDrive (5GB) rather than OneDrive for Business (1TB).
Users see prompts to “buy more storage,” even though their business plan already includes plenty.
Some apps authenticate with Microsoft 365; others authenticate with a personal Microsoft account.
When something goes wrong, it’s unclear whether the fault lies with Windows, OneDrive, or Microsoft 365 itself.

These problems are not technical failures—they’re identity collisions created at setup. And they lead to extra support time, higher costs, and unnecessary frustration.

How This Impacts Support Costs for Small Businesses

So many support requests for supposed 365 problems have nothing to do with Microsoft 365 at all. Instead, they come from the Windows environment on a machine configured like a home PC. When your computer’s operating system is built around a personal Microsoft account, Microsoft 365 sits on top of that environment as an extra layer rather than a core identity. This makes diagnostics slower, settings harder to manage, and support ends up costing more.

By contrast, when a PC or a laptop uses Microsoft 365 device setup with Entra ID (rather than a Microsoft “personal” account) from the start (Out of the Box or OOTB), your business identity becomes the foundation for the computer. This clean separation protects Microsoft 365 from local Windows issues and creates a more reliable and predictable environment. That means fewer problems, faster fixes, and lower support costs.

For instance, signing your computer directly into 365 at startup, there is no question about where your apps and files reside – they are governed completely by your 365 tenancy. There is no need for a Microsoft (personal) account at all, unless you want to operate a consumer Microsoft account.

In a scenario where a laptop of PC is to be connected directly to a 365 user account at the beginning of the day, a new Windows PC needs to be configured OOTB using a workflow that breaks the conventional configuration process that compels you to adopt a Microsoft “personal” account. Later articles in this series describe this process. If Windows has already been configured with a Microsoft (personal) account, a direct 365 login can still be accomplished. However, it measn that work will be necessary to remove 365 connections from the existing Microsoft (personal) account.

Why Future Articles Matter

This introduction opens the door to a deeper look at how small businesses can avoid these problems entirely. The next articles in this series will explain:

How larger organisations configure devices using Microsoft Entra ID and Intune, and what small businesses can learn from them.
How to set up a new computer correctly, using a Microsoft 365 business account at first startup to avoid identity conflicts.
How to fix an existing computer that has already been set up with a personal Microsoft account.

By understanding how Microsoft 365 device setup works—and how it differs between Windows Home and Windows Pro—you can avoid the mistakes that cause most of the frustration in the first place.

Often, this seems like an irrelevance because – well, what works, works. The problem is that Microsoft “Home” environments do not enjoy the hardened security that businesses opt for. Unfortunately, the implication only becomes evident when a production computer is compromised and with it a 365 tenancy. For this reasaon, larger businesses avoid Windows Home/Microsoft Account paradigms in favour of Windows Pro/365 Entra ID. The good news is for those who need industrial strength reliability and security, small business owners and professionals can now leverage hardened performance which is proven in commercial contexts.

Summary

Small businesses do not struggle with Microsoft 365 because the platform is complex. They struggle because Windows Home pushes them into a consumer setup that clashes with Microsoft 365’s business tools. By choosing the right edition of Windows and using a Microsoft 365 business identity from day one, you can keep personal and business environments cleanly separate, reduce support costs, and get far more value from your investment.

This series will help you make that shift with confidence.

Why Windows Pro Is Better for Small Office: A Practical Guide for Business Owners

by Steve Galloway | Feb 10, 2026 | Articles and help

Windows 11 - Home edition or Pro?

Many small‑business owners end up using Windows Home without realising it isn’t designed for business needs. This happens for a few reasons. For instance, most small business owners buy their laptops from retailers, and almost all of these machines ship with Windows Home by default. The device looks the same, feels the same, and runs the same apps. Some buyers are not advised adequately to know there is even such a thing as Windows Pro, so it is easy to assume it’s “good enough” for work.

There is also the common idea that a business computer should double as a home computer. It is tempting to use the same device for work, family photos, streaming, and social media. But this creates a hidden risk. A computer that mixes personal and business use is far more likely to be exposed to online threats, accidental installs, and privacy issues.

Microsoft designed Windows Pro for small business users exactly because business devices face higher risks. While Windows Home is built for entertainment and general use, Windows Pro includes additional protections that help keep customer information safe, reduce downtime, and support proper operational security. It also helps you stay aligned with GDPR responsibilities through better data control and stronger security features. Windows Enterprise is fuctionally elevated further and rounds out Microsoft’s strategy for its business-class operating systems.

Even if you never touch advanced settings, these built‑in protections reduce risk and exposure to costly intervention over the long term.

Click open the headers below to learn more about how Windows Pro and Windows Pro are intended to be used. Support options are available for professional assistance. You can return to our Index of Articles by clicking here.

Why Microsoft Makes Two Versions of Windows

Microsoft’s logic is simple:

Windows Home is built for comfort, entertainment, and incidental daily use
Windows Pro is built for reliability, security, and work

Business owners deal with invoices, customer details, financial records, tax files, and confidential communications. Losing any of these—through theft, hardware failure, or malware—can be costly. Windows Pro includes tools that protect against these risks automatically, without needing technical knowledge.

Windows Home tries to imitate some business features, but it cannot match the security or resilience built into Windows Pro. For example, Windows Home only includes basic device encryption, while Windows Pro includes deeper, business‑grade protections such as full BitLocker support and professional device‑management options.

Windows Pro: Real‑World Benefits

1. Better protection for your customer data

Windows Pro provides stronger safeguards for your data and is more aligned with GDPR expectations. Full‑disk encryption and professional security controls mean that if a laptop is lost or stolen, your customer and employer information stays protected. Windows Home only offers a basic form of encryption and does not meet business standard compliance.

2. Lower risk when something goes wrong

Windows Pro includes secure isolation tools, such as Windows Sandbox and Hyper‑V. These let you open unknown files or test apps in a safe, temporary workspace. Nothing in that workspace can harm your real computer. Windows Home does not offer this protection.

This feature alone can prevent costly downtime caused by malware, bad installers, or suspicious attachments.

3. Easier for IT support to protect you

Windows Pro allows your IT support to set up safe defaults, manage updates, and protect your device remotely. This is not possible on Windows Home, which lacks proper management tools, domain join, and several security controls.

In practice, this means:

Fewer interruptions
Fewer “strange things” happening to your computer
Faster recovery if something breaks

4. Remote access that actually works

Windows Pro supports Remote Desktop, so you (or your IT support) can access your office computer safely from anywhere. Windows Home cannot act as a Remote Desktop host, limiting remote work and remote support capabilities.Windows Home features “Quick Assist”, and although this does provide some utility, it is a “lite” application designed for home -> home users.

A Business Computer Should Be a Business Computer

A business device is a business asset. Mixing personal use with work increases risk and reduces reliability. When gaming, photos, family streaming, social media, and work all share the same device, problems multiply. This is not debateable. Whether government, or corporate, work computers manage productivity. Combining TikTok, gaming, shopping, etc. within one container poses risks that make equioment more difficult to manage. For this reason alone, small business users endure far more malicious infitration than government or corporate counterprats, even if corporates make headlines with stellar fines.

Keeping work and personal life on separate devices isn’t just safer—it means smoother operation, better reliability, and less prolonged recovery/cost.

Can I update Windows Home to Pro?

Yes. There are two ways to do this, and although the upgrade is simple, we recommend you should ask for us advice about how to plan and prepare for the upgrade.

1. If you have a product key:

In Windows:

Open Settings
Go to System → Activation
Click Change product key
Enter your Windows Pro key
Follow the prompts and reboot when asked

Windows will unlock Pro features instantly.

2. Buy Windows Pro through Microsoft Store

If you do not have a product key:

Open Settings
Go to System → Activation
Under Upgrade your edition of Windows, select Open Store
Purchase Windows 10/11 Pro and it will upgrade automatically

Note – Microsoft 365 Business users are upgraded to Microsoft Windows Enterprise edition on activation of a Windows Pro license.

Summary

Upgrading to Windows Pro does not mean learning new technology. It is Microsoft’s approach to reducing risk, improving resilience, and protecting customer data automatically. For most small‑business owners, Windows Pro silently delivers the security, reliability, and peace of mind you thought you were getting with Windows Home.

If you would like help implementing a Windows Pro update, feel free to get in touch, or use out contact page to organize an appointment which suits your timetable. You can return to our Index of Articles by clicking here

Windows 11 System Restore: How to Create and Manage Restore Points Safely

by Steve Galloway | Feb 9, 2026 | Articles and help

What Is Windows 11 System Restore?

Windows 11 System Restore is a built‑in recovery feature that protects your PC by taking snapshots of crucial system files, settings, drivers, and registry entries. These snapshots are called restore points. If something goes wrong after installing software, drivers, updates, or after a malware incident, System Restore allows you to roll your computer back to a previous stable state.

System Restore does not delete your personal documents, photos, or emails. Instead, it focuses on parts of the system that can break Windows. Because of this, it is one of the simplest and most powerful safety nets for everyday users.

System Restore is especially valuable when reacting quickly to malware or virus infiltration. If the infection is recent, restoring the system to a point before the attack can help reverse harmful changes and reduce damage. While it is not a replacement for anti‑malware tools, it adds an essential extra layer of protection.

Click open the headers below to learn more about how to enable System Restore. Support options are available for professional assistance. You can return to our Index of Articles by clicking here.

How You Can Check That System Restore Is Enabled

Many users assume Windows 11 System Restore is switched on automatically. Often, it is not. Some OEMs ship devices with the feature disabled, and major upgrades can also turn it off. For anyone who is not IT‑literate, the most important advice is simple:

“Check once a month that System Restore is enabled“

This is how to verify System Restore is operational:

Press Windows Key and type restore point
In System Properties, open System Protection tab

In the screenshot below, see how system restore status is enabled. If protection is off, Windows cannot create restore points automatically — and you won’t be able to roll back when things go wrong.

System Restore control panel allows you to enable services, check status, and restore Windows’ last known working state

How to Create a Restore Point in Windows 11

Configure automtatic restore point creation

Creating a restore point in Windows 11 System Restore takes less than a minute and can save hours of recovery work and consequential labour costs. This is how to configure System Restore:

Press the Windows Key and type restore and click <enter>
In the System Properties control panel, click open System Protection
In the System Properties window, select your primary drive (C:) by clicking it to highlight row
Click <Configure>
Ensure Turn on system protection is selected
Confirm that the Max Usage slider has at least 2–5% allocated

Create a restore point manually

You can also create a system restore point before major changes like:

Driver installations
Registry modifications
Software that affects system behaviour
Windows feature updates

You can do this by navigating to System Restore control panel described above and clicking the <create> button.

How to recover a Restore Point

Sometimes, a Windows corruption or a malware infiltration needs correcting. Especially if this has happened in the last 2-3 days, you can use System Restore to reinstate Windows to the state it was in before Windows system files were compromised. If your buffer is large enough, you may be able to use earlier system Restore Points, but bear in mind that using old restore points might undo good updates that have been implemented, too.

To restore your system:

Return to the same System Protection window as described above
Click System Restore
Choose your restore point
Follow the on‑screen instructions (see screenshot below)

Best Practices for Using System Restore

To get the most from System Restore, consider these simple tips:

Keep it enabled: Check periodically that protection has not been turned off
Create manual restore points before major system changes
Act fast after malware signs: restoring early increases the chance of reversing harmful changes that antivirus/anti-malware software could aggravate further
Do not rely on it as your only backup: use OneDrive, external drives, or full‑system imaging for complete protection.

Computer Life expectancy affects recovery options

In larger businesses, the average replacement cycle for computers used for desktop productivity is 3-5 years. Self-employed users demand much more from their computers. This kind of profile is more in line with a corporate power user, whose computers are replaced at 2.5 – 4 years. This is because this kind of useage imposes a heavier computational duty cycle on hardware. While System Restore and Windows Recovery can help mitigate running costs, these kinds of tools cannot perform when hardware has failed or is reaching the end of its duty cycle.

Hot Tip: System Restore is only designed to resinstate a last known working state of your Windows systems files. System Restore does not manage files or user data.System Restore is often more capable of resolving malicious infiltration that antivirus software. However, malicious attacks cause unpredictable consequences which may mean that you still have to resort to your recovery drive (see this article) to correct a serious Windows system problem.

Summary

Windows System Restore is one of the most valuable recovery features built into the operating system. When enabled, it can quickly repair software problems, undo bad updates, and help mitigate early‑stage malware infections. For everyday users and professionals alike, this simple tool offers powerful peace of mind.

If you need help configuring restore points across multiple devices or want deeper protection for high‑value systems, please get in touch, or use our contact page to organize an appointment which suits your timetable. You can return to our Index of Articles by clicking here .

Microsoft Authenticator iPhone backup

by Steve Galloway | Feb 7, 2026 | Articles and help

Backup Microsoft Authenticator credentials to iCloud

iPhone users can use Microsoft Authenticator iPhone Backup utility to save Microsoft 365 credentials to their iCloud account.

Using Microsoft Authenticator iPhone Backup, you can restore your existing 365 MFA credentials to a new iPhone. Also, you can restore your MFA account if your iPhone’s working MFA settings are corrupted. If you are a 365 tenancy owner or a Global Administrator (GA) ou would need another global administrator (GA) to create new credentials. Without a second GA (see this article about creating a secondary “break-glass” Global Administrator) a Microsoft 365 tenancy owner could lock themselves out of their tenancy. So, backing up 365 Authenticator settings is critically important if you are a tenancy owner.

This article explains how to configure your handset, iCloud, and Microsoft Authenticator iPhone Backup.

Click open the headers below to learn more about Microsoft Authenticator iPhone Backup. Support options are available for professional assistance. You can return to our Index of Articles by clicking here.

How Microsoft Authenticator iPhone Backup Works

On an iPhone, Microsoft Authenticator does not use a Microsoft account for backup. Instead, Microsoft Authenticator relies entirely on Apple iCloud.

There is no backup button inside the app in Microsoft’s version of Microsoft Authenticator for iPhone. Instead, once your iPhone is set up correctly, your MFA settings are synchronised and periodically checked in iCloud and iCloud keychain in the background.

The key requirement is that your iPhone is:

Signed in to your Apple ID
Using iCloud
Using iCloud Keychain

If those conditions are met, Microsoft Authenticator iPhone backup is already working. Click open the next sections to learn how to set up your iPhone.

Important note about your Apple ID – your Apple ID, like a Google, Microsoft (personal) and a Microsoft 365 account – is what is called a sovereign account. Be sure that sovereign accounts are configured with secondary sign-in alternatives, and be sure to verify your record and review your user account contact preferences no less than annually.

Step‑by‑Step: Enabling Microsoft Authenticator iPhone Backup

These steps take about two minutes and only need to be done once. Please read through the workflow before you begin. Also, bear in mind that Microsoft and Apple can change processes from time to time and the workflow may vary depending on your iOS version and iPhone model. In any event, the objective is to enable iCloud, iCloud keychain, and enable iPhone to execute connectivity for Microsoft Authenticator.

1. Confirm You Are Signed In to Your Apple ID

Open iPhone Settings
Look at the very top of the screen
1. If you see your name, then you are signed in
2. If not, sign in with your Apple ID

Microsoft Authenticator iPhone backup needs to be associated with your Apple ID, so this step is essential.

2. Make Sure iCloud Is Turned On

Open Settings
Tap your name
Tap iCloud
Ensure iCloud is switched ON

Without connectivity to iCloud, Authenticator cannot backup your credentials.

3. Turn On iCloud Keychain (Most Important Step)

Go to Settings → your name → iCloud
Tap Passwords & Keychain
Turn iCloud Keychain ON

iCloud Keychain securely stores your 365 MFA settings so that they can be retreived later. If you store Microsoft Authenticator credentials for other services, you can back these up too.

4. Allow Microsoft Authenticator to Use iCloud

Go to Settings → your name → iCloud
Tap Show All
Ensure Microsoft Authenticator is switched ON

If Microsoft Authenticator is turned OFF, Microsoft Authenticator iPhone backup will not work. So, be sure to check this setting.

Using Microsoft Authenticator Day to Day

Once these settings are in place, you can use Microsoft Authenticator normally:

Add your Microsoft work account if 365 MFA is not already configured
Add any other supported accounts
Approve sign‑ins as usual

There is nothing else to manage. On an iPhone, backup happens automatically in the background.

What Happens When You Get a New iPhone?

If your phone is lost, damaged, or replaced, restoring Microsoft Authenticator is straightforward:

Sign in to the same Apple ID on the new iPhone
Turn on iCloud and iCloud Keychain
Install Microsoft Authenticator from the App Store
Open the app

Your Microsoft Authenticator accounts/credentials will reappear automatically. You may be asked to sign in again to some services, but the Authenticator entries themselves are restored. This is why Microsoft Authenticator iPhone backup is so important to set up early.

Hot Tip: Microsoft Authenticator requires iOS 16 or later to work. If Microsoft Authenticator is not available in your App Store inventory, it is usually because your iPhone does not support minimum hardware/software requirements.

Common Questions About Microsoft Authenticator iPhone Backup

Do I need a Microsoft personal account for backup?

No. On an iPhone, backup uses Apple iCloud only.

Can I choose where the backup is stored?

No. Microsoft Authenticator iPhone backup always uses iCloud.

Is the backup secure?

Yes. The data is encrypted and protected by iCloud Keychain.

Summary

For iPhone users, Microsoft Authenticator iPhone backup is simple, automatic, and secure — as long as iCloud and iCloud Keychain are enabled, and iOS is configured to connect Microsoft Authenticator to iCloud. Microsoft does not back up your MFA credentials to your Microsoft 365 account because if you have lost your credentials, you cannot login to 365 to retreive them. Therefore, MFA credentials need to be stored elsewhere.

Google users and Microsoft (personal) account users save their MFA settings in Microsoft (personal) accounts. Click here for guidance to backup 365 MFA settings using Android.

Spending two minutes checking these settings now can save hours of disruption later, and possibly catastrophic loss. For 365 tenancy owners and Global Administrators, this is a critically important utilitiy. If you manage devices or Microsoft 365 for your business and want help configuring this service correctly, Comstat can assist: feel free to get in touch, or use out contact page to organize an appointment which suits your timetable.

You can return to our Index of Articles by clicking here

PC Power Management Explained: Restart vs Shut Down and the Best Daily Power Habits

by Steve Galloway | Feb 4, 2026 | Articles and help

Restart vs Shut Down and the Best Daily Power Habits

Windows users—and even IT professionals—are unsure how PC power management really works. Two areas cause the confusion: the difference between Restart and Shut Down, and whether you should shut down or sleep your PC at the end of the day. These actions might look similar, but they behave very differently under the hood.

This guide brings both topics together in a simple, practical way to help users of all experience levels take better care of their computers while keeping performance stable and power use efficient.

Click open the headers below to learn more about how best to improve hardware performance with Microsoft’s tools for Windows. You can return to our Index of Articles by clicking here.

Restart vs Shut Down: Why They Are Not the Same

Most people assume that shutting down the PC is the most complete way to reset Windows. Surprisingly, that isn’t true. Thanks to a feature called Fast Startup, a normal shutdown does not clear everything from memory. Windows saves part of the system state to disk so it can boot faster the next time.

This means that using Shut Down often preserves the very problem you might be hoping to fix with a re-boot, whether that’s a misbehaving driver, a glitchy USB device, or a stubborn update. In contrast, Restart always performs a full reset of the Windows kernel, which clears system memory and loads all drivers from scratch.

So, if a user wants a “clean start” to flush out an issue, Restart is the correct choice. Shut down is still useful, but it is not a troubleshooting tool. Understanding this distinction is important, and it helps prevent wasted time and unnecessary frustration.

Daily Habits: Should You Shut Down or Just Sleep the PC?

When the workday ends, many users wonder what to do next: shut down, sleep, or something else? Advice varies wildly, and myths are common. Some people argue that turning the PC on and off wears out hardware. Others insist that leaving it on wastes energy and shortens component life. The truth lies somewhere between the two.

Modern PCs—especially those with Solid State Drives (SSDs)—are designed for frequent power cycling. SSDs do not suffer from mechanical wear caused by spin‑up or spin‑down, which used to be a concern with older hard drives. Components such as processors and RAM also handle start‑stop cycles with ease.

On the other hand, sleep mode is extremely energy‑efficient on modern hardware. A sleeping PC typically uses only a few watts, while allowing you to resume work instantly. This is ideal for office environments where you might take short breaks throughout the day.

Why Microsoft Advises a Policy, Not a Solitary Procedure

A simple rule for good PC power management is:

Use Sleep during the workday for short or medium breaks
Use Shut Down at the end of the day if you prefer a fully powered‑off system
Use Restart whenever the system is unstable or sluggish, or after updates

This approach balances energy conservation, hardware longevity, and overall system reliability—without relying on outdated advice from the mechanical‑hard‑drive era.

Summary

Understanding the difference between Restart, Shut Down, and Sleep helps users make better choices that keep Windows stable and hardware healthy. In modern computing, PC power management is about using each option for its intended purpose:

Restart for a true clean start
Shut Down for a full power‑off at the end of the day
Sleep for convenience and efficiency during regular working hours

Developiong good habits help prevent common issues, improve long‑term performance, and remove the guesswork from everyday PC use. It is true that inexpensive hardware is often built for comparatively limited processor duty cycles in its lifetime, so careful PC power management is especially useful with budget hardware used for critical production jobs.

For more help about improving Windows performance, feel free to get in touch, or use out contact page to organize an appointment which suits your timetable. You can return to our Index of Articles by clicking here

Windows Recovery Drive: Why Microsoft Recommends It

by Steve Galloway | Dec 16, 2025 | Articles and help

Windows 11 Recovery Drive: A Practical Safety Net, Not an Optional Extra

Microsoft explicitly recommends creating a Windows recovery drive so that your operating system can be repaired or reinstalled if your computer fails to boot, or if it becomes unstable. This guidance exists because some failures cannot be resolved from within Windows itself. Microsoft’s published recommendations are available here.

A Windows recovery drive is not a cure‑all. It will not fix every issue. However, it is one of the simplest and most effective tools for reducing downtime, avoiding data loss, and preventing expensive and prolonged recovery workarounds when things go wrong.

Click open the headers below to learn more about Microsoft’s Windows 11 Recovery Drive. Support options are available for professional assistance. You can return to our Index of Articles by clicking here.

Microsoft recommends Windows Recovery Drive

Microsoft advises users to create a Windows recovery drive as a precautionary measure. This “best practice” reasoning is straightforward. If Windows cannot start, built‑in recovery options may be inaccessible. A recovery drive allows access to advanced startup tools, system repair options, and, if required, a clean reinstallation of Windows.

When created correctly, a Windows recovery drive can also include include system files. This allows you to re-install Windows even if the internal recovery partition is damaged or missing. Unless you can do this, you might have to buy a new Windows license. At worst case, labout costs might mean that is is more economical to buy a new computer.

From Microsoft’s perspective, the recovery drive is part of basic system hygiene. It is comparable to keeping backups or applying security updates. You hope that you will never need it, and if you do, then you are exposed if a Windows recovery drive is not available.

When do I need a Windows Recovery Drive?

A Windows recovery drive is most valuable when normal troubleshooting is no longer possible. Common examples include:

Windows 11 fails to boot after an update or driver change
File system corruption prevents access to recovery options
Windows’ internal recovery partition is damaged or deleted
Malware or ransomware interferes with system startup
A replacement SSD or hard drive needs Windows reinstalled
BitLocker recovery and repair tools are required offline
Remote support is unavailable and local recovery is needed

In these situations, the absence of a Windows recovery drive often leads to improvised solutions. These take more time, cost more money, and increase the risk of data loss.

Hot tip: while a Windows recovery drive can save significant re-installation/restoration time and costs, users still need to know what edition of Windows and their Microsoft (personal) account credentials to reinstate Windows licensing.

Why Microsoft Advises a Policy, Not a One‑Off Action

Microsoft’s guidance goes beyond simply creating a recovery drive once. For managed environments and serious users, Microsoft recommends a policy‑based approach to recovery.

A proper Windows 11 recovery drive policy answers several practical questions:

Who creates the recovery drive
When it is created or refreshed
Where it is stored
How it is labelled and tracked
How it is tested

Without a policy, recovery drives are often outdated, missing, or stored in the same place as the failed device. That defeats their purpose.

A documented approach ensures that recovery remains possible even during staff absence, hardware failure, or time‑critical incidents.

Windows Recovery Drive helps to control and reduce risk

Windows recovery drive does not solve every problem. However, especially as computers near their anticitpated longevity , your Windows recovery drive it plays a critical role in mitigating cost.

When recovery options are limited, support is harder to source and margins for error increase

Emergency data extraction
Lengthy rebuilds from scratch
Extended and unpredictable downtime

These consequences are often far more expensive than the simple act of creating and maintaining a recovery drive. Sometimes, problems like hardware failure in ageing equipment means that there are insufficient resources for Windows to operate properly in the first place. In this kind of situation, a Windows recovery drive cannot restore problems consequential to permanent hardware damage.

However, a Windows recovery drive reduces dependency on complex recovery workarounds which small business users are needlessly exposed to so often. Instead of ad hoc intervention, Microsoft’s recommendation for restoration with a Windows recovery drive provides the best chance for shortening resolution time and restoring control when systems fail in unexpected ways.

Computer Life expectancy affects recovery options

In larger businesses, the average replacement cycle for computers used for desktop productivity is 3-5 years. Self-employed users demand much more from their computers. This kind of profile is more in line with corporate power users, whose computers are replaced at 2.5 – 4 years. This is because this kind of useage imposes a heavier computational duty cycle on hardware. While System Restore and Windows Recovery can help mitigate running costs, these kinds of tools cannot perform when hardware has failed or is reaching the end of its duty cycle.

Summary

Microsoft recommends that compiling a Windows 11 recovery drive because Windows systems do fail, even when well managed. You may never need it. We hope so. But if you do, and the freely available resource is not available, the risk of recoverycosts increase sharply.

Larger business do not use recovery drives because they tend to operate centralised systems that provide a pre defined Windows “mirror”, which can be “pushed” to a compromised workstation. Small businesses and home businesses do not enjoy this kind of support. A Windows recovery drive provides the substitute alternative.

If you would like help implementing a Windows 11 recovery drive policy, or aligning it with your wider Microsoft 365 and device management strategy, feel free to get in touch, or use out contact page to organize an appointment which suits your timetable. You can return to our Index of Articles by clicking here

Why BitLocker for Small Business Matters

by Steve Galloway | Dec 5, 2025 | Articles and help

Introduction: A common small business risk

BitLocker is an important utility in small office/home office situations. For instance, your laptop is probably your office. The device holds emails, customer details, invoices, and passwords. If that laptop is lost or stolen, the impact on productivity can be serious.

BitLocker is used widely in disciplined business networks and Windows Pro/Windows Enterprise enable the feature by default. However, home users are exposed to the same daily risks that larger business plan for. So, why is this kind of security not enabled be default in Windows Home?

This is because Windows Home is designed for personal rather than business or professional use. Windows Home users are provided with a lite version of BitLocker called “device encryption” to simplify this kind of security. This article helps you understand why this choice is left to user discretion, even though Microsoft recommends BitLocker or device encryption in business or professional contexts regardless of your edition of Windows.

Click open the headers below to learn more about Microsoft BitLocker. Support options are available for professional assistance. You can return to our Index of Articles by clicking here.

What is BitLocker?

BitLocker is built‑in disk encryption in Windows.

Encryption means your data is scrambled so it cannot be read without permission. If someone steals your computer and removes the hard drive, they still cannot read your files when the hard drive is secured this way.

With BitLocker and device encryption this protection happens automatically in the background. You do not need to open files differently or remember extra passwords in daily use for locally stored data. BitLocker or device encryption ensures:

Protection of customer and client information
Reduction of legal and GDPR exposure after a loss
Protection for email, documents, and saved passwords
Your data is encrypted in absolute terms

For a home office, BitLocker/device encryption is often the single most important security control you can enable.

Why BitLocker is not enabled in Windows Home by default

Windows Home is designed for personal use. Microsoft assumes:

One main user *
Personal files
Lower compliance risk
Minimal technical setup

* See our notes about Microsoft Windows accounts here.

Because of this, BitLocker is enabled by default for Windows “Pro” and “Enterprise” editions. These editions are aimed at people who:

Handle business or client data
Travel with laptops
May face regulatory obligations

So, device encryption’s default “disabled” state in Windows Home is not a limitation of your hardware. It is a product positioning choice because Windows Home is not designed for professional users.

Does Windows Home use Encryption or BitLocker?

Although Windows Home does not provide the more fully configurable BitLocker available in Windows Pro and Enterprise, it still provides an option for BitLocker “lite”, which is managed by a utility called device encryption, which:

Uses the same encryption engine as BitLocker
Encrypts only the main system drive
Turns on automatically on supported hardware

This can be configured in Settings -> Privacy security -> Device encryption

You can read more about Device Encryption in Windows Home here.

A common misunderstanding about BitLocker and ransomware

Users often worry that BitLocker could be used by criminals to lock them out of their resources, because of past and recent headlines about BitLocker ransomware.

It is true that ransomware can misuse many tools. However, this does not make BitLocker unsafe or unnecessary.

BitLocker protects data when a device is lost, stolen, or powered off. Ransomware is a different problem that requires backups and malware protection.

For small businesses and home professionals, the biggest real‑world risk is still device loss, not advanced cyber attacks. BitLocker and device encryption directly addresses that risk. For instance, if a spent computer is taken to a recycling centre, an encrytped hard drive cannot be accessed by third parties. For a spent computer that is destined for recycling, hard drives should be removed and physically compromised to prevent third parties recovering files and date from the hard drive.

What BitLocker does not replace

BitLocker is important, but it is not everything. You still need:

good backups
strong passwords
up‑to‑date Windows security
sensible email habits
a data and file retention policy that is commensurate with purpose

Think of BitLocker as the lock on the office door, not the whole alarm system.

Summary: Is BitLocker worth it for a small business?

BitLocker is not about fear or complexity. It is about realism.

Small businesses are not immune to loss, theft, or mistakes. BitLocker/device encryption for small business and professional home users helps reduce the impact when something goes wrong. This is why it exists, and why Windows Pro includes the feature by default. Consider these eventualities if you lost your laptop today:

would customer or professional data (including customer/client personal details) be safe?
would emails be secure from third party access?
could files be copied by third parties?

If not, device encryption for Windowns Home is worth serious consideration. Better still, upgrading from Windows Home to Windows Pro is often one of the lowest‑cost security improvements a professional users can make.

Remember, even though Microsoft does not force device encryption by default in Windows Home, Microsoft still recommends the utility.

For business users operating workstations at scale, Microsoft provides a planning guide here.

If you would like help implementing a device encryption, or you want to discuss this feature more fully, feel free to get in touch, or use out contact page to organize an appointment which suits your timetable. You can return to our Index of Articles by clicking here.