<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0"
     xmlns:content="http://purl.org/rss/1.0/modules/content/"
     xmlns:dc="http://purl.org/dc/elements/1.1/"
     xmlns:atom="http://www.w3.org/2005/Atom">
  <channel>
    <title>Axia News &amp; Insights</title>
    <link>https://axia.co.uk/news</link>
    <atom:link href="https://axia.co.uk/news/feed.xml" rel="self" type="application/rss+xml" />
    <description>IT news, Microsoft 365 and Copilot insights, cyber security guidance and product updates from Axia Computer Systems Ltd.</description>
    <language>en-GB</language>
    <copyright>Copyright Axia Computer Systems Ltd</copyright>
    <lastBuildDate>Sat, 01 Aug 2026 09:00:00 GMT</lastBuildDate>
    <generator>Axia website</generator>
  <item>
    <title>Identity sovereignty with OpenText eDirectory: why a twenty-year-old directory tree still beats the alternatives for some SMEs</title>
    <link>https://axia.co.uk/news/opentext-edirectory-identity-sovereignty</link>
    <guid isPermaLink="true">https://axia.co.uk/news/opentext-edirectory-identity-sovereignty</guid>
    <pubDate>Sat, 01 Aug 2026 09:00:00 GMT</pubDate>
    <description>OpenText eDirectory has been quietly running as the identity store for UK SMEs and mid-market sites for over twenty years. It is mature, multi-protocol, replicated to its core, and remains the single most underrated piece of infrastructure in the organisations that still run it.</description>
    <content:encoded><![CDATA[<p>OpenText eDirectory has been quietly running as the production identity store for UK SMEs, schools, government suppliers and mid-market businesses for over twenty years. It is mature, multi-protocol, replicated to its core, and remains the single most underrated piece of infrastructure in the organisations that still run it. For SMEs thinking about identity architecture in 2026, eDirectory is the kind of platform that does not need marketing — it has been earning its place by working reliably through every Windows, Linux and SaaS transition of the last two decades.</p><h2>What eDirectory actually is</h2><p>eDirectory is a directory service that began life as Novell Directory Services in the early 1990s. It is built around a replicated, multi-master tree model that treats every replica as equally authoritative. It speaks LDAP for the modern world, NDS for legacy Novell clients, and a long list of authentication protocols for the systems that came and went around it. The tree is partitioned for scale, replicated for resilience, and managed through a combination of graphical tools (iManager, ConsoleOne), command-line utilities, and a comprehensive schema that has been extended to cover essentially every directory use case an SME is likely to have.</p><h2>What eDirectory is genuinely better at</h2><ul><li>Multi-master replication: every replica can take writes. There is no single-master fail-over story to design, no catastrophe scenario in which the entire directory goes read-only.</li><li>Schema richness: eDirectory has a richer schema than either Active Directory or Entra ID by default, with strong support for location, organisational and class-of-service extensions that map naturally to complex SME structures.</li><li>Protocol coverage: LDAP, NDS, Kerberos, RADIUS, NMAS, NTP — eDirectory speaks more authentication protocols out of the box than any competing directory and has done for years.</li><li>Operational maturity: the tooling, the well-understood failure modes and the operational patterns around eDirectory are deeper than for newer directories.</li><li>Local control: eDirectory runs on hardware the SME owns, in a location the SME chooses, administered by people the SME employs.</li></ul><h2>Identity sovereignty as a strategic choice</h2><p>Identity sovereignty is the property of being able to authenticate, authorise and audit your people without depending on a third-party service that could change its terms, raise its prices, lose its accreditation or have an outage on the morning of your board meeting. For most SMEs in 2026 that is not a strong enough requirement on its own to override the productivity advantages of moving identity into the cloud. But for a meaningful minority — regulated sectors, defence-adjacent supply chains, sites with strict data-residency requirements — it is. eDirectory is one of the few mature, supported identity platforms that delivers that sovereignty without requiring the SME to build it themselves from scratch.</p><h2>Bridging eDirectory to the modern world</h2><p>The criticism that eDirectory cannot talk to the modern SaaS world is no longer accurate. The current generation of OES runs eDirectory comfortably alongside Active Directory, including as a side-by-side identity source for GroupWise, file and print services. Identity bridges — including the OpenText-branded tools and a number of mature third-party solutions — synchronise eDirectory trees with Entra ID, give modern SaaS applications a usable identity, and let the SME keep eDirectory as the authoritative store while migrating consumers gradually. The integration pattern is well understood and is one of the more elegant answers in identity architecture for SMEs with a Novell heritage.</p><h2>MFA, conditional access and the modern security stack</h2><p>The honest gap in 2026 is in the modern security story above the directory itself. Cloud-native directories now ship with conditional access, MFA enforcement, identity protection, risk-based policies and the full Microsoft XDR loop wired in. eDirectory has to be bridged into that stack, typically via Entra ID as a consumer. The work is well understood but adds operational complexity compared with an organisation that has identity and modern security in the same platform. The right conversation is always: do you have the operational skill to bridge eDirectory into the modern security stack cleanly, or is your team struggling to keep the tree healthy on its own?</p><h2>When to keep eDirectory as the authoritative identity</h2><p>Three signals say the authoritative identity should stay in eDirectory rather than being consolidated into Entra ID. The first is that the SME genuinely needs identity sovereignty as described above and is not willing to give that up for productivity gain. The second is that the existing identity tree still contains authoritative data — security clearances, complex group memberships, custom schema for line-of-business systems — that the SME has no appetite to migrate. The third is that the team looking after the estate is genuinely fluent in eDirectory and would lose operational grip if forced to migrate. None of those signals is permanent, but all of them are real reasons to keep eDirectory in the role it is doing well.</p><h2>When to admit the consolidation call</h2><p>Three other signals point the other way. The first is that the eDirectory tree is genuinely aging — schema drift, partition imbalance, replica servers running on hardware past its support horizon. The second is that the people who know the tree are retiring or moving on and the team that replaces them is no longer fluent. The third is that the rest of the estate is consolidating into Microsoft 365 anyway and the operational complexity of running two parallel identity stores outweighs the sovereignty benefit. In all three cases the right move is a deliberate migration to Entra ID as the authoritative store, with eDirectory kept in a transitional role that is itself documented and time-bounded.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London design identity architectures that genuinely fit their operational, security and sovereignty requirements — including the eDirectory implementations that are still earning their place in 2026 and the consolidation projects that make sense when they no longer do. If you are weighing the case for keeping eDirectory authoritative against the case for consolidating into Entra ID, get in touch for a short, practical conversation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/security.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>Open Enterprise Server</category>
    <category>OpenText</category>
    <category>eDirectory</category>
    <category>Identity</category>
  </item>
  <item>
    <title>File, print and shared storage without per-user cloud bills: the Open Enterprise Server case for SMEs</title>
    <link>https://axia.co.uk/news/opentext-open-enterprise-server-file-and-print-economics</link>
    <guid isPermaLink="true">https://axia.co.uk/news/opentext-open-enterprise-server-file-and-print-economics</guid>
    <pubDate>Wed, 29 Jul 2026 09:00:00 GMT</pubDate>
    <description>Most SMEs have moved at least some workloads into the cloud, but the file share, the print queue and the shared network storage are still the unsung hero of the working day. Open Enterprise Server delivers all three on a predictable licensing model without the per-user growth pattern that complicates long-term cloud budgeting.</description>
    <content:encoded><![CDATA[<p>Most SMEs have moved at least some workloads into the cloud — email has gone, chat has gone, document editing has gone — but the file share, the print queue and the shared network storage have quietly stayed behind. They are usually invisible to the business because they keep working. They are the unsung hero of the working day. OpenText Open Enterprise Server delivers all three on a predictable licensing model without the per-user growth pattern that complicates long-term cloud budgeting, and for a meaningful group of SMEs that is a reason to keep it as a deliberate choice rather than as inherited legacy.</p><h2>The three workloads OES is good at</h2><p>File services on OES are served from NSS volumes. The protocol story covers NCP for the legacy Novell client base and CIFS for Windows and most macOS users. Print is iPrint, with web-based driver delivery and a much lower operational burden than the equivalent Windows print server on a small site. Shared storage runs on NSS as well, with clustering for higher availability on sites that need it. None of that is glamorous. All of it has been quietly improving for over a decade and is well-understood by the small but committed community that runs it.</p><h2>Where the economics win</h2><p>A single OES licence covers the file, print and storage services for an entire server, with users counted at the directory level rather than per service. The bill grows with the number of servers and the number of users but does not grow per workload. A Windows Server estate serving the same functions tends to bundle multiple licences across multiple server roles, with CALs per user and per device across the stack. For an SME in the 50-to-300 user range with a single primary file and print estate, the cumulative cost of running OES is materially more predictable than the cumulative cost of running the Microsoft equivalent. The shape of that cost curve is the reason OES is still being chosen on financial grounds in 2026.</p><h2>Mobile and remote access: Filr</h2><p>The historical weakness of any on-premise file estate was mobile access. OpenText Filr is the answer: a file-access layer that talks NCP and CIFS at the back end and presents a modern mobile and web experience at the front. For SMEs whose staff genuinely need to read, edit and share OES-hosted files from phones, tablets and laptops away from the office, Filr deployed well closes most of the gap with OneDrive, SharePoint and the equivalent SaaS tools. It is not a replacement for those tools in every workflow, but for the file-and-print workload specifically it is genuinely capable.</p><h2>iPrint and the small details that matter</h2><p>iPrint is the OpenText answer to network printing and it is genuinely better than the equivalent Windows print stack on a small site. Driver delivery is centralised, queues are easier to manage, mobility printing works without the friction that print servers usually cause. For SMEs whose teams still print — design firms, manufacturers, logistics offices, schools, healthcare practices — that daily experience matters more than the licensing model and is one of the harder things to give up if you move to a cloud-first stack without an equivalent in it. The honest comparison is that OES makes printing pleasant; cloud-first stacks make printing a project.</p><h2>Identity flexibility in the current generation</h2><p>A meaningful criticism of older OES releases was that they assumed eDirectory as the identity store. The current generation explicitly supports using Active Directory as the identity source, including for sites that want to retain OES as the file and print tier on top of an Entra ID / Active Directory identity estate. That single change has made OES a much easier sell for SMEs that have already moved identity into Microsoft 365 but want to keep the file and print services they have always trusted running locally. The choice is no longer &quot;either/or&quot; — it is &quot;both, deliberately&quot;.</p><h2>What the cloud stack does that OES does not</h2><p>Honesty still matters. Cloud file and print tools offer tighter integration with productivity suites, browser-only editing in many cases, real-time co-authoring, and the cross-device sync that mobile teams now expect. OES plus Filr can do most of that, but the integration depth is shallower and the user-experience polish a generation behind. If your SME has decided that real-time browser collaboration is the single most important workload, OES is the supporting tier, not the lead one. The case for keeping OES is the case for keeping the file and print tier you trust, not the case for replicating Microsoft 365 inside OES.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London design file, print and storage estates that genuinely match how their teams work — including the Open Enterprise Server deployments that still earn their place in 2026. If you are weighing the cost and operational shape of your file and print estate against a cloud-first alternative, get in touch for a short, practical conversation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/it-support.webp" type="image/webp" length="0" />
    <category>IT Strategy</category>
    <category>Open Enterprise Server</category>
    <category>OpenText</category>
    <category>File and Print</category>
    <category>Licensing</category>
  </item>
  <item>
    <title>OpenText Open Enterprise Server explained: what it is and why it still earns its place in a UK SME in 2026</title>
    <link>https://axia.co.uk/news/opentext-open-enterprise-server-explained-uk-sme</link>
    <guid isPermaLink="true">https://axia.co.uk/news/opentext-open-enterprise-server-explained-uk-sme</guid>
    <pubDate>Sat, 25 Jul 2026 09:00:00 GMT</pubDate>
    <description>OpenText Open Enterprise Server is the long-running file, print and identity platform that grew out of Novell NetWare. It is still in active development, still widely deployed in UK education, government and mid-market businesses, and still quietly doing a job that the cloud-first stack does not do as well.</description>
    <content:encoded><![CDATA[<p>OpenText Open Enterprise Server is the long-running file, print, identity and storage platform that grew out of Novell NetWare and evolved through Open Enterprise Server into its current form under OpenText. It is still in active development — the current line is the OpenText OES 24.x quarterly track sitting on top of OES 23.4 LTS — and it is still widely deployed across UK education, local government suppliers, professional services and mid-market businesses that have run their estates on it for two decades. For an SME wondering whether OES is in scope as a deliberate choice in 2026, the answer is yes.</p><h2>What Open Enterprise Server actually is</h2><p>At its core OES is a Linux-based services platform for SMEs and mid-market sites. It delivers file services via the NSS (Novell Storage Services) file system and NCP and CIFS protocols, shared printing through iPrint, mobile and remote file access through Filr, identity through eDirectory, and a cluster stack for high availability. It runs on SLES (SUSE Linux Enterprise Server) and is sold as a per-server or per-user subscription. The current generation explicitly supports using Active Directory as the identity source alongside — or in place of — eDirectory, which materially changes the integration story for sites that have already moved some workloads into Microsoft.</p><h2>A short history</h2><ul><li>1980s–2000s: Novell NetWare dominates SME and education file and print. eDirectory (then NDS) becomes one of the most replicated directory trees in production anywhere.</li><li>2000s–2010s: Novell Open Workgroup Suite bundles GroupWise, eDirectory, iPrint and ZENworks. The Novell stack becomes the default mid-market IT environment.</li><li>2011: Attachmate acquires Novell. The product lines continue, including OES.</li><li>2014: Micro Focus acquires Attachmate. Open Enterprise Server becomes a Micro Focus product line.</li><li>2023: OpenText acquires Micro Focus. OES is published under OpenText branding, on a quarterly release model with explicit LTS branches.</li><li>Today: OpenText OES 24.x is the current generation. OES 23.4 remains the LTS track. A Community Edition of recent releases is available for evaluation, home and small-business use.</li></ul><h2>Where OES still makes sense in 2026</h2><p>There is a category of SME for whom OES is still the obvious answer. Schools and colleges who built their admin estates on Novell twenty years ago and have never had a reason to leave — the directory, the file shares, the print queues and the GroupWise mailbox have all worked consistently and quietly across multiple IT team handovers. Professional services firms whose case file shares, document management and identity are deeply embedded in eDirectory trees no-one wants to disturb. Manufacturing and logistics sites whose file and print services have run on OES for over a decade with negligible downtime. Government-adjacent SMEs whose customers and contracts expect on-premise file and identity by design. None of these are particularly fashionable reasons to choose a platform in 2026. They are, however, real reasons and they keep showing up in actual renewals.</p><h2>Where OES shows its age</h2><p>Honest list of weaknesses: the SME-facing talent pool for OES is smaller than the talent pool for Windows Server, and that talent pool skews older and retires faster than it grows. Management is overwhelmingly Linux-based and tools-fluent, which excludes a chunk of the Windows-trained SME IT population. The browser and SaaS-integration story has improved but is not as automatic as the Microsoft equivalents. The mobile experience depends on Filr being deployed well, which many sites have not done. None of these disqualifies OES. They do mean OES works best where there is a named eDirectory-fluent engineer, internal or contracted, who can keep the estate healthy.</p><h2>What to do if you still run it</h2><ul><li>Get onto a supported release. Running an OES version that is past committed support is the single biggest risk we see on long-running OES estates.</li><li>Pick the LTS line deliberately. The 23.4 LTS branch is the right starting point for almost every SME that values stability over feature velocity.</li><li>Document identity. If your eDirectory tree has not been actively audited in years, that is the single biggest operational risk you have.</li><li>Make sure your backup and restore story is tested. OES estates tend to have working backups and untested restore procedures, often for years.</li><li>Decide whether OES is a permanent choice or a deliberate transition. Either decision is fine; the worst outcome is the choice being made for you by an unplanned incident.</li></ul><p>OpenText is committed to the Open Enterprise Server product line and the roadmap continues to ship on a quarterly cadence. For SMEs that have a genuine operational, financial or strategic reason to keep OES in production, the platform remains a sensible and supported choice. If you would like an independent review of your OES estate, get in touch for a short, practical conversation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/infrastructure.webp" type="image/webp" length="0" />
    <category>IT Strategy</category>
    <category>Open Enterprise Server</category>
    <category>OpenText</category>
    <category>eDirectory</category>
    <category>File and Print</category>
  </item>
  <item>
    <title>Slow internet, remote sites and unreliable WAN: where OpenText GroupWise still earns its place</title>
    <link>https://axia.co.uk/news/opentext-groupwise-low-connectivity-and-remote-sites</link>
    <guid isPermaLink="true">https://axia.co.uk/news/opentext-groupwise-low-connectivity-and-remote-sites</guid>
    <pubDate>Wed, 22 Jul 2026 09:00:00 GMT</pubDate>
    <description>For most SMEs with reliable UK broadband, cloud email is the right answer in 2026. For SMEs with branch sites on poor links, sites that genuinely go offline, or sites whose connectivity is operationally critical, on-premise email — and GroupWise in particular — keeps doing the job that it was always best at.</description>
    <content:encoded><![CDATA[<p>For most SMEs with reliable UK broadband, cloud email is the right answer in 2026. The bandwidth is there, the uptime is there, and the productivity case is overwhelmingly strong. But there is a smaller group of SMEs whose estates do not behave like that. Branch sites on contended lines, sites where the WAN genuinely goes down, sites whose connectivity is operationally degraded rather than incidentally slow. For those businesses, on-premise email — and OpenText GroupWise in particular — keeps doing the job that it has always been best at. This article is a defence of that choice.</p><h2>What cloud email actually assumes about your link</h2><p>Cloud email is engineered to tolerate ordinary packet loss — Exchange Online, Outlook and the Office web apps cope well with the flaky coffee-shop Wi-Fi of the modern mobile worker. What they do not do well is disappear. If the WAN connection between a remote site and the rest of the world is offline, the people on that site cannot read mail they have already received, cannot search their mailbox, cannot read thread history, and cannot work offline in any meaningful way. Outlook&apos;s cached mode is helpful but is not a substitute for a local mailbox. There is a category of SME for whom that is not an acceptable failure mode.</p><h2>Where GroupWise still wins on resilience</h2><ul><li>Manufacturing and logistics sites: a factory floor, a distribution centre or a warehouse operation that genuinely cannot depend on consumer-grade broadband for normal operation.</li><li>Agriculture, marine and field-research SMEs: sites where the best available internet is a contended LTE connection shared with the surrounding geography.</li><li>Construction and infrastructure SMEs: temporary sites where connectivity is set up by project and may not be present in the early days of a contract.</li><li>Rural professional services: solicitors, accountants and surveyors in genuinely remote towns whose premises-grade broadband is materially worse than central London equivalents.</li><li>Branch offices with poor uplink quality: a town where every leased line is contended and the secondary 4G connection is the only realistic path.</li></ul><h2>Why &quot;just add more bandwidth&quot; is not always the answer</h2><p>For some sites adding bandwidth is straightforward and cheap. For other sites it is neither. A leased line to a rural manufacturing site may take six months to install and cost more per month than the GroupWise licence. A reliable 4G or 5G solution in a metal-framed warehouse may require a survey, an external antenna and ongoing signal-management work. In those cases the honest answer to &quot;should we move to Microsoft 365&quot; is often &quot;yes, but only after the connectivity story is fixed, and even then some sites will continue to need on-premise resilience&quot;. The SME that makes the prudent choice is the one that refuses to pretend the WAN is reliable when it is not.</p><h2>How GroupWise behaves when the WAN goes away</h2><p>A GroupWise mailbox, served by a Post Office Agent sitting in the same datacentre, keeps working when the WAN does not. Users keep their cached mail, their local client behaves sensibly against the local server, web access continues to work over any local network the site still has, and the gateway queues outbound mail until connectivity returns. There is no dependency on a remote service that the SME cannot reasonably operate locally. For sites with genuine availability requirements — a production planning team that must read yesterday&apos;s shift reports, an account handler who must check inbound mail at 7am — that local resilience is the deciding factor.</p><h2>Designing the topology to make the most of it</h2><p>The strongest GroupWise deployments for resilience-hungry sites are the ones where the messaging tier has been moved to a small local server rather than centralised. The pattern looks like this: a central eDirectory tree for identity and policy, one Post Office Agent per site that genuinely needs local resilience, site-level SMTP queuing through GWIA, and a synchronised copy of the user data that is small enough to live comfortably on a modern small-form-factor server. Total cost of ownership for that pattern is competitive with the connectivity cost of doing it the cloud-only way, and availability in practice is markedly better.</p><h2>Pairing GroupWise with cloud elsewhere</h2><p>A few of the strongest GroupWise deployments we encounter use cloud tooling elsewhere by deliberate design: Microsoft 365 for productivity, files and chat through OneDrive and Teams, and GroupWise as the resilient messaging tier. The pattern works when the on-premise estate is seen as a deliberate platform choice rather than as legacy, and when the cloud usage above it does not assume the messaging tier is also in the cloud. Not every SME can make that argument cleanly, but the ones that can find it genuinely durable.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London design messaging topologies that match the operational reality of their sites — including the GroupWise deployments that keep working when the WAN does not. If you are weighing the cloud-first assumption against the resilience you actually need, get in touch for a short, site-aware conversation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/home-worker.webp" type="image/webp" length="0" />
    <category>IT Strategy</category>
    <category>GroupWise</category>
    <category>OpenText</category>
    <category>Email</category>
    <category>Hybrid Working</category>
  </item>
  <item>
    <title>Data residency by design: when on-premise email is still the right answer for UK SMEs</title>
    <link>https://axia.co.uk/news/opentext-groupwise-data-residency-by-design</link>
    <guid isPermaLink="true">https://axia.co.uk/news/opentext-groupwise-data-residency-by-design</guid>
    <pubDate>Sat, 18 Jul 2026 09:00:00 GMT</pubDate>
    <description>UK data residency is no longer a niche requirement. Public-sector suppliers, legal practices, health-adjacent businesses and any SME whose customers ask for it now have a real preference for email that sits inside their own datacentre. OpenText GroupWise is one of a small number of platforms that delivers that intrinsically, without a bolt-on.</description>
    <content:encoded><![CDATA[<p>UK data residency is no longer a niche requirement. Public-sector suppliers, legal practices, health-adjacent businesses and any SME whose customers ask for evidence that their data sits inside the UK now have a real preference for email that lives inside their own datacentre. OpenText GroupWise is one of a small number of platforms that delivers that intrinsically, without a bolt-on, without an extra licence tier, and without a quarterly statement from a hyperscaler confirming that your tenant is hosted in the region you paid for. For a meaningful number of SMEs that is the single reason GroupWise stays in scope.</p><h2>What residency is really being asked for</h2><p>When a customer asks &quot;where is our data held&quot; they are usually asking three things at once. First, that the data does not leave the UK at rest. Second, that it does not leave the UK in transit on the way to a service or a backup. Third, that the people who can read it cannot be moved to a non-UK team without your consent. Cloud platforms can answer the first two of those questions, but only with careful configuration and ongoing tenant management. GroupWise answers all three by construction — the data sits on your hardware, the replication topology is yours to design, and the administrators with read access are the ones you hired.</p><h2>Where the question gets asked most often</h2><ul><li>Public sector and suppliers to public sector: contracts increasingly require UK-hosted email as a baseline, with named exception processes for anything outside that.</li><li>Legal and professional services: client confidentiality duties, professional regulator guidance and a long-standing cultural preference for self-hosted document and message storage.</li><li>Health-adjacent SMEs: anything touching identifiable patient data, even indirectly, has been pushed firmly into the on-premise or carefully-scoped-cloud end of the spectrum.</li><li>Defence, policing and security-cleared supply chains: the National Cyber Security Centre guidance and the contractual flow-down from prime contractors keep this conversation alive.</li><li>Financial services suppliers: smaller firms in the regulatory perimeter often find on-premise email easier to evidence than a cloud tenant with jurisdiction questions.</li></ul><h2>What residency by design actually delivers</h2><p>In GroupWise the mail store, indexes, post office and gateway live on hardware inside your datacentre or a UK colocation facility you control. Backups go to a destination you choose — your own tape library, your own offsite store, or a UK-supplied cloud backup service. Replication is your decision, your topology, your SLA. There is no secondary copy held by the platform vendor in another jurisdiction that you have to remember exists. For an SME under regulatory or contractual pressure, that is a much simpler story to tell and to prove, both at tender time and at audit time.</p><h2>Why this is not just a marketing point</h2><p>The cloud platforms have improved materially over the last five years. UK and EU data residency is now available at the licence level on Microsoft 365, customer-key encryption exists, and a competent partner can configure a tenant that genuinely satisfies most UK data-residency requirements. The honest comparison is no longer &quot;cloud cannot do this&quot; but &quot;cloud requires more configuration, more governance, more ongoing tenant management to do this&quot;. On GroupWise, the configuration is the design. That difference shows up the most clearly when a customer asks, in writing, who can read our mailbox metadata at three in the morning on a Sunday — and the SME has to answer without consulting a vendor.</p><h2>What to put around it</h2><p>Residency by design is only useful if the rest of the estate is up to the same standard. That means TLS-strict on every SMTP, IMAP and Web Access path with current ciphers; restricted administrative access to the GroupWise servers with named humans and named change-control; tested, restorable backups with documented UK-only destinations; and a written data-handling policy that any auditor or customer can be walked through without notes. None of this is exotic; all of it is the difference between a residency claim that survives scrutiny and one that does not.</p><h2>The honest boundary</h2><p>Residency by design does not mean GroupWise is the right answer for every residency-led conversation. If the rest of the business is going to live in Microsoft 365 for productivity, chat, file storage and identity, running GroupWise alongside it becomes a complexity rather than a clean architectural decision. The strongest residency arguments for GroupWise come from SMEs whose wider stack is compatible with an on-premise messaging tier — usually because their wider stack is itself modest, or because their on-premise identity is already deeply embedded in eDirectory.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London design messaging estates that genuinely satisfy UK data-residency requirements, including the on-premise GroupWise deployments we encounter in regulated supply chains and professional services. If you are answering a residency question in a tender and want a short, practical review of your estate, get in touch.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/security.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>GroupWise</category>
    <category>OpenText</category>
    <category>Email</category>
    <category>Data Sovereignty</category>
  </item>
  <item>
    <title>Why a predictable total cost of ownership still beats per-seat cloud email for some SMEs</title>
    <link>https://axia.co.uk/news/opentext-groupwise-predictable-tco</link>
    <guid isPermaLink="true">https://axia.co.uk/news/opentext-groupwise-predictable-tco</guid>
    <pubDate>Tue, 14 Jul 2026 09:00:00 GMT</pubDate>
    <description>Cloud email is sold on the basis of moving opex from capex and shifting cost from fixed to variable. For many SMEs that promise has held up. For a meaningful group it has not — and GroupWise on-premise is one of the few platforms where the total cost really does behave predictably over a five-year horizon.</description>
    <content:encoded><![CDATA[<p>Cloud email is sold on the basis of moving opex from capex and shifting cost from fixed to variable. For many SMEs that promise has held up: the convenience, the integrated security, the lack of a server to look after — all of it is real. For a meaningful group of SMEs the promise has not held up, and GroupWise on-premise is one of the few platforms where the total cost really does behave predictably over a five-year horizon. This article is unapologetically about the case where GroupWise wins on running cost.</p><h2>What &quot;predictable TCO&quot; actually means</h2><p>Total cost of ownership for email includes more than the licence line. It includes the server you run it on, the storage it consumes, the backup infrastructure, the licences for any third-party components you bolt on, the human time to keep it healthy, and the way each of those behaves over years. A platform that gives you a steady, well-understood number across all of those for a five-year horizon is more valuable than a platform with a low sticker price that quietly grows as users are added, add-ons are layered on, and security features that used to be free become paid tiers.</p><h2>The line items that surprise people on the cloud side</h2><ul><li>Price rises: Microsoft 365 list prices historically step up every three to five years. A Business Premium seat at £20 this year is not guaranteed to stay there.</li><li>Tier creep: the security feature that protects against the threat you actually worry about tends to live in the next licence tier up. Defender for Endpoint P2, Entra ID P2, the E5 compliance stack — all of these become &quot;essential&quot; once you read the questionnaire carefully.</li><li>Audit storage: Exchange Online archive storage beyond the default allowance is metered. For SMEs that genuinely need long-term archive, the metered bill grows with retention.</li><li>Add-ons: every decent compliance or migration tool — third-party backup, eDiscovery, advanced mail-flow filtering — costs extra on top of the licence.</li><li>Per-user growth: cloud bills grow linearly with every new joiner. An SME that doubles in headcount doubles their email line, exactly when other costs are also rising.</li></ul><h2>Where GroupWise holds the line</h2><p>GroupWise is licensed per concurrent user on a multi-year agreement that does not, in practice, experience the same year-on-year step-ups. The server you run it on is depreciating hardware you already own. Backup and storage scale with usage but are owned outright. Once the platform is up and stable, the marginal cost of adding a user is the licence plus a small amount of disk — there is no parallel cloud bill growing in the background. For a 60-person professional services firm with a five-year IT plan and a finance team that prefers to know what they are spending, that predictability has real value.</p><h2>What you give up for that predictability</h2><p>Honesty matters. The case for GroupWise on cost comes with three costs it does not include. The first is the human cost: someone has to look after the platform, even on LTS, and that someone has to be paid for and retained. The second is the security-feature gap: you do not get Bundle A in GroupWise. You build equivalent outcomes with whatever stack you put in front of it, and you have to keep that stack current. The third is the strategic cost: while you are paying less and predicting more accurately, your team may be missing out on the productivity features Microsoft 365 is now bundling, and you have to account for that in your broader IT plan. None of those caveats disqualifies GroupWise. They just mean the cost case has to be weighed honestly against the strategic case.</p><h2>The financial framing that usually decides it</h2><p>For SMEs under about fifty users the honest answer is usually cloud. The per-seat economics combined with the operational simplicity beat on-premise in most cases. For SMEs between fifty and three hundred users the answer depends on whether you can find and retain the operational skills to run it well — at that headcount the cost lines cross and the deciding factor is operational. For SMEs above three hundred users with mature IT estates, the financial case for GroupWise tends to strengthen again: the cloud bill compounds, the on-premise cost amortises, and a stable platform that you control starts to look like an asset rather than a liability.</p><h2>When to model both sides</h2><p>Two situations make a proper five-year TCO model worthwhile. The first is when you are about to renew a multi-year IT contract and the choice between on-premise and cloud is genuinely live. The second is when you have a finance team that plans on rolling three-year horizons and is asking real questions about which path leaves them with the most predictable cost basis. In both situations, build the model with the line items in this article, not with the headline licence number — that is the level at which the answer becomes useful, and that is the level at which GroupWise often surprises people.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London build honest five-year cost models for both Microsoft 365 and on-premise GroupWise estates. If you are weighing the two in a renewal cycle and want a model that withstands scrutiny, get in touch for a short, practical conversation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/email-archive.webp" type="image/webp" length="0" />
    <category>IT Strategy</category>
    <category>GroupWise</category>
    <category>OpenText</category>
    <category>Email</category>
    <category>Licensing</category>
  </item>
  <item>
    <title>Keeping OpenText GroupWise healthy: upgrades, security and the long-term plan most SMEs do not have</title>
    <link>https://axia.co.uk/news/keeping-opentext-groupwise-healthy-long-term</link>
    <guid isPermaLink="true">https://axia.co.uk/news/keeping-opentext-groupwise-healthy-long-term</guid>
    <pubDate>Sat, 11 Jul 2026 09:00:00 GMT</pubDate>
    <description>If you have decided to keep GroupWise — for sound operational, financial or compliance reasons — it still has to be looked after on a disciplined cadence to stay supported, secure and recoverable. Here is the lifecycle plan we recommend, including the LTS-versus-quarterly decision and the people-and-process work around it.</description>
    <content:encoded><![CDATA[<p>If you have decided to keep GroupWise running — whether for data residency, predictable cost, or because the migration is genuinely not viable right now — the platform still has to be looked after on a disciplined cadence. OpenText publishes two release tracks in parallel: a quarterly track (currently 24.3 with 24.4 close behind) and a long-term support track (currently 23.4 LTS). Picking the right track and then executing the upgrade, patching and recovery work around it is most of what &quot;running GroupWise well&quot; actually looks like.</p><h2>LTS versus quarterly: the trade-off</h2><p>The LTS track gives you fewer mandatory upgrades, longer support windows and a more predictable change calendar, in exchange for slower access to new features. The quarterly track gives you nearer-term access to new capabilities at the cost of an upgrade every few months and a faster end-of-support horizon. For most SMEs with a small IT team and no appetite for constant change, LTS is the right call — version 23.4 is the LTS to be on in 2026, and the expectation is that the next LTS branch will be available when this one approaches its end of committed support. For SMEs with a competent in-house team and genuine feature need, quarterly is fine, provided the team genuinely has the calendar to keep up with it.</p><h2>Upgrades without surprises</h2><ul><li>Plan upgrades around your business cycle, not around the vendor release schedule. Quarterly does not mean &quot;do it the day it ships&quot;.</li><li>Read the OpenText release notes end to end before scheduling the upgrade. Most surprises in GroupWise upgrades come from changed default behaviour, not from broken behaviour.</li><li>Stage the upgrade in a lab post office that mirrors production. Run a representative set of clients — Windows client, Web Access, mobile — against it for at least a week.</li><li>Take a verified, restorable backup immediately before the cutover. Verify the backup by actually restoring a sample mailbox, not by trusting the backup software&apos;s success message.</li><li>Schedule the production upgrade in a planned outage window. GroupWise is still email: any downtime is felt by the whole business.</li></ul><h2>Security posture in 2026</h2><p>GroupWise in 2026 sits inside an estate that almost certainly has Microsoft 365 or Google Workspace for at least some workloads, modern endpoints, and a managed firewall. The security job is to make sure GroupWise does not become the weakest link. That means enforcing MFA on the identity store in front of GroupWise — typically eDirectory combined with Entra ID or a third-party SSO bridge — turning on TLS for SMTP, IMAP and Web Access with current ciphers, restricting Web Access by source network where practical, and making sure the GroupWise Anti-Spam and Anti-Virus modules are running with current rulesets. None of this is complicated in principle; all of it tends to drift in practice without a named owner.</p><h2>Disaster recovery and backups</h2><p>Most ageing GroupWise estates we encounter have a backup product running and a recovery plan that nobody has actually tested. The minimum viable disaster-recovery story is: a backup of the Post Office Agent database, a backup of the GWIA configuration, a backup of the Web Access server configuration, a backup of eDirectory, and a documented restore procedure with measured recovery times. The single most valuable habit is restoring a sample mailbox — different from restoring from last night&apos;s incremental — at least twice a year. Until you have done a real restore, every quoted recovery time is a guess.</p><h2>Identity and the long-term problem</h2><p>The single biggest operational risk on long-running GroupWise estates is almost always the identity store. People left, retired, or moved on, and eDirectory trees grown organically over fifteen years become difficult to administer and risky to change. If your GroupWise authenticates against a tree no-one feels confident touching, that is the place to start the lifecycle review. Modernising the identity layer — whether that means cleaning eDirectory, federating with Entra ID through a third-party SSO bridge, or both — gives you options later. Identity strain is the thing that turns &quot;we are keeping GroupWise&quot; into &quot;we have to migrate urgently&quot; without warning.</p><h2>When to admit it is time to plan the move</h2><p>Three signals tell you that the on-premise decision has aged out, even if the original reason for it still holds. The first is that the upgrade cadence has slipped — if you are more than one release behind tracked LTS, the cost of catching up is itself material and growing. The second is that the people who know the platform internally are no longer available and the only vendor left who can help is on a multi-week lead time. The third is that the rest of the business has moved to SaaS tooling that assumes modern authentication and GroupWise is the thing that prevents those tools being used. None of those signals is a surprise; all of them are the right time to start a deliberate migration conversation rather than a forced one.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London build and run sensible lifecycle plans for legacy platforms — including the GroupWise estates that are still serving a real business purpose — and we help the same businesses prepare and execute Microsoft 365 migrations when the time comes. If you would like an independent review of where your GroupWise estate sits on that lifecycle, get in touch for a short, practical conversation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/it-support.webp" type="image/webp" length="0" />
    <category>IT Strategy</category>
    <category>GroupWise</category>
    <category>OpenText</category>
    <category>Cyber Security</category>
  </item>
  <item>
    <title>Migrating from OpenText GroupWise to Microsoft 365 without losing your history</title>
    <link>https://axia.co.uk/news/migrating-from-opentext-groupwise-to-microsoft-365</link>
    <guid isPermaLink="true">https://axia.co.uk/news/migrating-from-opentext-groupwise-to-microsoft-365</guid>
    <pubDate>Thu, 09 Jul 2026 09:00:00 GMT</pubDate>
    <description>Migrations from GroupWise to Microsoft 365 are well-understood now: the tooling has matured, the pitfalls are documented, and the rough timeline is predictable. Here is what actually happens, what usually goes wrong, and how to plan a project that does not lose your mail history, calendar data or shared folders.</description>
    <content:encoded><![CDATA[<p>GroupWise to Microsoft 365 migrations have become routine enough that the tooling, the rough timeline and the common pitfalls are all well understood. For an SME between fifty and two hundred and fifty mailboxes the project typically runs six to twelve weeks from kick-off to cutover. The work splits cleanly into three phases: discovery, pilot, and cutover. The single highest-risk item is almost always calendar data, not email, and the place most projects lose time is shared folders, not user mailboxes.</p><h2>Discovery — know what you are actually moving</h2><p>Before any tooling touches a mailbox you need a clean inventory: how many post offices, on which versions of GroupWise, how many mailboxes in total, broken down by user, resource, and shared folder. Capture mailbox sizes, the size of the on-disk archive if you have one, the number of delegated mailboxes, the number of GroupWise rules and the volume of documents held in shared folders. Capture it again from the Microsoft 365 side: how many licences you have, which plan, whether you have the right Entra ID P1 or P2 features for conditional access from day one. The aim is to know exactly what you are moving, how big it is, and which edge cases will need human handling.</p><h2>The migration tool landscape</h2><ul><li>CloudM Migrate: a mature SaaS tool with strong GroupWise support, well-suited to IMAP-style or API pulls into Exchange Online.</li><li>Transend: a long-standing on-premise migration engine with explicit GroupWise connectors, useful for complex cutovers where you want full control of the pipeline.</li><li>Shoviv GroupWise to Office 365: a lower-cost tool aimed at smaller migrations and one-off mailbox moves; capable but light on enterprise features.</li><li>Microsoft FastTrack Partner-led: Microsoft-funded partner time for onboarding Microsoft 365 at scale, including migrations from competing platforms.</li><li>PowerShell and Graph scripting: appropriate for small numbers of resource mailboxes or bespoke shared-folder mapping, but not a substitute for a real migration tool at scale.</li></ul><p>Pick the tool based on the inventory you built in discovery. For most SMEs between fifty and three hundred mailboxes the answer is CloudM or Transend with a partner running the engagement. For projects with heavy shared-folder usage, complex delegate chains or regulatory evidence requirements, the on-premise Transend approach gives more control. Tools are not interchangeable: each handles calendar quirks differently and each has a slightly different model for handling GroupWise rules and signatures.</p><h2>Mail, contacts, calendar, free/busy, rules and signatures</h2><p>Email migration itself is usually the easy bit — modern tooling moves years of mailbox content reliably, including folder structure and metadata. Contacts migrate cleanly when the source GroupWise contacts are well-maintained; expect to do a small amount of dedup work at the Exchange Online end. Calendar data is the most likely source of cutover-day surprises: recurring meetings with exceptions, shared calendars across multiple users and resource booking calendars all behave differently between GroupWise and Exchange. Free/busy data between users on the same platform migrates well in our experience; free/busy between migrated and not-yet-migrated users during the pilot phase does not, and that is one reason pilots are useful.</p><h2>Shared folders and delegated mailboxes</h2><p>Shared folders are the part of GroupWise that most resembles an old-fashioned file share inside the email client. Modern equivalents in Microsoft 365 are a combination of shared mailboxes, SharePoint document libraries and Microsoft 365 Groups. The mapping is not one-to-one and the design conversation is the most valuable part of the project: which shared folders genuinely remain shared mailboxes in Exchange Online, which become SharePoint sites, which become Microsoft 365 Groups with attached Teams channels, and which really should be retired because the business no longer needs the volume of historic data they contain. Delegate relationships — boss and PA setups — usually migrate cleanly if they were modelled correctly in the first place.</p><h2>Pilot, cutover and order of operations</h2><ul><li>Pilot with five to ten representative users across two or three teams. Include at least one heavy shared-folder user and one heavy calendar user.</li><li>Run the pilot in parallel with GroupWise for a week or two. Users keep both clients and report on differences, missing data and odd behaviour.</li><li>Decide on a wave plan for the rest of the business, typically grouped by team or by post office. Avoid migrating the whole company in one weekend.</li><li>Schedule cutover out of hours for each wave, with rollback to GroupWise kept open for at least one business cycle.</li><li>Decommission GroupWise formally only once every mailbox has been migrated, the shared folders have been validated, and the legal hold / archive requirements have been confirmed in writing.</li></ul><h2>Common pitfalls to avoid</h2><p>Three patterns account for most of the projects we have had to rescue. The first is starting the migration before the Microsoft 365 tenant is properly set up — domain verification, licence assignment, conditional access baseline and the security defaults you actually want are not optional. The second is leaving GroupWise DNS records in place too long after cutover, which results in a confusing period where mail lands in the wrong place and the helpdesk gets buried. The third is forgetting the on-disk GroupWise archive: it is rarely needed in the live migration because users have already moved what matters into the current mailbox, but it has to be retained for the legal retention period your business is committed to.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London land on Microsoft 365 cleanly, including the GroupWise migrations we encounter most often in education, local government suppliers and long-established professional services firms. If you are weighing a move and would like a fixed-price scoping conversation, get in touch.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/infrastructure.webp" type="image/webp" length="0" />
    <category>Microsoft 365 &amp; Windows</category>
    <category>Microsoft 365</category>
    <category>GroupWise</category>
    <category>Email</category>
    <category>Migration</category>
  </item>
  <item>
    <title>FortiGuard Labs 2026 global threat landscape: what it means for UK SMEs</title>
    <link>https://axia.co.uk/news/fortiguard-2026-threat-landscape-uk-sme-takeaways</link>
    <guid isPermaLink="true">https://axia.co.uk/news/fortiguard-2026-threat-landscape-uk-sme-takeaways</guid>
    <pubDate>Tue, 07 Jul 2026 09:00:00 GMT</pubDate>
    <description>FortiGuard Labs&apos; latest global threat report is dense with statistics about ransomware, exploit activity and OT attacks. Stripped down to what actually matters to a UK SME without a SOC: the four patterns we are seeing on customer estates, and the small, cheap controls that blunt each one.</description>
    <content:encoded><![CDATA[<p>Every quarter, FortiGuard Labs publishes threat intelligence drawn from telemetry across millions of sensors worldwide. The full report runs to dozens of pages of statistics and is worth reading, but most SME IT teams do not have the hours. This article is our distillation for clients: what is genuinely new, what is just louder coverage of old techniques, and which cheap, boring controls are still doing the heavy lifting against the latest activity.</p><h2>Ransomware has not gone away — it has just changed shape</h2><p>The big shift in the last two years is away from noisy, mass-distributed ransomware and towards quieter, more targeted operations. Attackers spend longer inside the network before they encrypt anything, often weeks. They map backups first. They exfiltrate data, then threaten to leak it as a second lever even if the encryption is paid off. The classic &quot;we got hit, the servers are encrypted, we pay the ransom&quot; story has been almost entirely replaced by a longer, more patient process that ends in double extortion. For SMEs the practical implication is the same: detect early, isolate fast, and assume the leak is part of the attack whether you pay or not.</p><h2>Exploits are increasingly targeting edge devices</h2><p>FortiGuard again flags firewalls, VPN concentrators, remote-access appliances and other internet-facing devices as the highest-volume target class. These devices are often managed by a third party, run firmware that is months out of date, and sit in the DMZ as the trusted edge of the network. The reason is simple: a working exploit against a perimeter appliance gives the attacker network-level access to everything behind it, often without triggering endpoint detection. The mitigation is equally simple and almost universally neglected: enable automatic firmware updates on every managed appliance; have a documented quarterly review for those that cannot auto-update; and remove from production any device that has been end-of-life for more than 90 days.</p><h2>OT and ICS activity keeps climbing</h2><p>Activity against operational technology — the kit that runs factories, building management systems, smart-building climate controls, even commercial kitchen and refrigeration equipment — is now a regular finding in the threat data, not a one-off. Most SMEs do not think of their OT estate as part of the cybersecurity conversation because it is run by facilities or operations, not IT. That gap is the attack. The minimum sensible response is a network-segmentation review: physically or logically separate the OT network from the IT network, restrict inbound and outbound traffic to an explicit allow list, and make sure someone in the business is accountable for patching the OT kit on the manufacturer’s schedule.</p><h2>Credential abuse is still the easiest path in</h2><p>Phishing, password reuse and credential leaks remain the single largest attack vector in the data, ahead of every zero-day combined. For SMEs that means the boring stuff is still the most valuable: enforced multi-factor authentication on every account (including service accounts where technically possible), conditional access policies that challenge sign-ins from unusual locations or unmanaged devices, dark-web exposure monitoring for corporate credentials, and an annual review of who actually has admin rights. None of this is glamorous. All of it materially reduces the chance of being the next incident.</p><h2>What we change for our clients as a result</h2><ul><li>Tighten edge-device firmware management — automatic updates where possible, scheduled manual updates for the rest, with a written register of what is in production.</li><li>Add a quarterly review of OT/ICS segmentation into the standard managed-service cadence.</li><li>Expand phishing simulation and security-awareness training throughout the year, not as a single annual exercise.</li><li>Review credential exposure monthly for the executive team and any user with admin or finance authority.</li><li>Validate backup immutability and an actual restore against ransomware-grade scenarios, at least once a year, on every managed tenant.</li></ul><p>If you would like to see how this maps to your own environment, talk to us. We help SMEs across Hertfordshire, Bedfordshire and London translate global threat intelligence into a practical, prioritised to-do list — usually under a day’s work and without the need for a dedicated SOC.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/security.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>Fortinet</category>
    <category>Threat Intelligence</category>
    <category>Ransomware</category>
  </item>
  <item>
    <title>OpenText GroupWise vs Microsoft 365: an honest comparison for UK SMEs weighing a move</title>
    <link>https://axia.co.uk/news/opentext-groupwise-vs-microsoft-365-comparison</link>
    <guid isPermaLink="true">https://axia.co.uk/news/opentext-groupwise-vs-microsoft-365-comparison</guid>
    <pubDate>Mon, 22 Jun 2026 09:00:00 GMT</pubDate>
    <description>GroupWise and Microsoft 365 are both mature email and calendaring platforms that have been in market for decades. The case for moving to Microsoft 365 has got steadily stronger, but there are still a handful of scenarios where GroupWise is the right answer. Here is an honest, practical comparison.</description>
    <content:encoded><![CDATA[<p>GroupWise and Microsoft 365 are both mature, capable email and calendaring platforms that have been in market for decades. The question for most UK SMEs is no longer &quot;is the cloud better in theory&quot; — it is whether the operational, financial and security trade-offs of staying on-premise still make sense for their particular business. There is no universal answer; there is a small number of patterns where each platform is the right choice. This article is meant to make those patterns obvious.</p><h2>What you are actually comparing</h2><p>Both platforms deliver the four things every business depends on: reliable email, shared calendars, address books, and shared folders. GroupWise does it with a Post Office Agent on your own server, GWIA for SMTP, Web Access for browser clients and optional native clients. Microsoft 365 does the same four things but in the cloud, with Exchange Online, Outlook, the Office web apps and OneDrive. Power and feature parity is much closer than it used to be: GroupWise calendaring is solid, and Outlook plus Exchange Online still represents the gold standard that GroupWise is compared against.</p><h2>Cost and licensing</h2><p>GroupWise licensing is a one-off or annual subscription per concurrent user, with no per-mailbox cloud component. Beyond the licence you pay for the server you run it on, the storage it consumes, the backup infrastructure and the human time to keep it healthy. Microsoft 365 is the opposite: a monthly per-user licence that bundles Exchange, Teams, SharePoint, OneDrive, the Office apps and an increasingly large security stack. For an SME under fifty users GroupWise is usually cheaper; for an SME between one and three hundred users the comparison flips once you add the cost of running the on-premise estate properly. Above three hundred users Microsoft 365 wins on cost almost every time we model it.</p><h2>Security and compliance</h2><ul><li>Identity: Microsoft 365 is anchored on Entra ID with conditional access, MFA enforcement, identity protection and risk-based policies. GroupWise relies on the identity store you put in front of it, most commonly eDirectory, with whatever SSO bridge you have built.</li><li>Endpoint: Microsoft 365 Business Premium and E3/E5 ship with Defender for Business or Defender for Endpoint, Intune and the full Microsoft XDR loop. GroupWise is shielded only by whatever endpoint protection runs on the clients connecting to it.</li><li>Compliance: DLP, sensitivity labels, eDiscovery, customer key encryption and audit pipelines are first-class on Microsoft 365. The same capabilities on GroupWise require third-party tooling.</li><li>Insurance: most cyber-insurance questionnaires in 2026 assume cloud email with MFA and conditional access. Running GroupWise is not a deal-breaker, but it is increasingly a question you have to answer.</li><li>Data residency: GroupWise keeps data in your datacentre by construction. Microsoft 365 offers UK and EU data residency at the licence level. For some SMEs the on-premise story still wins on this one point alone.</li></ul><h2>Mobile, web and modern UX</h2><p>Outlook on mobile is the most polished email client on any platform, and the web app is the de facto standard against which everything else is judged. GroupWise Web Access is functional and has improved over the years, but it is nowhere near Outlook in fit and finish. Third-party GroupWise mobile clients exist and are competent, but they are not part of a unified Microsoft-style productivity surface. If your team works on phones and tablets for a significant part of the day, that gap matters.</p><h2>Ecosystem and integrations</h2><p>Microsoft 365 is the centre of gravity for the modern SME productivity stack: Teams for chat and meetings, SharePoint for intranets and document management, Power Automate for workflow, Power Apps for line-of-business tools, Graph API for custom integrations. GroupWise integrates with its own set of tools and a smaller ecosystem of third-party connectors. If your roadmap includes anything built on Microsoft Teams, Copilot, Graph-based integration with line-of-business systems, or modern identity governance, GroupWise will always be the limiting factor rather than the enabling one.</p><h2>The honest case for staying on GroupWise</h2><p>There genuinely is a case. If you are a small organisation with stable headcount, you already have the skills to run Linux, OES and GroupWise well, your data residency requirements genuinely demand on-premise, your internet connectivity is patchy enough that cloud email would be a real risk, and you have no appetite for the AI productivity features that Microsoft 365 is now bundling — GroupWise remains a sensible answer. The mistake is to stay for the wrong reason: because the migration feels expensive or scary, not because staying is genuinely the better choice. That is a decision that ages badly.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London design Microsoft 365 migrations that do not break the business, and we help the smaller number who choose to stay build a sensible lifecycle plan for GroupWise. If you are weighing the move, get in touch for a one-hour scoping conversation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/office365.webp" type="image/webp" length="0" />
    <category>Microsoft 365 &amp; Windows</category>
    <category>Microsoft 365</category>
    <category>GroupWise</category>
    <category>Email</category>
    <category>Migration</category>
  </item>
  <item>
    <title>Cyber insurance in 2026: what underwriters now require from UK SMEs</title>
    <link>https://axia.co.uk/news/cyber-insurance-2026-what-underwriters-now-require</link>
    <guid isPermaLink="true">https://axia.co.uk/news/cyber-insurance-2026-what-underwriters-now-require</guid>
    <pubDate>Mon, 15 Jun 2026 09:00:00 GMT</pubDate>
    <description>Cyber-insurance questionnaires have got a lot harder in the last two years. Here is what underwriters are actually asking, the answers that get cover renewed, and the controls that increasingly make the difference between a payout and a refusal.</description>
    <content:encoded><![CDATA[<p>If you have renewed a cyber-insurance policy in the last year, you will have noticed the questionnaire. It used to be twenty questions about backups and antivirus. It is now a comprehensive security audit that takes a competent IT team several days to answer properly, and the cover you get at the end depends significantly on what you put in it. The market has hardened, claims have grown, and underwriters now expect SMEs to operate to controls that would have looked enterprise-grade five years ago.</p><h2>What the questionnaire now asks</h2><ul><li>Evidence of multi-factor authentication on every account that can access email, file shares or administrative systems — including admin and break-glass accounts.</li><li>Endpoint detection and response (EDR) deployed across all in-scope devices, with central reporting and a named human or managed service accountable for alerts.</li><li>Tested, immutable backups with a documented recovery time objective for critical systems and an annual restore drill against a real workload.</li><li>An incident response plan that is written, rehearsed and contactable — including out-of-hours escalation and named decision-makers.</li><li>Security awareness training, with evidence of phishing simulations and refresher cadence.</li><li>Email security that goes beyond Microsoft’s defaults — DMARC, SPF and DKIM correctly configured, sandboxing on attachments and links.</li><li>Privileged Access Management: separated admin accounts, no standing domain admin, time-bound elevation.</li></ul><h2>The common reasons cover is reduced or refused</h2><p>The single biggest reason for a partial payout is inadequate MFA — typically an environment where MFA is &quot;available&quot; but not enforced, so a single compromised password is enough to walk into corporate data. The second biggest is an untested backup estate: insurers increasingly want evidence of a real restore, not just a backup report. The third is a missing or out-of-date incident response plan: at claim time, the insurer expects you to be able to produce it and to follow it. None of these are hard to fix in advance. All of them are expensive to be missing at claim time.</p><h2>Cyber Essentials — the cheap shortcut</h2><p>Most UK cyber insurers will accept a current Cyber Essentials (or Cyber Essentials Plus) certification as evidence of the baseline security controls. It does not waive the questionnaire, but it materially simplifies the answers and removes several of the trickier questions. For an SME that already has the certification, renewal is a paperwork exercise; for one that does not, it is a six-to-eight-week project. The economics almost always work out in favour of getting certified first.</p><h2>What we recommend ahead of a renewal</h2><ul><li>1. Pull last year’s renewal questionnaire and the answers you submitted. Treat it as the working list of controls to evidence this year.</li><li>2. Run a gap review against the controls above. Where there are gaps, prioritise the ones that affect cover terms first — MFA enforcement, tested backups, EDR with central reporting.</li><li>3. Get Cyber Essentials certified if you are not already. The badge is the cheapest evidence an insurer will accept for the baseline questions.</li><li>4. Test a real backup restore against a critical system in the 90 days before renewal. The restore report is the single most useful artefact for the questionnaire.</li><li>5. Document the incident response plan in one page. Print it. Rehearse it once. The insurer will not read the plan unless there is a claim, but they will read whether you have one.</li></ul><h2>The pricing reality</h2><p>Premiums for SME cyber cover rose sharply through 2023 and 2024 and have stabilised at a higher level since. The SMEs seeing flat or reducing premiums at renewal are the ones with the best questionnaire answers — particularly MFA, tested backups, EDR and a current Cyber Essentials badge. For everyone else, premium increases have been significant and excesses larger. The path to better cover at renewal is the same path as better security in general: stop relying on hope.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London prepare for cyber-insurance renewals — both as a one-off gap-review project and as an ongoing managed service. If your renewal is inside the next six months and you would like a free gap review, get in touch.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/security.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>Cyber Insurance</category>
    <category>Compliance</category>
    <category>Risk</category>
  </item>
  <item>
    <title>OpenText GroupWise explained: what it is, where it came from, and why UK SMEs still run it</title>
    <link>https://axia.co.uk/news/opentext-groupwise-explained-uk-sme-overview</link>
    <guid isPermaLink="true">https://axia.co.uk/news/opentext-groupwise-explained-uk-sme-overview</guid>
    <pubDate>Thu, 04 Jun 2026 09:00:00 GMT</pubDate>
    <description>OpenText GroupWise has been &quot;about to be retired&quot; for at least a decade, and yet it keeps shipping quarterly releases. Here is what the platform actually is in 2026, how it ended up at OpenText, and why a meaningful number of UK SMEs still choose to keep it running.</description>
    <content:encoded><![CDATA[<p>OpenText GroupWise is the long-running email, calendar and collaboration platform that started life as Novell GroupWise in the early 1990s. After a chain of ownership changes — Attachmate, then Micro Focus, then OpenText, which acquired Micro Focus in 2023 — it is still in active development. The current quarterly release is version 24.3, with 24.4 close behind, and version 23.4 sitting on the long-term support (LTS) track. For UK SMEs that still run GroupWise in 2026, the platform is alive, supported and not being turned off any time soon.</p><h2>What GroupWise actually is</h2><p>At its core GroupWise is a messaging system: email, calendar, contacts, tasks and shared folders, served by a Post Office Agent, a gateway (GWIA) for SMTP, and a Web Access component for browser clients. It runs on Linux or Windows, traditionally on top of Novell Open Enterprise Server (now OpenText eDirectory), and it holds its own against Exchange and its cloud successors on the basics — reliable email delivery, sensible calendaring, long-term on-premise stability and no per-seat cloud bill. The platform is mature, well-documented and considerably less resource-hungry than the cloud equivalents for organisations that already have the skills to run it.</p><h2>A short history</h2><ul><li>1990s: Novell GroupWise launches as a companion to NetWare and Novell Directory Services (NDS). Becomes the default workgroup system across thousands of education, government and mid-market sites.</li><li>2011: Attachmate acquires Novell. GroupWise continues as a core Attachmate product line.</li><li>2014: Micro Focus acquires Attachmate. The Novell heritage, including GroupWise, becomes part of Micro Focus.</li><li>2023: OpenText acquires Micro Focus. GroupWise lands inside the OpenText Content Cloud portfolio alongside Information Management, Cybersecurity and other enterprise lines.</li><li>Today: OpenText runs both a quarterly release track (currently 24.3, with 24.4 in late-cycle) and a long-term support track (currently 23.4 LTS), with security updates and bug fixes published on a published cadence.</li></ul><h2>Where GroupWise still makes sense</h2><p>Despite the gravitational pull of Microsoft 365 and Google Workspace, there are still scenarios where GroupWise is the sensible answer. Schools and colleges that have run NetWare or OES for two decades often keep GroupWise because of existing directory structure, predictable cost, and the ability to host it on hardware they already own. Small legal and accounting firms with poor internet connections value the on-premise model because email keeps working when the WAN does not. Government and defence-adjacent sites with strict data-residency rules use GroupWise because the data stays inside their own datacentre. None of these are particularly fashionable reasons to choose a platform, but they are real reasons and they keep showing up in actual buying decisions.</p><h2>Where it shows its age</h2><p>The honest list of weaknesses: the native GroupWise Windows client is no longer the default for most users, who now use the Web Access interface or third-party clients. Mobile clients have improved over the years but they are still behind Outlook and Gmail in polish and reliability. The integration story with modern SaaS — SSO providers, SIEM tools, conditional access, modern MFA — is workable but not first-class. If your business is buying AI features, browser-based productivity suites and SaaS integrations in 2026, GroupWise will be forever in catch-up mode. For most SMEs the question is therefore not &quot;is GroupWise good?&quot; — it is &quot;for how much longer is on-premise messaging the right shape for us?&quot;</p><h2>What to do if you still run it</h2><ul><li>Get onto a supported release. Running 18.x or earlier is the single biggest risk we see on GroupWise estates today.</li><li>Decide deliberately between the LTS track (23.4) and the quarterly track. LTS trades newer features for longer patch windows and fewer mandatory upgrades.</li><li>Sort out identity. If your GroupWise still authenticates against an old eDirectory tree that no-one understands, that is your single biggest operational risk.</li><li>Document the disaster-recovery story. Most ageing GroupWise estates we visit have a backup that has not been restored in five years and a recovery time that nobody has actually measured.</li><li>Have a written migration plan, even if you do not act on it. Knowing how you would move off, and roughly what it would cost, is the difference between a deliberate decision and a forced one.</li></ul><p>OpenText is committed to the product and the roadmap is active, but no on-premise messaging platform is a permanent decision in 2026. If you would like an independent review of where your GroupWise estate sits on that lifecycle, get in touch for a short, practical conversation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/voip.webp" type="image/webp" length="0" />
    <category>IT Strategy</category>
    <category>GroupWise</category>
    <category>OpenText</category>
    <category>Email</category>
  </item>
  <item>
    <title>Zero trust for SMEs: cutting through the vendor marketing</title>
    <link>https://axia.co.uk/news/zero-trust-for-smes-cutting-through-the-marketing</link>
    <guid isPermaLink="true">https://axia.co.uk/news/zero-trust-for-smes-cutting-through-the-marketing</guid>
    <pubDate>Wed, 22 Apr 2026 09:00:00 GMT</pubDate>
    <description>Zero trust is the most over-marketed idea in cyber security right now and also the most genuinely useful. Here is the plain-English version for an SME that does not have a CISO, the controls that pay for themselves first, and the ones you can safely ignore until next year.</description>
    <content:encoded><![CDATA[<p>Every security vendor in 2026 has &quot;zero trust&quot; on the homepage. Most of what they are selling is sensible networking technology that has been rebranded for a buzzword. Underneath the marketing though, zero trust as a way of thinking is genuinely useful — and most SMEs are already doing half of it without realising. The point of this article is to cut through the noise and tell you which of the controls are worth doing now, which can wait, and which are honestly just expensive wallpaper.</p><h2>Zero trust in one sentence</h2><p>Stop trusting the network. Trust the identity, the device, the application and the context of every request — and verify them on every attempt, not just at sign-in. That is the whole idea. Everything a vendor sells under the zero trust label is some combination of those four checks applied to a specific part of the environment.</p><h2>The five controls worth doing first</h2><ul><li>Multi-factor authentication on every account, enforced — not optional, not just for admins, but every human and every account that touches production data.</li><li>Conditional access: challenge sign-ins from unmanaged devices, unusual geographies or impossible travel patterns; block legacy authentication outright.</li><li>Device compliance as a hard gate: only Intune- or equivalent-managed devices that meet the patch, encryption and endpoint protection bar can access company data.</li><li>Network segmentation: stop trusting the corporate Wi-Fi as if it were the company. Segment by function and restrict east-west traffic between segments with explicit allow lists.</li><li>Application-level access controls: prefer SaaS apps that support per-app conditional access over VPN tunnels into the corporate network.</li></ul><h2>The controls you can safely defer</h2><p>A full microsegmentation project, a next-generation access broker for every legacy line-of-business app, a software-defined perimeter overlay — these are real zero trust building blocks but they are also large projects. For an SME without a security team, the right sequencing is: do the low-cost identity and device controls above well, then look at the bigger network and application-layer work when there is budget and a clear scope. None of the enterprise-grade zero trust architecture matters if the basics are not enforced.</p><h2>What zero trust typically saves you</h2><p>For SMEs that genuinely implement the five controls above, the practical benefits are concrete: simpler offboarding (revoke the identity and access follows), cleaner BYOD policy (managed apps only on personal devices, no corporate data ever stored locally), removal of the need for a traditional VPN in most cases, and a much better answer to the cyber-insurance questionnaire. The controls also produce real telemetry — sign-in risk, device compliance, conditional-access denials — that you can use to investigate incidents without paying for a separate SIEM.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London design and deploy zero trust in a staged, right-sized way. If you would like a one-hour session to look at where you are now and what the realistic next six months look like, get in touch.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/infrastructure.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>Fortinet</category>
    <category>Zero Trust</category>
    <category>Network Security</category>
  </item>
  <item>
    <title>Passkeys and passwordless sign-in for UK SMEs: where we are in 2026</title>
    <link>https://axia.co.uk/news/passkeys-and-passwordless-sign-in-for-uk-smes</link>
    <guid isPermaLink="true">https://axia.co.uk/news/passkeys-and-passwordless-sign-in-for-uk-smes</guid>
    <pubDate>Mon, 09 Mar 2026 09:00:00 GMT</pubDate>
    <description>Passwordless and passkeys have moved from &quot;interesting&quot; to &quot;expected&quot; in the last 18 months. Here is what the technology actually is, what it replaces, and how SMEs should approach it without breaking existing workflows.</description>
    <content:encoded><![CDATA[<p>Two years ago, passkeys were a curiosity. In 2026 they are quietly becoming the default: Microsoft, Google and Apple have converged on FIDO2 / WebAuthn standards, the major browsers handle them natively, and most modern phones, laptops and security keys can act as a passkey device. For SMEs deciding what to do next, the question is no longer whether to adopt passwordless, but which approach to take in what order.</p><h2>What a passkey actually is</h2><p>A passkey is a cryptographic credential stored on a device — your phone, laptop or a hardware security key — that authenticates you to a website or app using the same standard as a physical security key. There is no password to type, no second factor prompt to approve, and the credential is phishing-resistant by design: it will only authenticate against the genuine site, never a fake one.</p><h2>The three flavours of passwordless an SME will meet</h2><ul><li>Microsoft passwordless sign-in via the Authenticator app — the entry point most SMEs will use first. Number-matching prompt replaces the password, with the phone as the second factor. Easy to deploy; no extra hardware.</li><li>FIDO2 security keys (YubiKey, Feitian and equivalents) — a small USB-A, USB-C or NFC key that registers with the identity provider and authenticates on tap. Phishing-resistant by design. Recommended for admins, executives and anyone handling payments.</li><li>Platform passkeys stored in iCloud Keychain, Google Password Manager or Windows Hello — the most user-friendly experience, increasingly the default for third-party SaaS applications.</li></ul><h2>What it replaces in your estate</h2><p>Passkeys replace the password, not MFA. The passkey itself is already two factors. For most users this means the daily sign-in prompt becomes a fingerprint or a tap on a security key, with no password to forget and no second prompt to approve. The fall-back — what happens when the user has lost their phone — still has to be designed, but in practice it is rarely needed because the credentials are synced across the user’s own devices.</p><h2>Practical advice for getting started</h2><ul><li>1. Roll out Microsoft Authenticator passwordless to general users first. It needs no hardware and removes the weakest factor (the password) from the daily sign-in.</li><li>2. Issue FIDO2 security keys to admins, executives and any user with payment authorisation. This is the smallest population with the highest target value.</li><li>3. Make platform passkeys the default for new third-party SaaS applications you adopt. Most modern providers now offer passkey sign-in alongside traditional passwords.</li><li>4. Keep a recoverable account (a managed password, in a vault, with brief time-limited access) as a last-resort fallback for break-glass scenarios. Test it once a year.</li><li>5. Monitor sign-in telemetry for users still relying on passwords, and gently migrate them away.</li></ul><h2>The honest limits</h2><p>Some legacy applications do not support passkeys. For most SMEs these are now the minority, but they exist — old VPNs, line-of-business apps written ten years ago, and a handful of legacy cloud services. The right answer is usually to replace them; the next-best answer is to wrap them in conditional access with compensating controls. There is no scenario in which a shared or weak password on a legacy app should remain the only defence.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London deploy passwordless sign-in in a way that genuinely improves the workday, not just the policy document. If you would like a scoping conversation, get in touch.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/security.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>Identity</category>
    <category>MFA</category>
    <category>Cyber Essentials</category>
  </item>
  <item>
    <title>OT and ICS security: why your factory floor is now part of your SME attack surface</title>
    <link>https://axia.co.uk/news/ot-and-ics-cyber-security-for-uk-smes</link>
    <guid isPermaLink="true">https://axia.co.uk/news/ot-and-ics-cyber-security-for-uk-smes</guid>
    <pubDate>Wed, 11 Feb 2026 09:00:00 GMT</pubDate>
    <description>Operational technology used to be invisible to IT. That is no longer safe: OT is internet-connected, it runs outdated software, and it increasingly shares networks with the IT estate that attackers already know how to compromise. Here is the practical segmentation and patching story for UK SMEs that own any kind of operational kit.</description>
    <content:encoded><![CDATA[<p>If your business operates anything physical — manufacturing lines, warehouse automation, refrigeration plants, lifts, building management, even commercial kitchens or laboratory equipment — the odds are that you have an operational technology (OT) estate that is now connected to the network in some way. For most SMEs that OT estate has been quietly added to over the last decade, often by the equipment vendor during commissioning, with little thought given to ongoing cyber security. The good news is that most of the risks can be reduced substantially without replacing any of the kit.</p><h2>What &quot;OT&quot; actually means in an SME</h2><p>Operational technology covers the dedicated hardware and software that monitors or controls physical processes: PLCs, SCADA systems, HMIs, building management systems, industrial sensors, modern refrigeration and HVAC controllers, IP cameras, badge-access systems and similar. It excludes the general-purpose IT estate (laptops, servers, networks) that runs the office, even though they share physical cabling and increasingly share IP networks too. The reason this distinction matters is that OT kit has different priorities: availability usually trumps confidentiality, downtime costs money per minute, and many devices cannot be patched because the vendor controls firmware and the upgrade window is constrained.</p><h2>The threat has changed</h2><p>Five years ago the realistic threat to OT for an SME was almost zero. The kit was isolated, the threat actors were focused on financial services and government, and most OT incidents involved accidental disruption rather than malicious actors. That has changed. Ransomware crews routinely attack manufacturing and logistics targets because downtime translates directly into ransom leverage. Nation-state groups have pre-positioned tooling in critical-infrastructure OT for geopolitical reasons. Insurance claims for OT incidents have grown noticeably year on year. The threat is real, it is here, and it disproportionately affects organisations that have not done the basic hygiene work.</p><h2>Sensible segmentation and access controls</h2><ul><li>Physically or logically separate the OT network from the IT network. At minimum, route between them through a stateful inspection firewall with an explicit allow list of permitted traffic.</li><li>Document every device on the OT network: what it is, what firmware it runs, who supports it, what its patching cadence is, who to call if it fails.</li><li>Restrict outbound internet access from OT devices. The vast majority of OT kit does not need the internet at all; if it does (for vendor telemetry, for example), allow only the specific destinations the vendor specifies.</li><li>Replace shared and default administrator credentials on every OT device. Most come with vendor-default credentials documented in the manual.</li><li>Establish a written change-control process for anything that crosses the IT/OT boundary — a new HMI, an external vendor who needs remote access, an edge analytics box that needs to read PLC data.</li></ul><h2>Patching in an environment where downtime is costly</h2><p>OT vendors often test firmware updates for months before recommending them, and applying them frequently requires a planned maintenance window. That is fine — the discipline is to schedule those windows, not to skip them forever. Build a rolling OT patch register that records what was reviewed, when it was applied, and any deliberate deferrals with a reason. For devices that genuinely cannot be patched (because the vendor has gone out of business, for example), the answer is compensating controls: tighter segmentation, stricter firewall rules, more frequent vulnerability scans, and a written decision to accept the residual risk signed off by someone senior.</p><h2>When to bring in a specialist</h2><p>If your OT estate is large, regulated or genuinely safety-critical — pharmaceutical, food production, water, any environment with HSE implications — bring in an OT cyber specialist for at least a first review. For most smaller SMEs a competent IT partner, working from a sensible segmentation and asset-register template, can get you 80% of the way without the cost of a specialist engagement. The right conversation to have first is always &quot;what is the worst that happens if this stops working for 24 hours&quot; — the answer drives both the budget and the urgency.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London bring their OT estate into the same risk-managed conversation as the rest of their IT. If you have recently added any new connected equipment, or if you have never audited what is sitting on the OT network, get in touch for a one-day review.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/network.jpg" type="image/jpeg" length="0" />
    <category>Cyber Security</category>
    <category>Fortinet</category>
    <category>OT Security</category>
    <category>Network Segmentation</category>
  </item>
  <item>
    <title>The cyber skills gap is getting wider: what UK SMEs can actually do about it</title>
    <link>https://axia.co.uk/news/fortinet-cyber-skills-gap-for-uk-smes</link>
    <guid isPermaLink="true">https://axia.co.uk/news/fortinet-cyber-skills-gap-for-uk-smes</guid>
    <pubDate>Tue, 09 Dec 2025 09:00:00 GMT</pubDate>
    <description>Fortinet has been publishing a global skills-gap survey for several years and the headline keeps moving in the wrong direction. For UK SMEs that cannot hire a dedicated security engineer, the practical question is not how to find one — it is how to get the same outcome without one.</description>
    <content:encoded><![CDATA[<p>The Fortinet global cyber skills-gap report has been telling the same uncomfortable story for several years: demand for skilled cyber professionals continues to outrun supply, vacancies are taking longer to fill, and the people who are available command senior salaries that most SMEs cannot justify for a single full-time hire. The numbers vary slightly year to year but the direction is consistent. For a 20-person SME in Hertfordshire the practical question is rarely &quot;how do we recruit a CISO&quot; — it is &quot;how do we get the security outcome we need without one&quot;.</p><h2>Why the gap is structural, not cyclical</h2><p>The shortfall is not a temporary blip. The volume of regulatory and contractual pressure on SMEs has grown faster than the training pipeline can produce qualified people. Public-sector tenders increasingly require Cyber Essentials Plus, insurance questionnaires expect EDR and tested backups, large customers demand evidence of supplier security from their smaller suppliers. Meanwhile the university and apprenticeship pipeline produces a fraction of the graduates the industry needs. Even businesses with budget to hire often wait six to nine months for an experienced candidate and frequently settle for someone less senior than the role requires.</p><h2>The four roles an SME actually needs</h2><p>When we map the work to be done, an SME that wants to take security seriously needs four distinct skill sets: an identity and access person who can run Microsoft 365 or Google Workspace properly, including conditional access, MFA enforcement and policy hygiene; a network person who can segment the estate, manage firewalls and VPNs, and keep firmware current; an endpoint person who can deploy EDR, manage patching and respond to alerts; and an incident-response lead who knows what to do when something goes wrong. In a small team, that is four roles compressed into one or two people, often with neither the time nor the specialism to do any of them well.</p><h2>Outcomes versus hires</h2><ul><li>Managed identity: a partner that owns your Microsoft 365 or Google tenant end-to-end, including policy, licensing, conditional access, joiners and leavers.</li><li>Managed network: a partner that owns the firewall, switching and Wi-Fi estate with a documented configuration standard and quarterly review.</li><li>Managed endpoint: a partner that owns EDR deployment, patch management and the alert response process, with named humans accountable for triage.</li><li>Managed response: a partner that holds the incident response plan, rehearses it with you annually, and is the first call when something goes wrong.</li></ul><p>Each of these is a fraction of the cost of an equivalent in-house hire and bundled into a single monthly invoice. For an SME the result is coverage across all four skill areas from day one, with predictable cost and no recruiting risk. The genuine tradeoff is that you do not own the knowledge internally — if you ever want to bring it back in-house, plan a deliberate handover period rather than ending the managed contract cold.</p><h2>What still has to live inside the business</h2><p>Even with full managed coverage, three things still need an owner inside the business: an executive sponsor who signs off on policy and has authority at incident time, a primary contact who can make fast decisions about access, communications and business interruption, and a culture of cyber awareness that is not outsourced. Training, phishing simulations, clean-desk policy and clear reporting lines for anything suspicious all need to live with the people, not with the partner. The partner provides the technical capability; the business provides the culture in which it gets used.</p><p>We provide managed security services to SMEs across Hertfordshire, Bedfordshire and London — including a fully managed SOC adjacent service for businesses that want outcomes without the hiring problem. If you would like to compare the cost of an in-house security hire with fully managed coverage, get in touch for a short scoping conversation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/it-support.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>Fortinet</category>
    <category>Cyber Skills</category>
    <category>Managed Security</category>
  </item>
  <item>
    <title>Microsoft Intune for SMEs: how to actually deploy it (without overwhelming the team)</title>
    <link>https://axia.co.uk/news/microsoft-intune-for-smes-practical-guide</link>
    <guid isPermaLink="true">https://axia.co.uk/news/microsoft-intune-for-smes-practical-guide</guid>
    <pubDate>Tue, 18 Nov 2025 09:00:00 GMT</pubDate>
    <description>Intune is the device management backbone of Microsoft 365 Business Premium, but most SMEs underuse it — or turn it on in a way that breaks trust with the business. Here is the practical deployment we run.</description>
    <content:encoded><![CDATA[<p>Microsoft Intune ships with most Microsoft 365 Business Premium and E3/E5 licences, which means an enormous number of SMEs are already paying for it without using it properly. The ones that do use it well have a noticeably calmer security story: devices that self-configure on day one, settings that travel with the user, and a place to actually enforce the security standards that Cyber Essentials expects. The ones that turn it on badly end up with users locked out at 09:00 on a Monday and a service desk that dreads the word &quot;Intune&quot;.</p><h2>What Intune is actually for</h2><p>Intune is Microsoft 365’s cloud-native mobile device management (MDM) and mobile application management (MAM) platform. It is the place where an SME’s standard build lives — the Win32 and Microsoft Store apps a workstation should have, the policies a device must comply with, the certificate and Wi-Fi profiles users should pick up automatically. Done well, you can wipe, redeploy or lock a device from a single console; done badly, you can do exactly that to a user at the worst moment.</p><h2>The five configuration areas to set up first</h2><ul><li>Windows device configuration — BitLocker, Windows Hello for Business, firewall, SmartScreen, account and lock-screen policies. One profile, applied to all corporate Windows devices.</li><li>Compliance policies — the rules a device must meet to access corporate data. Use this to gate Exchange and SharePoint access from non-managed devices.</li><li>App deployment — the standard Office, Edge, Teams and line-of-business apps. Required apps deployed automatically; optional apps available in the Company Portal.</li><li>Autopilot — for new device provisioning. The user receives a laptop, signs in, and emerges minutes later with a fully configured standard build.</li><li>Conditional access — the bridge between Intune and Microsoft Entra ID. Compliance status from Intune drives access decisions in real time.</li></ul><h2>Where SMEs typically go wrong</h2><p>The two failure modes we see most often are opposite ends of the same spectrum. At one end, an over-keen IT team turns on every knob on day one and locks half the company out — restricted store access, mandatory reboots during the working day, passwordless sign-in rolled out before the helpdesk is ready. At the other end, Intune is enrolled but never enforced, so devices show &quot;compliant&quot; by default and the platform never actually protects anything. The right answer sits in the middle and is rolled out in deliberate phases.</p><h2>A realistic 6-week rollout</h2><ul><li>Week 1 — discovery and policy design. Audit the existing estate, agree the compliance baseline, document the standard build.</li><li>Week 2 — pilot tenants. Build the configuration profiles in a ring, test on a small group of friendly devices, iterate on what breaks.</li><li>Week 3 — pilot users. Enrol twenty or thirty real users from a friendly department. Measure time to set up a new laptop; measure helpdesk tickets.</li><li>Week 4 — staged rollout, department by department. Communicate the change in advance, with clear fall-back to the old support path.</li><li>Week 5 — tightening. Move from audit to enforce on the policies that proved safe. Expand to BYOD if required.</li><li>Week 6 — operational handover. Document the runbooks, hand them to the service desk, and schedule a tune-up review in three months.</li></ul><h2>The ROI of doing it properly</h2><p>Intune done well pays back in three places you can measure. First, time to set up a new laptop drops from half a day of engineer time to zero — Autopilot ships the standard build direct to the user. Second, security incidents drop, because the standard build includes the policies that block the common attacks. Third, Cyber Essentials and cyber-insurance questionnaires go from a half-day scramble to a green tick on the form. For an SME that has already paid for the licence through Business Premium, those are the gains that justify the project.</p><p>We deploy Intune for SMEs across Hertfordshire, Bedfordshire and London, typically sized to deliver measurable payback within the first quarter. If you have Intune licences but no clear policy, talk to us about a focused deployment engagement.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/it-support.webp" type="image/webp" length="0" />
    <category>Microsoft 365 &amp; Windows</category>
    <category>Intune</category>
    <category>Microsoft 365</category>
    <category>Endpoint Security</category>
  </item>
  <item>
    <title>Windows 11 deployment checklist for UK SMEs</title>
    <link>https://axia.co.uk/news/windows-11-deployment-checklist-uk-smes</link>
    <guid isPermaLink="true">https://axia.co.uk/news/windows-11-deployment-checklist-uk-smes</guid>
    <pubDate>Thu, 04 Sep 2025 09:00:00 GMT</pubDate>
    <description>Upgrading to Windows 11 is more than a version bump — done well, it is an opportunity to tighten security defaults and remove years of drift. Here is the deployment checklist we use with every SME migration.</description>
    <content:encoded><![CDATA[<p>For most SMEs, the move to Windows 11 is not really about new features. It is the moment to clear out years of accumulated exceptions, retire the last handful of Windows 10 laptops, and replace ad-hoc local admin rights with properly managed devices. Done as a copy-the-old-build exercise, it wastes the opportunity. Done deliberately, it is the cheapest security uplift an SME will get all year.</p><h2>Phase 1 — audit before you migrate</h2><ul><li>Inventory every Windows device: model, CPU, TPM version, BIOS version and current OS build. Anything below an 8th-generation Intel / Zen 2 AMD will not pass Windows 11.</li><li>List every line-of-business application and call out the ones still running on Windows 7 or Windows 8 assumptions. These are the projects the migration will uncover.</li><li>Identify the devices you intend to redeploy versus replace. Refresh budget should be planned alongside the migration, not after it.</li><li>Capture the security baseline you want to land on: BitLocker on every disk, Defender with EDR enabled, Intune-enrolled, Standard user accounts as the default.</li></ul><h2>Phase 2 — choose your deployment method</h2><p>For most SMEs, Microsoft Intune with Windows Autopilot is the right answer. New devices ship from the supplier to the user, the user signs in with their work account, and Autopilot applies the standard build — apps, policies, BitLocker key escrow, Defender onboarding — without an engineer ever touching the device. Re-deployments of existing in-house devices go through a wiped-and-rebuilt Autopilot flow as well, which guarantees the standard build and removes years of accumulated drift.</p><h2>Phase 3 — standard build, not bespoke</h2><ul><li>A single Intune device configuration profile covering BitLocker, Windows Hello, firewall, SmartScreen and account configuration.</li><li>A single compliance policy that a device must meet before it can sync email or access SharePoint. No compliance, no corporate data.</li><li>A standard user account by default — no local admins except a controlled break-glass group.</li><li>Edge as the default browser, with SmartScreen and the Defender Application Guard enabled.</li><li>Conditional access that blocks sign-ins from non-compliant devices, even with valid credentials.</li></ul><h2>Phase 4 — pilot then sequence</h2><p>Pilot with a friendly team — typically IT first, then a small department that does simple work. Catch application compatibility problems before they hit finance or production. Sequence the rest of the business by risk: low-risk users first, customer-facing and regulated roles last. Communicate the sequence with dates, not vague windows. People appreciate knowing when their laptop will be touched.</p><h2>Phase 5 — decommission the Windows 10 estate</h2><p>Once a team is on Windows 11, retire the old Windows 10 hardware immediately. Devices that sit on a shelf &quot;just in case&quot; become the next ransomware foothold. Wipe the disks, remove from Intune, recycle through a certified IT asset disposal partner. Capture the asset register update for insurance and accounting.</p><p>We help SMEs across Hertfordshire, Bedfordshire and London plan and execute Windows 11 migrations using Intune and Autopilot, typically completing a 50-seat rollout in 6 to 10 weeks including training. If your Windows 10 deadline is approaching and you would like a free audit and costed plan, get in touch.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/it-support.webp" type="image/webp" length="0" />
    <category>Microsoft 365 &amp; Windows</category>
    <category>Windows 11</category>
    <category>Cyber Essentials</category>
    <category>Intune</category>
  </item>
  <item>
    <title>Windows 10 end-of-support: what UK SMEs need to do before October 2025</title>
    <link>https://axia.co.uk/news/windows-10-end-of-support-uk-sme-guide</link>
    <guid isPermaLink="true">https://axia.co.uk/news/windows-10-end-of-support-uk-sme-guide</guid>
    <pubDate>Thu, 12 Jun 2025 09:00:00 GMT</pubDate>
    <description>Microsoft ends free support for Windows 10 on 14 October 2025. Here is what that actually means for your business, your devices and your cyber insurance — and the practical migration plan we use with clients.</description>
    <content:encoded><![CDATA[<p>On 14 October 2025, Microsoft stops issuing free security updates and technical support for Windows 10. Your existing Windows 10 PCs will keep working the next morning — but every new vulnerability discovered from that day onwards will go unpatched on those devices unless you pay for Extended Security Updates. For an SME, that is not a theoretical risk: it is the kind of thing that quietly invalidates cyber insurance and fails Cyber Essentials.</p><h2>What actually changes on 14 October 2025</h2><ul><li>No more free security updates from Microsoft for Windows 10 Home, Pro, Enterprise or Education.</li><li>No more free technical support from Microsoft for Windows 10 issues.</li><li>No more feature updates — Windows 10 is essentially frozen.</li><li>Cyber Essentials requires all in-scope software to be in-support. Out-of-support Windows 10 will fail certification.</li><li>Most cyber-insurance policies require supported, patched operating systems. Running out-of-support Windows 10 can void cover at claim time.</li></ul><h2>Your three options</h2><p>Option one is upgrade in place: if the device meets Windows 11 hardware requirements (TPM 2.0, supported CPU, 4 GB RAM minimum, 64 GB storage), you can move it to Windows 11 for free. About 70 to 80 percent of business-grade laptops bought in the last four years qualify. Option two is replace the hardware: any device that does not qualify either gets retired or replaced with a Windows 11 device. Option three is buy Extended Security Updates from Microsoft, at a price that doubles each year — sensible as a short-term bridge for a few stragglers, expensive as a long-term plan.</p><h2>The migration plan we use with clients</h2><ul><li>Audit every Windows 10 device against the Windows 11 hardware requirements (we use Microsoft Endpoint Manager or a free script).</li><li>Sort into three buckets: upgradeable now, replace within budget cycle, retire.</li><li>Stage upgrades by team and risk — start with low-risk users to validate driver and application compatibility.</li><li>Plan replacement purchases against your existing refresh budget so this is not a surprise cost.</li><li>Use the migration as an excuse to tidy up Intune / autopilot, conditional access and standard build images.</li></ul><p>Most SMEs we work with can complete the migration in 8 to 12 weeks of calm planning. The ones that leave it until September will be paying premium prices for hardware and rushing the rollout. If you want a free Windows 10 audit and a costed migration plan, get in touch.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/it-support.webp" type="image/webp" length="0" />
    <category>Microsoft 365 &amp; Windows</category>
    <category>Windows 11</category>
    <category>Cyber Essentials</category>
  </item>
  <item>
    <title>Microsoft 365 Business Premium vs Business Standard vs E3: which licence is right for your SME?</title>
    <link>https://axia.co.uk/news/microsoft-365-business-premium-vs-standard-vs-e3</link>
    <guid isPermaLink="true">https://axia.co.uk/news/microsoft-365-business-premium-vs-standard-vs-e3</guid>
    <pubDate>Wed, 28 May 2025 09:00:00 GMT</pubDate>
    <description>The wrong Microsoft 365 licence costs you either money or capability. Here is a plain-English comparison of Business Standard, Business Premium and E3 — and how we help SMEs pick.</description>
    <content:encoded><![CDATA[<p>Most Microsoft 365 licensing decisions are made under time pressure, by reading a feature-comparison table that runs to 200 rows. The result is predictable: SMEs end up either over-licensed (paying for capability they will never use) or under-licensed (missing security and compliance features they actually need). Here is the version of the decision that we walk clients through.</p><h2>Business Standard — the productivity baseline</h2><p>Business Standard gives every user the full desktop and web apps (Outlook, Word, Excel, PowerPoint, Teams, SharePoint, OneDrive, Exchange Online). It does not include any meaningful security or device management. For a small team that uses cloud email, Teams and shared SharePoint sites — and is comfortable accepting baseline Microsoft security — this is the right starting point. Capped at 300 users.</p><h2>Business Premium — the SME sweet spot</h2><p>Business Premium is what most of our clients land on. It bundles everything in Business Standard plus the security and device-management features SMEs genuinely need: Microsoft Defender for Business (EDR), Intune (device management), conditional access via Entra ID P1, data loss prevention, sensitivity labels, and the Windows 11 Pro to Enterprise upgrade. For Cyber Essentials and most cyber-insurance requirements, Business Premium is the cheapest licence that covers you out of the box. Also capped at 300 users.</p><h2>Enterprise E3 — when you outgrow Business Premium</h2><p>E3 is the right answer when you exceed 300 users, when you have specialist compliance requirements (eDiscovery, advanced auditing, customer key management), or when you need unlimited archive mailbox storage. It does not include Defender for Business — you add Defender for Endpoint Plan 1 or 2 separately. For SMEs under 300 users, E3 is almost always more expensive than Business Premium for less SME-focused security.</p><h2>The decision in one paragraph</h2><p>Under 300 users and want a productivity-only setup? Business Standard. Under 300 users and want Cyber Essentials–ready security included? Business Premium. Over 300 users or need specialist compliance? E3 with the right Defender add-on. We help SMEs across Hertfordshire, Bedfordshire and London size their tenancy correctly — including catching the common mistake of paying for Business Premium and not enabling half of what it includes.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/office365.webp" type="image/webp" length="0" />
    <category>Microsoft 365 &amp; Windows</category>
    <category>Microsoft 365</category>
    <category>Licensing</category>
  </item>
  <item>
    <title>Microsoft Teams Phone vs traditional VoIP: which is right for your business?</title>
    <link>https://axia.co.uk/news/microsoft-teams-phone-vs-traditional-voip</link>
    <guid isPermaLink="true">https://axia.co.uk/news/microsoft-teams-phone-vs-traditional-voip</guid>
    <pubDate>Thu, 08 May 2025 09:00:00 GMT</pubDate>
    <description>Should you move your phone system into Microsoft Teams or keep a dedicated hosted VoIP platform? Here is the honest comparison — and where each one wins.</description>
    <content:encoded><![CDATA[<p>With the UK PSTN switch-off well underway, every business eventually has to move off an ISDN or analogue phone line and onto a modern cloud-based system. The question almost every SME asks us is: do we use Microsoft Teams as our phone system, or do we keep a dedicated hosted VoIP platform alongside it? Both work. They are good at different things.</p><h2>Where Microsoft Teams Phone wins</h2><p>If your team already lives in Microsoft Teams for chat and meetings, adding Teams Phone means one app, one identity and one set of admin tools. Calls follow the user across desk, laptop and mobile. Voicemail goes to Outlook. Call recording sits in OneDrive. For office-based knowledge workers, the experience is unbeatable and the admin overhead is tiny.</p><h2>Where dedicated hosted VoIP wins</h2><p>If you have a busy reception, a sales floor, a contact centre, or any team that handles high call volume, a purpose-built VoIP platform usually beats Teams. The wallboards are better, the call-flow editors are more flexible, and supervisor features (whisper, barge, real-time queue stats) are built for the job. The hardware story is also stronger — most decent IP phones, headsets and DECT systems are designed VoIP-first, with Teams support as a secondary path.</p><h2>The hybrid pattern we see most often</h2><ul><li>Knowledge workers on Microsoft Teams Phone — one app, follow-me calling, voicemail in Outlook.</li><li>Reception, sales and support on a dedicated VoIP platform integrated with Teams presence.</li><li>A single externally published number, intelligently routed to the right system.</li><li>One UK invoice covering both platforms, with consolidated reporting.</li></ul><p>We design, deploy and support both Microsoft Teams Phone and dedicated hosted VoIP — including the hybrid setups that get the best of both. If you are facing a PSTN switch-off deadline or your current contract is up for renewal, get in touch for an independent recommendation.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/voip.webp" type="image/webp" length="0" />
    <category>Microsoft 365 &amp; Windows</category>
    <category>Microsoft Teams</category>
    <category>VoIP</category>
  </item>
  <item>
    <title>Top Microsoft 365 Copilot prompts every business team should know</title>
    <link>https://axia.co.uk/news/microsoft-365-copilot-top-business-prompts</link>
    <guid isPermaLink="true">https://axia.co.uk/news/microsoft-365-copilot-top-business-prompts</guid>
    <pubDate>Tue, 15 Apr 2025 09:00:00 GMT</pubDate>
    <description>A practical look at the highest-ROI Copilot prompts across sales, marketing, finance, HR and IT — and what changes when your team learns to use them well.</description>
    <content:encoded><![CDATA[<p>As a Microsoft partner, we spend a lot of time helping teams move from &quot;Copilot is installed&quot; to &quot;Copilot is actually saving us hours every week&quot;. The single biggest difference between those two states is prompt quality — knowing what to ask, how to ask it, and which day-to-day tasks Copilot is genuinely good at.</p><h2>Why prompts matter more than features</h2><p>Copilot is essentially a translator between plain English and the Microsoft 365 apps your team already uses — Outlook, Word, Excel, PowerPoint, Teams and SharePoint. A vague prompt produces a vague output. A specific, well-scoped prompt produces something you can ship in minutes rather than hours. The trick is teaching people to write prompts the same way they would brief a junior colleague: with context, a clear goal, and an example of the format they want back.</p><h2>The categories that deliver fastest ROI</h2><ul><li>Sales — summarising customer communications, drafting follow-up emails, updating CRM notes from Teams calls.</li><li>Marketing — generating campaign briefs, drafting first-pass copy, pulling insights from analytics workbooks.</li><li>Finance — explaining variances in monthly reports, building Excel formulas, summarising long supplier contracts.</li><li>HR — drafting policy updates, summarising candidate CVs, producing first-pass interview questions.</li><li>IT and operations — converting meeting transcripts into action lists, drafting change-request documents, summarising long incident threads.</li></ul><h2>Getting started without wasting licences</h2><p>Copilot licences are not cheap, so the worst outcome is rolling them out without an enablement plan and watching usage fall off after week two. We help businesses pilot Copilot with a focused group of power users, measure the time saved on real tasks, then roll out to the wider team with documented prompts and short training sessions. The result is licences that pay for themselves within a quarter.</p><p>If your team has Copilot but is not yet seeing the productivity gains you were promised, talk to us. We help SMEs across Hertfordshire, Bedfordshire and London get measurable value out of Microsoft 365 Copilot.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/office365.webp" type="image/webp" length="0" />
    <category>Microsoft 365 Copilot</category>
    <category>Copilot</category>
    <category>Productivity</category>
  </item>
  <item>
    <title>How Microsoft 365 Copilot transforms customer service teams</title>
    <link>https://axia.co.uk/news/copilot-for-customer-service-teams</link>
    <guid isPermaLink="true">https://axia.co.uk/news/copilot-for-customer-service-teams</guid>
    <pubDate>Wed, 12 Mar 2025 09:00:00 GMT</pubDate>
    <description>Is your customer service team drowning in scheduling, data lookups and inbox triage? Here is how Copilot reshapes the agent day-in-the-life — and where it does not.</description>
    <content:encoded><![CDATA[<p>If you sit with a typical customer service agent for an hour, you will see a familiar pattern: a customer query comes in, the agent searches three different systems for context, copies and pastes between them, drafts a reply, schedules a follow-up, then logs the interaction. The actual problem-solving is a fraction of the time spent.</p><h2>Where Copilot helps the most</h2><p>Microsoft 365 Copilot is most valuable in the moments around the customer interaction — the preparation, the summary and the follow-through. It can pull together everything the customer has emailed you about over the last six months, surface relevant SharePoint policies, and draft a context-aware response in seconds. It can summarise a long Teams call into action items and update the case record without anyone retyping anything.</p><ul><li>Auto-summarising long email threads before the agent replies.</li><li>Drafting first-pass responses that match the customer’s tone and history.</li><li>Producing meeting notes and action lists from Teams calls in real time.</li><li>Consolidating customer data scattered across Outlook, SharePoint and OneDrive.</li><li>Translating internal policy documents into plain-English customer-facing copy.</li></ul><h2>Where it does not — and why that matters</h2><p>Copilot is not a replacement for a proper customer service platform or CRM. If your case data lives outside Microsoft 365, Copilot cannot see it. If your knowledge base is out of date or scattered across people’s inboxes, Copilot will reflect that mess back at you. The teams getting the biggest wins are the ones that tidy up their SharePoint and Teams structure first, then add Copilot on top.</p><p>We help customer service teams across the UK plan, deploy and adopt Copilot in a way that produces real productivity gains — not just a licence cost. Get in touch to discuss a pilot.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/office365.webp" type="image/webp" length="0" />
    <category>Microsoft 365 Copilot</category>
    <category>Copilot</category>
    <category>Customer Service</category>
  </item>
  <item>
    <title>Switching MSP: what a good onboarding actually looks like</title>
    <link>https://axia.co.uk/news/switching-msp-onboarding-what-to-expect</link>
    <guid isPermaLink="true">https://axia.co.uk/news/switching-msp-onboarding-what-to-expect</guid>
    <pubDate>Wed, 05 Mar 2025 09:00:00 GMT</pubDate>
    <description>Changing IT provider is daunting — most horror stories come from skipped onboarding. Here is the 30-day onboarding plan we run when we take on a new client, and the questions to ask any MSP before you sign.</description>
    <content:encoded><![CDATA[<p>Most &quot;our MSP is rubbish&quot; stories are really onboarding stories. A good provider can inherit a messy environment and turn it into a calm one within a month; a bad one logs in, fixes the immediate fire, and learns about everything else the hard way six months later when something breaks. If you are thinking about switching, the most useful question to ask any MSP is not what their helpdesk SLA is — it is what their first 30 days look like.</p><h2>Week 1 — discovery, not action</h2><p>The first week is almost entirely listening and documenting. We sit down with the leadership team to understand the business, the seasons, the dependencies and the risks. We walk the office, photograph the comms room, label cables, and run automated discovery across the network. We audit the Microsoft 365 (or Google Workspace) tenant, the domain registrar, the line-of-business apps, the backup estate and the licence position. The deliverable at the end of week one is a written &quot;as-found&quot; document — what we inherited, what is good, what is risky, what is missing.</p><h2>Week 2 — secure the front door</h2><p>Before anything else, we lock the obvious risks: enforce MFA on every account, rotate shared and admin passwords into a managed password vault, review and trim global-admin and domain-admin membership, deploy our endpoint protection and RMM to every device, and validate that backups actually run and actually restore. None of this is glamorous. All of it is the difference between a quiet first quarter and a 2am phone call.</p><h2>Week 3 — knowledge transfer and ticketing</h2><p>By week three the helpdesk takes over day-to-day support. Every user has been introduced to the new portal, the new ticketing email and the new phone number. We hold short floor-walks so people can put a face to the support team. Internally we run knowledge-transfer sessions on the quirky bits of the environment — that one line-of-business app that needs a registry tweak, the printer in finance that only works on Tuesdays — and document them in our knowledge base.</p><h2>Week 4 — strategic roadmap</h2><p>The final week is where the relationship shifts from reactive to proactive. We present a 12-month roadmap: the risks we want to close, the lifecycle replacements coming up, the licensing optimisations available, the projects the leadership team has asked us to scope. We agree a monthly or quarterly service review cadence and the metrics we will report against.</p><h2>Questions to ask any MSP before you sign</h2><ul><li>&quot;Walk me through your first 30 days. What is delivered, by whom, and by when?&quot;</li><li>&quot;Who specifically will I deal with day-to-day, and who is the escalation point?&quot;</li><li>&quot;How do you handle out-of-hours? Is it the same team or an overflow?&quot;</li><li>&quot;What does your offboarding look like if we leave in 18 months? Do we get our documentation?&quot;</li><li>&quot;What is included in the monthly fee and what is billed extra? Show me a real invoice.&quot;</li><li>&quot;How many clients of our size do you currently support, and can we talk to two of them?&quot;</li></ul><p>Switching IT provider should feel like a relief, not a leap of faith. If you would like to see what our onboarding plan would look like for your business specifically, get in touch and we will put one together as part of the proposal — no obligation, and you keep the document either way.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/consulting.webp" type="image/webp" length="0" />
    <category>IT Strategy</category>
    <category>MSP</category>
    <category>Onboarding</category>
    <category>IT Strategy</category>
  </item>
  <item>
    <title>Hybrid working that actually works: the SME setup we deploy</title>
    <link>https://axia.co.uk/news/hybrid-working-setup-guide-for-uk-smes</link>
    <guid isPermaLink="true">https://axia.co.uk/news/hybrid-working-setup-guide-for-uk-smes</guid>
    <pubDate>Tue, 18 Feb 2025 09:00:00 GMT</pubDate>
    <description>Hybrid working is the default now, but most setups are still cobbled together from lockdown. Here is the practical home-and-office stack we deploy for SMEs — devices, identity, network, telephony and the rules that keep it secure.</description>
    <content:encoded><![CDATA[<p>Five years on from the lockdown rush, hybrid working is the default for most UK office-based SMEs. The technology to do it properly is now mature, affordable and well-integrated — but a lot of what we walk into is still the 2020 emergency build: personal laptops, consumer VPNs, a Teams account bolted onto an Exchange tenant, and a phone system that pretends nothing happened. Here is what a deliberate hybrid setup looks like in 2025.</p><h2>Devices: managed, not borrowed</h2><p>Company-owned, Microsoft Intune-managed laptops are the foundation. Autopilot ships a new device direct from the supplier to the user’s home; they sign in with their work account and the device configures itself — BitLocker, Defender, conditional access, line-of-business apps, the lot. Personal devices stay personal: if someone needs access from a home PC they get it through a browser, with no company data ever stored locally. This single change eliminates 80% of the data-loss and offboarding pain we see.</p><h2>Identity and access: MFA, conditional access, no VPN</h2><p>Identity is the new perimeter. Every user gets multi-factor authentication — ideally via the Microsoft Authenticator app, with passwordless sign-in for the keen. Conditional access policies enforce sensible rules: only managed devices can sync mail, sign-ins from unusual countries get challenged, legacy authentication is blocked outright. For most SMEs this removes the need for a traditional VPN entirely: apps are reached over the internet, protected by identity, not by a tunnel.</p><h2>Network: business-grade at home, properly at the office</h2><p>For staff who work from home most days — directors, senior engineers, customer-facing roles — a consumer ISP router is usually the weakest link in the chain. We deploy small business-grade access points and routers (UniFi, Meraki Go) at home, configure a separate work SSID, and where the role demands it we provide a 4G/5G failover so a domestic broadband outage does not stop the day. At the office a proper Wi-Fi 6 deployment, wired uplinks for desk phones and meeting-room kit, and a tidy patch panel are non-negotiable.</p><h2>Telephony and meetings: one number, anywhere</h2><p>Hybrid working killed the desk phone. We move clients to a cloud telephony platform — Microsoft Teams Phone where the rest of the stack is M365, a dedicated VoIP platform otherwise — so that one published number rings the user wherever they are, on whichever device. Meeting rooms get a Teams Rooms or comparable system with a proper camera and microphone array; nothing destroys a hybrid meeting faster than a laptop on the boardroom table.</p><h2>The rules that make it sustainable</h2><p>Technology gets you 70% of the way. The remaining 30% is policy: a written remote-working policy that covers acceptable use, equipment, data handling and incident reporting; a clear offboarding process that wipes managed devices and revokes access the same day; and a regular review of who has admin rights, who has access to which SharePoint sites, and which third-party apps users have connected to the tenant. Done properly, hybrid is not a compromise — it is a recruiting advantage and a productivity uplift. Done badly, it is a slow-burn security incident.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/home-worker.webp" type="image/webp" length="0" />
    <category>IT Strategy</category>
    <category>Hybrid Working</category>
    <category>Remote Work</category>
    <category>Productivity</category>
    <category>Networking</category>
  </item>
  <item>
    <title>Microsoft Defender for Business: enterprise-grade endpoint security for SMEs</title>
    <link>https://axia.co.uk/news/microsoft-defender-for-business-sme-guide</link>
    <guid isPermaLink="true">https://axia.co.uk/news/microsoft-defender-for-business-sme-guide</guid>
    <pubDate>Tue, 18 Feb 2025 09:00:00 GMT</pubDate>
    <description>Defender for Business gives SMEs the kind of EDR that used to be reserved for enterprises with seven-figure security budgets — bundled with Microsoft 365 Business Premium. Here is what it does, and what to turn on first.</description>
    <content:encoded><![CDATA[<p>Endpoint Detection and Response (EDR) used to be enterprise-only technology. Five years ago, deploying it across an SME meant a six-figure project, a dedicated security analyst and a tool that looked like a Bloomberg terminal. Microsoft Defender for Business — included with Microsoft 365 Business Premium — has quietly closed most of that gap, and the SMEs that turn it on properly get a noticeably stronger security posture than businesses ten times their size did a few years ago.</p><h2>What Defender for Business actually does</h2><ul><li>Next-generation anti-malware on Windows, macOS, iOS and Android devices.</li><li>EDR — behaviour-based detection of suspicious activity (ransomware patterns, credential theft, lateral movement).</li><li>Automated investigation and remediation — Defender acts on common threats without waiting for a human.</li><li>Attack surface reduction rules — blocks the techniques attackers use to get a foothold (Office macros, script-based attacks, credential dumping).</li><li>Vulnerability management — continuous scan for missing patches and weak configuration, with prioritised guidance.</li><li>Web content filtering — block phishing and malicious sites at the browser layer.</li></ul><h2>What to enable first</h2><p>Out of the box, Defender does the minimum. The real value comes from a handful of policies that we apply on every deployment: enable all attack-surface-reduction rules in audit mode, then move them to block once you have triaged the noise. Turn on automated investigation at full automation. Enforce tamper protection so attackers cannot disable Defender from a compromised endpoint. Push Edge with SmartScreen and web filtering enabled. Onboard servers as well as workstations — most SMEs forget servers exist.</p><h2>How it compares to third-party EDR</h2><p>For the average SME, Defender for Business is now a credible alternative to dedicated third-party EDR products from vendors like SentinelOne, CrowdStrike or Sophos. The third-party products usually have better reporting consoles and stronger threat-hunting features — but those benefits only matter if you have someone watching the console. Most SMEs do not. Defender for Business, properly configured and bundled with a managed service, is the right answer for the large majority of SMEs we work with.</p><p>We deploy and manage Microsoft Defender for Business as part of our managed IT and managed security services. If you have Business Premium licences but are not sure whether Defender is doing anything useful, we offer a free 30-minute review.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/security.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>Microsoft Defender</category>
    <category>Endpoint Security</category>
    <category>Cyber Essentials</category>
  </item>
  <item>
    <title>Cyber Essentials in plain English: a walkthrough for UK SMEs</title>
    <link>https://axia.co.uk/news/cyber-essentials-walkthrough-uk-sme</link>
    <guid isPermaLink="true">https://axia.co.uk/news/cyber-essentials-walkthrough-uk-sme</guid>
    <pubDate>Wed, 22 Jan 2025 09:00:00 GMT</pubDate>
    <description>A practical walkthrough of the five Cyber Essentials controls — what each one really means, the gotchas that fail first-time applicants, and how to prepare so the assessment is a formality rather than a project.</description>
    <content:encoded><![CDATA[<p>Cyber Essentials is the UK government-backed scheme that gives an SME a defensible baseline against the most common internet-borne attacks. It is also increasingly non-optional: more public-sector contracts, more enterprise procurement teams and more cyber-insurance policies expect to see the badge before they will sign. The good news is that the scheme is deliberately practical and the controls are things a well-run business should be doing anyway. The bad news is that the self-assessment questionnaire is unforgiving — vague answers fail.</p><h2>The five controls, in plain English</h2><ul><li>Firewalls and routers — every device that connects to the internet must sit behind a properly configured firewall, with the default admin password changed and unused services switched off.</li><li>Secure configuration — devices and software ship with permissive defaults; you have to lock them down (no default accounts, no unused apps, auto-lock enabled, BitLocker on laptops).</li><li>User access control — least privilege. Standard users do day-to-day work; separate admin accounts are used only when needed; multi-factor authentication on every cloud service.</li><li>Malware protection — modern endpoint protection on every workstation and server (Microsoft Defender for Business, SentinelOne, CrowdStrike or similar), kept up to date.</li><li>Security update management — operating systems, browsers and apps must be patched within 14 days of a high-severity update being released. No exceptions for the boss’s laptop.</li></ul><h2>The gotchas that fail first-time applicants</h2><p>In our experience the same handful of issues sink most first attempts. Personally-owned (BYOD) phones that access company email are in scope and must meet the controls — most people forget this. Unsupported operating systems anywhere in the estate (a Windows 10 PC after October 2025, an old Server 2012 box quietly running a line-of-business app) are an automatic fail. MFA must be enforced, not just available — a tenant where users can still log in without MFA does not pass. And the scope statement matters: applying for a narrow scope is fine, but everything inside that scope must comply.</p><h2>Cyber Essentials vs Cyber Essentials Plus</h2><p>Cyber Essentials is a self-assessed questionnaire verified by an external assessor. Cyber Essentials Plus is the same controls, but independently tested by an assessor who will run a vulnerability scan against a sample of your devices and your external infrastructure. Plus is what most serious procurement processes and insurers actually want. If you are aiming for Plus, do not book the test until your patching, endpoint and MFA picture is genuinely tidy — failures are expensive to re-test.</p><h2>How we approach it with clients</h2><p>We treat Cyber Essentials as a side-effect of doing good IT, not as a project in its own right. For managed-service clients we keep an evidence pack that maps each control to the relevant tooling — Microsoft 365 conditional access policies, Intune compliance, Defender posture, patch reports from our RMM — so when renewal comes around the answers are already documented. If you have an upcoming tender, a renewal deadline, or a cyber-insurance question asking whether you are Cyber Essentials certified, talk to us early; the lead time to fix the typical findings is a few weeks, not a few days.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/security.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>Cyber Essentials</category>
    <category>Compliance</category>
    <category>Endpoint Security</category>
  </item>
  <item>
    <title>Yes, you still need a third-party backup for Microsoft 365 — here is why</title>
    <link>https://axia.co.uk/news/microsoft-365-third-party-backup-explained</link>
    <guid isPermaLink="true">https://axia.co.uk/news/microsoft-365-third-party-backup-explained</guid>
    <pubDate>Tue, 10 Dec 2024 09:00:00 GMT</pubDate>
    <description>Microsoft 365 is highly available and highly resilient — but it is not backed up the way you think it is. Here is what Microsoft actually protects, what they do not, and the gap that catches SMEs out.</description>
    <content:encoded><![CDATA[<p>A surprisingly common assumption: &quot;Microsoft is a huge cloud company, of course my email and OneDrive are backed up&quot;. A more accurate version: Microsoft makes the platform highly available so that your data is unlikely to be lost due to their infrastructure failing. What they do not do is protect you from the most common cause of data loss, which is you (or one of your users) deleting something and not noticing for six months.</p><h2>What Microsoft 365 actually retains</h2><ul><li>Deleted items in Outlook: 14 days by default, recoverable from Deleted Items, then up to 14 more days in Recoverable Items. Total: 30 days.</li><li>Deleted OneDrive and SharePoint files: 93 days in the recycle bin (first-stage 30 days, then second-stage to 93).</li><li>Deleted user accounts: 30 days before the mailbox and OneDrive are unrecoverable.</li><li>Teams chat and channel messages: governed by retention policies — by default kept indefinitely, but a single misconfigured policy can purge them.</li><li>No version-by-version backup history beyond what Microsoft’s own retention provides.</li></ul><h2>The scenarios that catch SMEs out</h2><p>A leaver’s account is closed and 31 days later finance realises they were the only person with three years of client contracts in their OneDrive. A ransomware attack encrypts SharePoint files via OneDrive sync, and by the time it is detected, version history has been cycled. An admin runs a &quot;tidy up&quot; PowerShell script and deletes a SharePoint site that had inherited data nobody had checked. A retention policy is changed and removes three years of Teams chat history overnight. In every one of these cases, Microsoft has done exactly what they promised — and your data is still gone.</p><h2>What a proper Microsoft 365 backup gives you</h2><ul><li>Independent copy of Exchange, OneDrive, SharePoint and Teams data, stored outside the Microsoft 365 tenant.</li><li>Long-term retention well beyond Microsoft’s native windows — typically 7 years.</li><li>Point-in-time restore: rewind a single mailbox, file or site to a specific moment.</li><li>Granular restore — recover one email, one file or one Teams channel without restoring the whole tenant.</li><li>Protection from administrative mistakes, malicious insiders, ransomware and misconfigured retention policies.</li></ul><p>Microsoft’s own shared responsibility model is explicit: protecting your data is your responsibility, not theirs. We deploy and manage third-party Microsoft 365 backup for SMEs across the UK — typically using Veeam or comparable platforms — billed per user, per month, with restores included. If you have not validated what happens when one of your users deletes something important and asks for it back six months later, talk to us.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/backup.webp" type="image/webp" length="0" />
    <category>Cyber Security</category>
    <category>Microsoft 365</category>
    <category>Backup</category>
  </item>
  <item>
    <title>20 ways Microsoft 365 Copilot can transform marketing teams</title>
    <link>https://axia.co.uk/news/copilot-use-cases-for-marketing</link>
    <guid isPermaLink="true">https://axia.co.uk/news/copilot-use-cases-for-marketing</guid>
    <pubDate>Wed, 20 Nov 2024 09:00:00 GMT</pubDate>
    <description>Marketers spend more time on manual tasks than strategic ones. Here are the Copilot use cases that consistently win back a day a week — across content, research, campaigns and reporting.</description>
    <content:encoded><![CDATA[<p>Marketing professionals are paid to make strategic decisions and produce compelling content, but most of their week is spent on manual prep — pulling reports together, formatting decks, drafting copy that someone else will rewrite anyway. Microsoft 365 Copilot is unusually well-suited to that kind of work because it lives inside the apps marketers already use every day.</p><h2>Content and creative</h2><ul><li>Draft long-form blog posts from a one-line brief and a target keyword.</li><li>Repurpose a blog post into a LinkedIn carousel, an email and a tweet thread in one pass.</li><li>Generate first-pass image alt text and SEO meta descriptions across an entire content library.</li><li>Translate marketing copy into multiple languages while preserving tone.</li><li>Rewrite jargon-heavy product copy in plain English.</li></ul><h2>Research and insights</h2><ul><li>Summarise long competitor whitepapers into 200-word briefings.</li><li>Extract themes from a SharePoint library of customer research interviews.</li><li>Cluster open-ended survey responses by sentiment and topic.</li><li>Pull insights out of Excel analytics workbooks without writing formulas.</li><li>Produce executive-ready summaries of long quarterly reports.</li></ul><h2>Campaign delivery and reporting</h2><ul><li>Draft full campaign briefs from a single objective statement.</li><li>Generate launch checklists tailored to channel and audience.</li><li>Convert campaign performance data into a board-ready PowerPoint.</li><li>Summarise email campaign performance against goals.</li><li>Build a post-campaign retrospective from Teams meeting transcripts.</li><li>Draft answers to common stakeholder questions about results.</li><li>Update content calendars based on team capacity in Planner.</li><li>Generate a weekly internal update for marketing leadership.</li><li>Produce a polished case study from a Teams call with a customer.</li><li>Draft press releases from a one-page product brief.</li></ul><p>We work with marketing teams to roll Copilot out properly — with the right licences, prompt libraries and adoption support so the productivity gains stick. Get in touch to plan your rollout.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/consulting.webp" type="image/webp" length="0" />
    <category>Microsoft 365 Copilot</category>
    <category>Copilot</category>
    <category>Marketing</category>
  </item>
  <item>
    <title>A day in the life with Microsoft 365 Copilot — for marketing managers</title>
    <link>https://axia.co.uk/news/copilot-for-marketing-managers</link>
    <guid isPermaLink="true">https://axia.co.uk/news/copilot-for-marketing-managers</guid>
    <pubDate>Mon, 18 Mar 2024 09:00:00 GMT</pubDate>
    <description>What does a marketing manager’s workday actually look like once Microsoft 365 Copilot is embedded? Here is the realistic picture, hour by hour, with the wins and the limits.</description>
    <content:encoded><![CDATA[<p>Microsoft 365 Copilot integrates with the Microsoft tools your marketing team already uses — Outlook, Word, PowerPoint, Excel, Teams and SharePoint. The interesting question is not &quot;what can it do&quot; but &quot;what does a typical workday actually look like once it is embedded&quot;. The honest answer: shorter, more strategic, and less reactive.</p><h2>The morning: triage and prep</h2><p>A marketing manager opens Outlook to a queue of 30+ overnight emails. Copilot summarises the lot in under a minute, flags the ones that genuinely need a response, and drafts replies to the routine ones. The time saved on inbox triage alone is usually 30 to 45 minutes a day.</p><h2>Mid-morning: the campaign review meeting</h2><p>A Teams call to review last week’s campaign performance. Copilot transcribes the meeting, summarises the decisions, and produces an action list assigned to each attendee. No one is taking minutes. The manager spends the meeting actually thinking about the work instead of typing.</p><h2>Afternoon: drafting and approvals</h2><p>A board update is due tomorrow. The manager points Copilot at the campaign performance workbook, the latest brand guidelines, and a previous board deck. Copilot produces a first-pass PowerPoint in the right house style. The manager spends the afternoon refining the strategic narrative rather than wrestling with PowerPoint.</p><h2>Where Copilot does not help</h2><p>It will not make a bad strategy good. It will not replace a creative director’s judgement on tone. It will not catch every factual error — the manager still has to review carefully. The teams getting the biggest wins are the ones who treat Copilot as a fast, tireless junior, not as a replacement for human judgement.</p><p>We help marketing teams deploy and adopt Microsoft 365 Copilot in a way that actually changes the working day — not just the licence bill. Get in touch to scope a pilot.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/consulting.webp" type="image/webp" length="0" />
    <category>Microsoft 365 Copilot</category>
    <category>Copilot</category>
    <category>Marketing</category>
  </item>
  <item>
    <title>Microsoft 365 Copilot for sales teams — close more, faster</title>
    <link>https://axia.co.uk/news/copilot-for-sales-teams</link>
    <guid isPermaLink="true">https://axia.co.uk/news/copilot-for-sales-teams</guid>
    <pubDate>Thu, 22 Feb 2024 09:00:00 GMT</pubDate>
    <description>Sales reps spend roughly a third of their week on admin. Here is how Microsoft 365 Copilot takes back that time — and the patterns we see in teams that adopt it well.</description>
    <content:encoded><![CDATA[<p>Ask any sales leader where their reps lose time, and the answer is consistent: drafting emails, summarising calls, updating CRM notes, prepping for the next meeting. Industry studies routinely put this admin overhead at 30 to 35 percent of a rep’s week. Microsoft 365 Copilot is unusually good at exactly that kind of work.</p><h2>The everyday wins</h2><ul><li>Draft personalised follow-up emails from a one-line prompt and the prospect’s recent email history.</li><li>Summarise the last six months of communication with an account in 30 seconds before a renewal call.</li><li>Convert a Teams discovery call into a structured opportunity summary, with stakeholders, pain points and next steps.</li><li>Update bid documents and proposals using language pulled from previously won deals.</li><li>Produce a board-ready pipeline review from Excel data without writing a single formula.</li></ul><h2>What changes for the rep</h2><p>The teams getting the biggest wins are not necessarily closing more deals per rep — they are closing the same deals faster, with better-prepared conversations, and reps with more time for prospecting. The compounding effect across a year is significant: more time at the top of the funnel, faster cycle times, and a noticeable improvement in the quality of customer-facing output.</p><h2>The pre-requisites no one talks about</h2><p>Copilot only works as well as the data it can see. If your customer history is split across personal inboxes, shared mailboxes and SharePoint sites no one has tidied up in three years, Copilot will reflect that mess back at you. Before rolling Copilot out to a sales team, we usually spend a week tightening up email hygiene, mailbox sharing and SharePoint structure. It is unglamorous work that pays for itself the moment Copilot starts producing genuinely useful summaries.</p><p>We help UK sales teams plan, pilot and roll out Microsoft 365 Copilot in a way that produces measurable cycle-time gains. Get in touch to discuss a pilot.</p>]]></content:encoded>
    <dc:creator>Axia Computer Systems Ltd</dc:creator>
    <enclosure url="https://axia.co.uk/images/team.webp" type="image/webp" length="0" />
    <category>Microsoft 365 Copilot</category>
    <category>Copilot</category>
    <category>Sales</category>
  </item>
  </channel>
</rss>
