KelvinTegelaar · KelvinTegelaar · Dec 20, 2023 · Dec 18, 2023
diff --git a/src/data/standards.json b/src/data/standards.json
@@ -100,21 +100,12 @@
   {
     "cat": "Entra (AAD) Standards",
     "name": "standards.allowOTPTokens",
-    "helpText": "Allows you to use any OTP token generator",
+    "helpText": "Allows you to use MS authenticator OTP token generator",
     "addedComponent": [],
     "label": "Enable OTP via Authenticator.",
     "impact": "Low Impact",
     "impactColour": "info"
   },
-  {
-    "cat": "Entra (AAD) Standards",
-    "name": "standards.allowOAuthTokens",
-    "helpText": "Allows you to use any software OAuth token generator",
-    "addedComponent": [],
-    "label": "Enable OTP Software oAuth tokens.",
-    "impact": "Low Impact",
-    "impactColour": "info"
-  },
   {
     "cat": "Entra (AAD) Standards",
     "name": "standards.PWcompanionAppAllowedState",
@@ -140,6 +131,33 @@
     "impact": "Low Impact",
     "impactColour": "info"
   },
+  {
+    "cat": "Entra (AAD) Standards",
+    "name": "standards.EnableFIDO2",
+    "helpText": "Enables the FIDO2 authenticationMethod for the tenant",
+    "addedComponent": [],
+    "label": "Enable FIDO2 capabilities",
+    "impact": "Low Impact",
+    "impactColour": "info"
+  },
+  {
+    "cat": "Entra (AAD) Standards",
+    "name": "standards.EnableHardwareOAuth",
+    "helpText": "Enables the HardwareOath authenticationMethod for the tenant. This allows you to use hardware tokens for generating 6 digit MFA codes.",
+    "addedComponent": [],
+    "label": "Enable Hardware OAuth tokens",
+    "impact": "Low Impact",
+    "impactColour": "info"
+  },
+  {
+    "cat": "Entra (AAD) Standards",
+    "name": "standards.allowOAuthTokens",
+    "helpText": "Allows you to use any software OAuth token generator",
+    "addedComponent": [],
+    "label": "Enable OTP Software OAuth tokens",
+    "impact": "Low Impact",
+    "impactColour": "info"
+  },
   {
     "cat": "Entra (AAD) Standards",
     "name": "standards.TAP",
@@ -225,15 +243,6 @@
     "impact": "Low Impact",
     "impactColour": "info"
   },
-  {
-    "cat": "Entra (AAD) Standards",
-    "name": "standards.EnableFIDO2",
-    "helpText": "Enables the FIDO2 authenticationMethod for the tenant",
-    "addedComponent": [],
-    "label": "Enable FIDO2 capabilities",
-    "impact": "Low Impact",
-    "impactColour": "info"
-  },
   {
     "cat": "Entra (AAD) Standards",
     "name": "standards.DisableSecurityGroupUsers",
@@ -270,29 +279,6 @@
     "impact": "Medium Impact",
     "impactColour": "warning"
   },
-  {
-    "cat": "Entra (AAD) Standards",
-    "name": "standards.SecurityDefaults",
-    "helpText": "Enables security defaults for the tenant, for newer tenants this is enabled by default. Do not enable this feature if you use Conditional Access.",
-    "addedComponent": [],
-    "label": "Enable Security Defaults",
-    "impact": "High Impact",
-    "impactColour": "danger"
-  },
-  {
-    "cat": "Entra (AAD) Standards",
-    "name": "standards.UndoOauth",
-    "disabledFeatures": {
-      "report": true,
-      "warn": true,
-      "remediate": false
-    },
-    "helpText": "Disables App consent and set to Allow user consent for apps",
-    "addedComponent": [],
-    "label": "Undo App Consent Standard",
-    "impact": "High Impact",
-    "impactColour": "danger"
-  },
   {
     "cat": "Entra (AAD) Standards",
     "name": "standards.OauthConsent",
@@ -316,6 +302,65 @@
     "impact": "Medium impact",
     "impactColour": "warning"
   },
+  {
+    "cat": "Entra (AAD) Standards",
+    "name": "standards.UndoOauth",
+    "disabledFeatures": {
+      "report": true,
+      "warn": true,
+      "remediate": false
+    },
+    "helpText": "Disables App consent and set to Allow user consent for apps",
+    "addedComponent": [],
+    "label": "Undo App Consent Standard",
+    "impact": "High Impact",
+    "impactColour": "danger"
+  },
+  {
+    "cat": "Entra (AAD) Standards",
+    "name": "standards.SecurityDefaults",
+    "helpText": "Enables security defaults for the tenant, for newer tenants this is enabled by default. Do not enable this feature if you use Conditional Access.",
+    "addedComponent": [],
+    "label": "Enable Security Defaults",
+    "impact": "High Impact",
+    "impactColour": "danger"
+  },
+  {
+    "cat": "Entra (AAD) Standards",
+    "name": "standards.DisableSMS",
+    "helpText": "This blocks users from using SMS as an MFA method. If a user only has SMS as a MFA method, they will be unable to login.",
+    "addedComponent": [],
+    "label": "Disables SMS as an MFA method",
+    "impact": "High Impact",
+    "impactColour": "danger"
+  },
+  {
+    "cat": "Entra (AAD) Standards",
+    "name": "standards.DisableVoice",
+    "helpText": "This blocks users from using Voice call as an MFA method. If a user only has Voice as a MFA method, they will be unable to login.",
+    "addedComponent": [],
+    "label": "Disables Voice call as an MFA method",
+    "impact": "High Impact",
+    "impactColour": "danger"
+  },
+  {
+    "cat": "Entra (AAD) Standards",
+    "name": "standards.DisableEmail",
+    "helpText": "This blocks users from using email as an MFA method. This disables the email OTP option for guest users, and instead promts them to create a Microsoft account.",
+    "addedComponent": [],
+    "label": "Disables Email as an MFA method",
+    "impact": "High Impact",
+    "impactColour": "danger"
+  },
+  {
+    "cat": "Entra (AAD) Standards",
+    "name": "standards.Disablex509Certificate",
+    "helpText": "This blocks users from using Certificates as an MFA method.",
+    "addedComponent": [],
+    "label": "Disables Certificates as an MFA method",
+    "impact": "High Impact",
+    "impactColour": "danger"
+  },
   {
     "name": "standards.OutBoundSpamAlert",
     "cat": "Exchange Standards",
@@ -615,6 +660,24 @@
     "impact": "High Impact",
     "impactColour": "danger"
   },
+  {
+    "name": "standards.DisableReshare",
+    "cat": "SharePoint Standards",
+    "helpText": "Disables the ability for external users to share files they don't own. Sharing links can only be made for People with existing access",
+    "addedComponent": [],
+    "label": "Disable Resharing by External Users",
+    "impact": "High Impact",
+    "impactColour": "danger"
+  },
+  {
+    "name": "standards.DisableUserSiteCreate",
+    "cat": "SharePoint Standards",
+    "helpText": "Disables users from creating new SharePoint sites",
+    "addedComponent": [],
+    "label": "Disable site creation by standard users",
+    "impact": "High Impact",
+    "impactColour": "danger"
+  },
   {
     "name": "standards.ExcludedfileExt",
     "cat": "SharePoint Standards",
@@ -639,24 +702,6 @@
     "impact": "High Impact",
     "impactColour": "danger"
   },
-  {
-    "name": "standards.DisableReshare",
-    "cat": "SharePoint Standards",
-    "helpText": "Disables the ability for external users to share files they don't own. Sharing links can only be made for People with existing access",
-    "addedComponent": [],
-    "label": "Disable Resharing by External Users",
-    "impact": "High Impact",
-    "impactColour": "danger"
-  },
-  {
-    "name": "standards.DisableUserSiteCreate",
-    "cat": "SharePoint Standards",
-    "helpText": "Disables users from creating new SharePoint sites",
-    "addedComponent": [],
-    "label": "Disable site creation by standard users",
-    "impact": "High Impact",
-    "impactColour": "danger"
-  },
   {
     "name": "standards.unmanagedSync",
     "cat": "SharePoint Standards",