bmsimp
diff --git a/‎Config/standards.json‎
Lines changed: 54 additions & 30 deletions b/‎Config/standards.json‎
Lines changed: 54 additions & 30 deletions
diff --git a/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardAnonReportDisable.ps1‎
Lines changed: 2 additions & 2 deletions b/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardAnonReportDisable.ps1‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardAntiPhishPolicy.ps1‎
Lines changed: 12 additions & 12 deletions b/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardAntiPhishPolicy.ps1‎
Lines changed: 12 additions & 12 deletions
diff --git a/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardAtpPolicyForO365.ps1‎
Lines changed: 2 additions & 2 deletions b/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardAtpPolicyForO365.ps1‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardDisableOutlookAddins.ps1‎
Lines changed: 2 additions & 2 deletions b/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardDisableOutlookAddins.ps1‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardDisableTNEF.ps1‎
Lines changed: 1 addition & 1 deletion b/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardDisableTNEF.ps1‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardEXODisableAutoForwarding.ps1‎
Lines changed: 2 additions & 2 deletions b/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardEXODisableAutoForwarding.ps1‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardEnableMailTips.ps1‎
Lines changed: 1 addition & 1 deletion b/‎Modules/CIPPCore/Public/Standards/Invoke-CIPPStandardEnableMailTips.ps1‎
Lines changed: 1 addition & 1 deletion
@@ -217,7 +217,7 @@
     "name": "standards.DisableBasicAuthSMTP",
     "cat": "Global Standards",
     "tag": [],
-    "helpText": "Disables SMTP AUTH for the organization and all users. This is the default for new tenants. ",
+    "helpText": "Disables SMTP AUTH for the organization and all users. This is the default for new tenants.",
     "docsDescription": "Disables SMTP basic authentication for the tenant and all users with it explicitly enabled.",
     "addedComponent": [],
     "label": "Disable SMTP Basic Authentication",
@@ -546,7 +546,7 @@
     "name": "standards.DisableTenantCreation",
     "cat": "Entra (AAD) Standards",
     "tag": ["CIS"],
-    "helpText": "Restricts creation of M365 tenants to the Global Administrator or Tenant Creator roles. ",
+    "helpText": "Restricts creation of M365 tenants to the Global Administrator or Tenant Creator roles.",
     "docsDescription": "Users by default are allowed to create M365 tenants. This disables that so only admins can create new M365 tenants.",
     "addedComponent": [],
     "label": "Disable M365 Tenant creation by users",
@@ -772,7 +772,7 @@
     "impact": "Medium Impact",
     "impactColour": "warning",
     "addedDate": "2024-11-12",
-    "powershellEquivalent": "",
+    "powershellEquivalent": "Graph API",
     "recommendedBy": []
   },
   {
@@ -785,7 +785,7 @@
       {
         "type": "number",
         "name": "standards.StaleEntraDevices.deviceAgeThreshold",
-        "label": "Days before stale(Dont set below 30)"
+        "label": "Days before stale(Do not set below 30)"
       }
     ],
     "disabledFeatures": {
@@ -1687,11 +1687,46 @@
     "powershellEquivalent": "New-ProtectionAlert and Set-ProtectionAlert",
     "recommendedBy": []
   },
+  {
+    "name": "standards.SharePointMassDeletionAlert",
+    "cat": "Defender Standards",
+    "tag": [],
+    "helpText": "Sets a e-mail address to alert when a User deletes more than 20 SharePoint files within 60 minutes. NB: Requires a Office 365 E5 subscription, Office 365 E3 with Threat Intelligence or Office 365 EquivioAnalytics add-on.",
+    "docsDescription": "Sets a e-mail address to alert when a User deletes more than 20 SharePoint files within 60 minutes. This is useful for monitoring and ensuring that the correct SharePoint files are deleted. NB: Requires a Office 365 E5 subscription, Office 365 E3 with Threat Intelligence or Office 365 EquivioAnalytics add-on.",
+    "addedComponent": [
+      {
+        "type": "number",
+        "name": "standards.SharePointMassDeletionAlert.Threshold",
+        "label": "Max files to delete within the time frame",
+        "defaultValue": 20
+      },
+      {
+        "type": "number",
+        "name": "standards.SharePointMassDeletionAlert.TimeWindow",
+        "label": "Time frame in minutes",
+        "defaultValue": 60
+      },
+      {
+        "type": "autoComplete",
+        "multiple": true,
+        "creatable": true,
+        "required": true,
+        "name": "standards.SharePointMassDeletionAlert.NotifyUser",
+        "label": "E-mail to receive the alert"
+      }
+    ],
+    "label": "SharePoint Mass Deletion Alert",
+    "impact": "Low Impact",
+    "impactColour": "info",
+    "addedDate": "2025-04-07",
+    "powershellEquivalent": "New-ProtectionAlert and Set-ProtectionAlert",
+    "recommendedBy": []
+  },
   {
     "name": "standards.SafeLinksPolicy",
     "cat": "Defender Standards",
     "tag": ["CIS", "mdo_safelinksforemail", "mdo_safelinksforOfficeApps"],
-    "helpText": "This creates a safelink policy that automatically scans, tracks, and and enables safe links for Email, Office, and Teams for both external and internal senders",
+    "helpText": "This creates a Safe Links policy that automatically scans, tracks, and and enables safe links for Email, Office, and Teams for both external and internal senders",
     "addedComponent": [
       {
         "type": "switch",
@@ -1717,7 +1752,7 @@
         "label": "Do not rewrite the following URLs in email"
       }
     ],
-    "label": "Default SafeLinks Policy",
+    "label": "Default Safe Links Policy",
     "impact": "Low Impact",
     "impactColour": "info",
     "addedDate": "2024-03-25",
@@ -1737,7 +1772,7 @@
       "mdo_antiphishingpolicies",
       "mdo_phishthresholdlevel"
     ],
-    "helpText": "This creates a Anti-Phishing policy that automatically enables Mailbox Intelligence and spoofing, optional switches for Mailtips.",
+    "helpText": "This creates a Anti-Phishing policy that automatically enables Mailbox Intelligence and spoofing, optional switches for Mail tips.",
     "addedComponent": [
       {
         "type": "number",
@@ -1930,18 +1965,13 @@
     "impact": "Low Impact",
     "impactColour": "info",
     "addedDate": "2024-03-25",
-    "powershellEquivalent": "Set-AntiphishPolicy or New-AntiphishPolicy",
+    "powershellEquivalent": "Set-AntiPhishPolicy or New-AntiPhishPolicy",
     "recommendedBy": ["CIS"]
   },
   {
     "name": "standards.SafeAttachmentPolicy",
     "cat": "Defender Standards",
-    "tag": [
-      "CIS",
-      "mdo_safedocuments",
-      "mdo_commonattachmentsfilter",
-      "mdo_safeattachmentpolicy"
-    ],
+    "tag": ["CIS", "mdo_safedocuments", "mdo_commonattachmentsfilter", "mdo_safeattachmentpolicy"],
     "helpText": "This creates a Safe Attachment policy",
     "addedComponent": [
       {
@@ -2576,7 +2606,7 @@
     "impact": "Low Impact",
     "impactColour": "info",
     "addedDate": "2024-11-12",
-    "powershellEquivalent": "",
+    "powershellEquivalent": "Graph API",
     "recommendedBy": []
   },
   {
@@ -2709,7 +2739,7 @@
     "cat": "Intune Standards",
     "tag": [],
     "helpText": "Requires MFA for all users to register devices with Intune. This is useful when not using Conditional Access.",
-    "label": "Require Multifactor Authentication to register or join devices with Microsoft Entra",
+    "label": "Require Multi-factor Authentication to register or join devices with Microsoft Entra",
     "impact": "Medium Impact",
     "impactColour": "warning",
     "addedDate": "2023-10-23",
@@ -2817,7 +2847,7 @@
     "impactColour": "info",
     "addedDate": "2024-07-09",
     "powershellEquivalent": "Set-SPOTenant -EnableAzureADB2BIntegration $true",
-    "recommendedBy": ["CIS 3.0"]
+    "recommendedBy": ["CIS"]
   },
   {
     "name": "standards.SPDisallowInfectedFiles",
@@ -2875,7 +2905,7 @@
     "impactColour": "warning",
     "addedDate": "2024-07-09",
     "powershellEquivalent": "Set-SPOTenant -ExternalUserExpireInDays 30 -ExternalUserExpirationRequired $True",
-    "recommendedBy": ["CIS 3.0"]
+    "recommendedBy": ["CIS"]
   },
   {
     "name": "standards.SPEmailAttestation",
@@ -3017,7 +3047,7 @@
     "helpText": "Disables the ability for external users to share files they don't own. Sharing links can only be made for People with existing access",
     "docsDescription": "Disables the ability for external users to share files they don't own. Sharing links can only be made for People with existing access. This is a tenant wide setting and overrules any settings set on the site level",
     "addedComponent": [],
-    "label": "Disable Resharing by External Users",
+    "label": "Disable Re-sharing by External Users",
     "impact": "High Impact",
     "impactColour": "danger",
     "addedDate": "2022-06-15",
@@ -3193,7 +3223,7 @@
     "impactColour": "info",
     "addedDate": "2024-11-12",
     "powershellEquivalent": "Set-CsTeamsMeetingPolicy -AllowAnonymousUsersToJoinMeeting $false -AllowAnonymousUsersToStartMeeting $false -AutoAdmittedUsers EveryoneInCompanyExcludingGuests -AllowPSTNUsersToBypassLobby $false -MeetingChatEnabledType EnabledExceptAnonymous -DesignatedPresenterRoleMode $DesignatedPresenterRoleMode -AllowExternalParticipantGiveRequestControl $false",
-    "recommendedBy": ["CIS 3.0"]
+    "recommendedBy": ["CIS"]
   },
   {
     "name": "standards.TeamsEmailIntegration",
@@ -3213,7 +3243,7 @@
     "impactColour": "info",
     "addedDate": "2024-07-30",
     "powershellEquivalent": "Set-CsTeamsClientConfiguration -AllowEmailIntoChannel $false",
-    "recommendedBy": ["CIS 3.0"]
+    "recommendedBy": ["CIS"]
   },
   {
     "name": "standards.TeamsExternalFileSharing",
@@ -3252,7 +3282,7 @@
     "impactColour": "info",
     "addedDate": "2024-07-28",
     "powershellEquivalent": "Set-CsTeamsClientConfiguration -AllowGoogleDrive $false -AllowShareFile $false -AllowBox $false -AllowDropBox $false -AllowEgnyte $false",
-    "recommendedBy": ["CIS 3.0"]
+    "recommendedBy": ["CIS"]
   },
   {
     "name": "standards.TeamsEnrollUser",
@@ -3667,10 +3697,7 @@
           { "label": "Do not assign", "value": "On" },
           { "label": "Assign to all users", "value": "allLicensedUsers" },
           { "label": "Assign to all devices", "value": "AllDevices" },
-          {
-            "label": "Assign to all users and devices",
-            "value": "AllDevicesAndUsers"
-          },
+          { "label": "Assign to all users and devices", "value": "AllDevicesAndUsers" },
           { "label": "Assign to Custom Group", "value": "customGroup" }
         ]
       },
@@ -3749,10 +3776,7 @@
           { "value": "donotchange", "label": "Do not change state" },
           { "value": "Enabled", "label": "Set to enabled" },
           { "value": "Disabled", "label": "Set to disabled" },
-          {
-            "value": "enabledForReportingButNotEnforced",
-            "label": "Set to report only"
-          }
+          { "value": "enabledForReportingButNotEnforced", "label": "Set to report only" }
         ]
       }
     ]
 
@@ -57,8 +57,8 @@ function Invoke-CIPPStandardAnonReportDisable {
         }
     }
     if ($Settings.report -eq $true) {
-        $stateisCorrrect = $CurrentInfo.displayConcealedNames ? $false : $true
-        Set-CIPPStandardsCompareField -FieldName 'standards.AnonReportDisable' -FieldValue $stateisCorrrect -TenantFilter $tenant
+        $StateIsCorrect = $CurrentInfo.displayConcealedNames ? $false : $true
+        Set-CIPPStandardsCompareField -FieldName 'standards.AnonReportDisable' -FieldValue $StateIsCorrect -TenantFilter $tenant
         Add-CIPPBPAField -FieldName 'AnonReport' -FieldValue $CurrentInfo.displayConcealedNames -StoreAs bool -Tenant $tenant
     }
 }
@@ -124,7 +124,7 @@ function Invoke-CIPPStandardAntiPhishPolicy {
             Write-LogMessage -API 'Standards' -tenant $Tenant -message 'Anti-phishing policy already correctly configured' -sev Info
         } else {
             if ($MDOLicensed) {
-                $cmdparams = @{
+                $cmdParams = @{
                     Enabled                             = $true
                     PhishThresholdLevel                 = $Settings.PhishThresholdLevel
                     EnableMailboxIntelligence           = $true
@@ -147,7 +147,7 @@ function Invoke-CIPPStandardAntiPhishPolicy {
                     EnableOrganizationDomainsProtection = $true
                 }
             } else {
-                $cmdparams = @{
+                $cmdParams = @{
                     Enabled                             = $true
                     EnableSpoofIntelligence             = $true
                     EnableFirstContactSafetyTips        = $Settings.EnableFirstContactSafetyTips
@@ -160,16 +160,16 @@ function Invoke-CIPPStandardAntiPhishPolicy {
 
             if ($CurrentState.Name -eq $PolicyName) {
                 try {
-                    $cmdparams.Add('Identity', $PolicyName)
-                    New-ExoRequest -tenantid $Tenant -cmdlet 'Set-AntiPhishPolicy' -cmdparams $cmdparams -UseSystemMailbox $true
+                    $cmdParams.Add('Identity', $PolicyName)
+                    New-ExoRequest -tenantid $Tenant -cmdlet 'Set-AntiPhishPolicy' -cmdParams $cmdParams -UseSystemMailbox $true
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Updated Anti-phishing policy $PolicyName." -sev Info
                 } catch {
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to update Anti-phishing policy $PolicyName." -sev Error -LogData $_
                 }
             } else {
                 try {
-                    $cmdparams.Add('Name', $PolicyName)
-                    New-ExoRequest -tenantid $Tenant -cmdlet 'New-AntiPhishPolicy' -cmdparams $cmdparams -UseSystemMailbox $true
+                    $cmdParams.Add('Name', $PolicyName)
+                    New-ExoRequest -tenantid $Tenant -cmdlet 'New-AntiPhishPolicy' -cmdParams $cmdParams -UseSystemMailbox $true
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Created Anti-phishing policy $PolicyName." -sev Info
                 } catch {
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to create Anti-phishing policy $PolicyName." -sev Error -LogData $_
@@ -178,27 +178,27 @@ function Invoke-CIPPStandardAntiPhishPolicy {
         }
 
         if ($RuleStateIsCorrect -eq $false) {
-            $cmdparams = @{
+            $cmdParams = @{
                 Priority          = 0
                 RecipientDomainIs = $AcceptedDomains.Name
             }
 
             if ($RuleState.AntiPhishPolicy -ne $PolicyName) {
-                $cmdparams.Add('AntiPhishPolicy', $PolicyName)
+                $cmdParams.Add('AntiPhishPolicy', $PolicyName)
             }
 
             if ($RuleState.Name -eq $RuleName) {
                 try {
-                    $cmdparams.Add('Identity', $RuleName)
-                    New-ExoRequest -tenantid $Tenant -cmdlet 'Set-AntiPhishRule' -cmdparams $cmdparams -UseSystemMailbox $true
+                    $cmdParams.Add('Identity', $RuleName)
+                    New-ExoRequest -tenantid $Tenant -cmdlet 'Set-AntiPhishRule' -cmdParams $cmdParams -UseSystemMailbox $true
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Updated Anti-phishing rule $RuleName." -sev Info
                 } catch {
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to update Anti-phishing rule $RuleName." -sev Error -LogData $_
                 }
             } else {
                 try {
-                    $cmdparams.Add('Name', $RuleName)
-                    New-ExoRequest -tenantid $Tenant -cmdlet 'New-AntiPhishRule' -cmdparams $cmdparams -UseSystemMailbox $true
+                    $cmdParams.Add('Name', $RuleName)
+                    New-ExoRequest -tenantid $Tenant -cmdlet 'New-AntiPhishRule' -cmdParams $cmdParams -UseSystemMailbox $true
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Created Anti-phishing rule $RuleName." -sev Info
                 } catch {
                     Write-LogMessage -API 'Standards' -tenant $Tenant -message "Failed to create Anti-phishing rule $RuleName." -sev Error -LogData $_
 
@@ -48,14 +48,14 @@ function Invoke-CIPPStandardAtpPolicyForO365 {
         if ($StateIsCorrect -eq $true) {
             Write-LogMessage -API 'Standards' -tenant $Tenant -message 'Atp Policy For O365 already set.' -sev Info
         } else {
-            $cmdparams = @{
+            $cmdParams = @{
                 EnableATPForSPOTeamsODB = $true
                 EnableSafeDocs          = $true
                 AllowSafeDocsOpen       = $Settings.AllowSafeDocsOpen
             }
 
             try {
-                New-ExoRequest -tenantid $Tenant -cmdlet 'Set-AtpPolicyForO365' -cmdparams $cmdparams -UseSystemMailbox $true
+                New-ExoRequest -tenantid $Tenant -cmdlet 'Set-AtpPolicyForO365' -cmdParams $cmdParams -UseSystemMailbox $true
                 Write-LogMessage -API 'Standards' -tenant $Tenant -message 'Updated Atp Policy For O365' -sev Info
             } catch {
                 $ErrorMessage = Get-NormalizedError -Message $_.Exception.Message
 
@@ -47,8 +47,8 @@ function Invoke-CIPPStandardDisableOutlookAddins {
 
             foreach ($Role in $RolesToRemove) {
                 try {
-                    New-ExoRequest -tenantid $Tenant -cmdlet 'Get-ManagementRoleAssignment' -cmdparams @{ RoleAssignee = $CurrentInfo.Identity; Role = $Role } | ForEach-Object {
-                        New-ExoRequest -tenantid $Tenant -cmdlet 'Remove-ManagementRoleAssignment' -cmdparams @{ Identity = $_.Guid; Confirm = $false } -UseSystemMailbox $true
+                    New-ExoRequest -tenantid $Tenant -cmdlet 'Get-ManagementRoleAssignment' -cmdParams @{ RoleAssignee = $CurrentInfo.Identity; Role = $Role } | ForEach-Object {
+                        New-ExoRequest -tenantid $Tenant -cmdlet 'Remove-ManagementRoleAssignment' -cmdParams @{ Identity = $_.Guid; Confirm = $false } -UseSystemMailbox $true
                         Write-LogMessage -API 'Standards' -tenant $tenant -message "Disabled Outlook add-in role: $Role" -sev Debug
                     }
                 } catch {
 
@@ -38,7 +38,7 @@ function Invoke-CIPPStandardDisableTNEF {
 
         if ($CurrentState.TNEFEnabled -ne $false) {
             try {
-                New-ExoRequest -tenantid $Tenant -cmdlet 'Set-RemoteDomain' -cmdParams @{Identity = 'Default'; TNEFEnabled = $false } -useSystemmailbox $true
+                New-ExoRequest -tenantid $Tenant -cmdlet 'Set-RemoteDomain' -cmdParams @{Identity = 'Default'; TNEFEnabled = $false } -useSystemMailbox $true
                 Write-LogMessage -API 'Standards' -tenant $tenant -message 'Disabled TNEF for Default Remote Domain' -sev Info
             } catch {
                 $ErrorMessage = Get-NormalizedError -Message $_.Exception.Message
 
@@ -35,13 +35,13 @@ function Invoke-CIPPStandardEXODisableAutoForwarding {
     param($Tenant, $Settings)
     ##$Rerun -Type Standard -Tenant $Tenant -Settings $Settings 'EXODisableAutoForwarding'
 
-    $CurrentInfo = New-ExoRequest -tenantid $Tenant -cmdlet 'Get-HostedOutboundSpamFilterPolicy' -cmdparams @{Identity = 'Default' } -useSystemMailbox $true
+    $CurrentInfo = New-ExoRequest -tenantid $Tenant -cmdlet 'Get-HostedOutboundSpamFilterPolicy' -cmdParams @{Identity = 'Default' } -useSystemMailbox $true
     $StateIsCorrect = $CurrentInfo.AutoForwardingMode -eq 'Off'
 
     If ($Settings.remediate -eq $true) {
 
         try {
-            New-ExoRequest -tenantid $tenant -cmdlet 'Set-HostedOutboundSpamFilterPolicy' -cmdparams @{ Identity = 'Default'; AutoForwardingMode = 'Off' } -useSystemMailbox $true
+            New-ExoRequest -tenantid $tenant -cmdlet 'Set-HostedOutboundSpamFilterPolicy' -cmdParams @{ Identity = 'Default'; AutoForwardingMode = 'Off' } -useSystemMailbox $true
             Write-LogMessage -API 'Standards' -tenant $tenant -message 'Disabled auto forwarding' -sev Info
         } catch {
             $ErrorMessage = Get-CippException -Exception $_
 
@@ -44,7 +44,7 @@ function Invoke-CIPPStandardEnableMailTips {
             Write-LogMessage -API 'Standards' -tenant $Tenant -message 'All MailTips are already enabled.' -sev Info
         } else {
             try {
-                New-ExoRequest -useSystemMailbox $true -tenantid $Tenant -cmdlet 'Set-OrganizationConfig' -cmdparams @{ MailTipsAllTipsEnabled = $true; MailTipsExternalRecipientsTipsEnabled = $true; MailTipsGroupMetricsEnabled = $true; MailTipsLargeAudienceThreshold = $Settings.MailTipsLargeAudienceThreshold }
+                New-ExoRequest -useSystemMailbox $true -tenantid $Tenant -cmdlet 'Set-OrganizationConfig' -cmdParams @{ MailTipsAllTipsEnabled = $true; MailTipsExternalRecipientsTipsEnabled = $true; MailTipsGroupMetricsEnabled = $true; MailTipsLargeAudienceThreshold = $Settings.MailTipsLargeAudienceThreshold }
                 Write-LogMessage -API 'Standards' -tenant $Tenant -message 'Enabled all MailTips' -sev Info
             } catch {
                 $ErrorMessage = Get-NormalizedError -Message $_.Exception.Message
Original file line number	Diff line number	Diff line change
`@@ -57,8 +57,8 @@ function Invoke-CIPPStandardAnonReportDisable {`
`57`	`57`	`}`
`58`	`58`	`}`
`59`	`59`	`if ($Settings.report -eq $true) {`
`60`		`- $stateisCorrrect = $CurrentInfo.displayConcealedNames ? $false : $true`
`61`		`- Set-CIPPStandardsCompareField -FieldName 'standards.AnonReportDisable' -FieldValue $stateisCorrrect -TenantFilter $tenant`
	`60`	`+ $StateIsCorrect = $CurrentInfo.displayConcealedNames ? $false : $true`
	`61`	`+ Set-CIPPStandardsCompareField -FieldName 'standards.AnonReportDisable' -FieldValue $StateIsCorrect -TenantFilter $tenant`
`62`	`62`	`Add-CIPPBPAField -FieldName 'AnonReport' -FieldValue $CurrentInfo.displayConcealedNames -StoreAs bool -Tenant $tenant`
`63`	`63`	`}`
`64`	`64`	`}`