satDefault
uses the AUTH LOGIN
command, which is the same command that TIdSASLLogin
uses. So yes, you can (and should) use satSASL
all the time, especially since most (not all) servers do not support AUTH LOGIN
anymore and/or support more secure SASLs.
You are missing TIdSASL_NTLM. Not surprising, since that component is not registered by default as it has not been finalized yet, but it has been around for a while.
As for the order, the CRAMs should definitely be at the top of the list, but Login and Plain should be moved to the very bottom. As for the rest, have a look at this old newsgroup post for suggestions.