minor update to fix grantControls

Author: KelvinTegelaar

Modules/CIPPCore/Public/New-CIPPCAPolicy.ps1

@@ -93,7 +93,11 @@ function New-CIPPCAPolicy {
     #Remove context as it does not belong in the payload.
     try {
         if ($JSONobj.grantControls) {
-            $JSONobj.grantControls.PSObject.Properties.Remove('authenticationStrength@odata.context')
+            try {
+                $JSONobj.grantControls.PSObject.Properties.Remove('authenticationStrength@odata.context')
+            } catch {
+                #did not need to remove because didn't exist.
+            }
         }
         $JSONobj.templateId ? $JSONobj.PSObject.Properties.Remove('templateId') : $null
         if ($JSONobj.conditions.users.excludeGuestsOrExternalUsers.externalTenants.Members) {
@@ -428,7 +432,7 @@ function New-CIPPCAPolicy {
                 # Preserve any exclusion groups named "Vacation Exclusion - <PolicyDisplayName>" from existing policy
                 try {
                     $ExistingVacationGroup = New-GraphGETRequest -uri "https://graph.microsoft.com/beta/groups?`$filter=startsWith(displayName,'Vacation Exclusion')&`$select=id,displayName&`$top=999&`$count=true" -ComplexFilter -tenantid $TenantFilter -asApp $true |
-                        Where-Object { $CheckExisting.conditions.users.excludeGroups -contains $_.id }
+                    Where-Object { $CheckExisting.conditions.users.excludeGroups -contains $_.id }
                     if ($ExistingVacationGroup) {
                         if (-not ($JSONobj.conditions.users.PSObject.Properties.Name -contains 'excludeGroups')) {
                             $JSONobj.conditions.users | Add-Member -NotePropertyName 'excludeGroups' -NotePropertyValue @() -Force