
function Invoke-EntraIdIamApi
        Invoke Entra ID Iam API.
        Used to call the Entra ID Iam API.
        Currently this use undocumented APIs from Microsoft.
        URI to the API.
    .PARAMETER Method
        GET or POST.
        # Get the Entra ID property settings.
        Invoke-Office365ManagementApi -Uri '' -Method 'GET';

        # API URL.
        [Parameter(Mandatory = $true)]

        # Method (GET, POST etc).
        [Parameter(Mandatory = $false)]
        [ValidateSet('GET', 'POST')]
        [string]$Method = 'GET',

        # Body for the request.
        [Parameter(Mandatory = $false)]
        # Get access token for Entra ID IAM API.
        $accessToken = Get-EntraIdIamApiToken;

        # Construct the headers for the request.
        $headers = @{
            'Content-Type'           ='application/json; charset=UTF-8';
            'Authorization'          =('Bearer {0}' -f $accessToken);
            'X-Requested-With'       = 'XMLHttpRequest';
            'x-ms-client-request-id' = [guid]::NewGuid();
            'x-ms-correlation-id'    = [guid]::NewGuid();
        # Create parameter splatting.
        $param = @{
            Uri     = $Uri;
            Method  = $Method;
            Headers = $headers;

        # If body is not null.
        if ($null -ne $Body)
            # Add body to parameter splatting.
            $param.Add('Body', $Body);

        # Try to invoke API.
            # Write to log.
            Write-Log -Category "API" -Subcategory 'Entra ID' -Message ('Trying to call IAM API with the method "{0}" and the URL "{1}"' -f $Method, $Uri) -Level Debug;

            # Invoke API.
            $response = Invoke-RestMethod @param -ErrorAction Stop;

            # Write to log.
            Write-Log -Category "API" -Subcategory 'Entra ID' -Message ('Successfully called IAM API with the method "{0}" and the URL "{1}"' -f $Method, $Uri) -Level Debug;
        # Something went wrong while invoking API.
            # Throw exception.
            Write-Log -Category "API" -Subcategory 'Entra ID' -Message ("Could not call IAM API, the exception is '{0}'" -f $_) -Level Error;
        # If the response is not null.
        if ($null -ne $response)
            # Return the response.
            return $response;

        # Write to log.
        Write-Log -Category "API" -Subcategory 'Entra ID' -Message ('Response from IAM API is empty') -Level Debug;