We have an environment that has used Bitlocker to secure systems and has keys stored in on prem locations (MEMCM or MBAM etc.). We want to move all management of keys to Intune. We have followed the steps to get a key to Intune via co-manage and workloads along with a CSP (per MS documentation) and have had success of keys being update into Intune. However, the final step of the MS documentation says to use Key rotation in Intune. This works, but how would we automate this for thousands of devices in mass rather than 1 by 1 in the GUI of Endpoint Management?