Need to help a remote user without opening the GUI? Use the Get-BitLockerRecoveryKey cmdlet (available on domain-joined Windows 10/11 and Server 2016+).
The BitLocker recovery key provides full access to the data on the drive. get bitlocker key from active directory
Multiple keys for one computer. Explanation: Every time BitLocker is suspended/resumed or the TPM is cleared, AD stores a new recovery key. The oldest key with the correct Key ID is usually the right one. Do not guess—match the Key ID exactly. Need to help a remote user without opening the GUI