Computer Configuration\Administrative Templates\Windows Components\BitLocker Drive Encryption
It is possible, that SafeGuard (or Central) Policies collide with Bitlocker GPO without recognizing it.
It might be confusing to separate SGN local cache values with Bitlocker registry-entries.
A simple Client tool should match HKEYLOCALMACHINE\SOFTWARE\Policies\Microsoft\FVE with die LC-Policies and create a *.xml into %ALLUSERSPROFILE%\Utimaco\SafeGuard Enterprise\
In this folder the log is automatically gathered by the SDU without changing and can be used even on older SG-versions.
The shortly described values should be matched as a simple "match"/"mismatch"/"not configured" to easily see possible configuration errors.
The tool is independent from the client itself and can be distributed by KBA and/or future client releases.