ldapsearch

All User Accounts

ldapsearch (samAccountType=805306368)

All Admins

ldapsearch (&(samAccountType=805306368)(adminCount=1))

Security Descriptor

ldapsearch (samAccountType=805306368) --attributes name,memberof,ntsecuritydescriptor

Unconstrained Delegation

ldapsearch (&(samAccountType=805306369)(userAccountControl:1.2.840.113556.1.4.803:=524288)) --attributes samaccountname

Constrained Delegation

ldapsearch (&(samAccountType=805306369)(msDS-AllowedToDelegateTo=*)) --attributes samAccountName,msDS-AllowedToDelegateTo

Protocol transition

ldapsearch (&(samAccountType=805306369)(samaccountname=dub-web-1$)) --attributes userAccountControl

[System.Convert]::ToBoolean(16781312 -band 16781312) //True = flag is set