Pull Certs from all Remote DCs

<p style=“text-align: left;”>Need assistance to pull all certs from remote domain controllers.I am able to pull all certs but not from NTDS store(LDAPs)</p>
<p style=“text-align: left;”>I have tried the following commands.</p>

Invoke-Command -ComputerName (get-addomaincontroller -filter *).name  -ScriptBlock {Get-ChildItem -Recurse cert: |select Thumbprint,PSPath,PSChildName,EnhancedKeyUsageList,NotAfter,NotBefore,Subject} |export-csv  certs.csv

Invoke-Command -ComputerName (get-addomaincontroller -filter *).name  {Get-ChildItem Cert:\LocalMachine\my -Recurse -Force |export-csv  certs.csv}


AFAIK, PowerShell can open only LocalMachine and CurrentUser stores and doesn’t support ServiceAccount stores. There could be some thirdparty executable to achieve this.