/Quarantine Valid only on an existing direct, outbound trust. Set or clear the domain quarantine attribute. Default is "no". ...

/Quarantine         Valid only on an existing direct, outbound trust. Set or 
                    clear the domain quarantine attribute. Default is "no".
                    When "yes" is specified, then only SIDs from the directly
                    trusted domain will be accepted for authorization data 
                    returned during authentication. SIDS from any other 
                    domains will be removed. Specifying /Quarantine without 
                    yes or no will display the current state.

/NameSuffixes       Valid only for a forest trust or a Forest Transitive 
                    Non-Windows Realm Trust . Lists the routed name suffixes 
                    for trust_name on the domain named by trusting_domain_name.
                    The /UserO and /PasswordO values can be used for 
                    authentication. The /Domain parameter is not needed.

/ToggleSuffix       Use with /NameSuffixes to change the status of a name 
                    suffix. The number of the name entry, as listed by a 
                    preceding call to /NameSuffixes, must be provided to 
                    indicate which name will have its status changed. Names 
                    that are in conflict cannot have their status changed 
                    until the name in the conflicting trust is disabled. Always
                    precede this command with a /NameSuffixes command because 
                    LSA will not always return the names in the same order.

/EnableSIDHistory   Valid only for an outbound, forest trust. Specifying "yes" 
                    allows users migrated to the trusted forest from any other 
                    forest, to use SID history to access resources in this 
                    forest. This should be done only if the trusted forest 
                    administrators can be trusted enough to specify SIDs of 
                    this forest in the SID history attribute of their users 
                    appropriately. Specifying "no" would disable the ability of
                    the migrated users in the trusted forest to use SID history
                    to access resources in this forest. Specifying 
                    /EnableSIDHistory without yes or no will display the 
                    current state.
                    
/ForestTRANsitive   Valid only for Non-Windows Realm Trusts and can only be 
                    performed on the root domain for a forest.
                    Specifying "yes" marks this trust as Forest Transitive.
                    Specifying "no" marks this trust as Not Forest Transitive.
                    Specifying /ForestTRANsitive without yes or no will 
                    display the current state of this trust attribute.
                    
/SelectiveAUTH      Valid only on outbound Forest and External trusts.
                    Specifying "yes" enables selective authentication across 
                    this trust.
                    Specifying "no" disables selective authentication across
                    this trust.
                    Specifying /SelectiveAUTH without yes or no will display
                    the current state of this trust attribute.
                    
/AddTLN             Valid only for a Forest Transitive Non-Windows Realm Trust
                    and can only be performed on the root domain for a forest.
                    Adds the specified Top Level Name (DNS Name Suffix) to the 
                    Forest Trust Info for the specified trust.
                    Also see the /NameSuffixes operation to list name suffixes.
                    
/AddTLNEX           Valid only for a Forest Transitive Non-Windows Realm Trust
                    and can only be performed on the root domain for a forest.
                    Adds the specified Top Level Name Exclusion (DNS Name 
                    Suffix)to the Forest Trust Info for the specified trust.
                    Also see the /NameSuffixes operation to list name suffixes.                    
                    
/RemoveTLN          Valid only for a Forest Transitive Non-Windows Realm Trust
                    and can only be performed on the root domain for a forest.
                    Removes the specified Top Level Name (DNS Name Suffix) from
                    the Forest Trust Info from the specified trust.
                    Also see the /NameSuffixes operation to list name suffixes.                    
                    
/RemoveTLNEX        Valid only for a Forest Transitive Non-Windows Realm Trust
                    and can only be performed on the root domain for a forest.
                    Removes the specified Top Level Name Exclusion (DNS Name 
                    Suffix)from the Forest Trust Info from the specified trust.
                    Also see the /NameSuffixes operation to list name suffixes.                    

/SecurePasswordPrompt 
                    Use secure credentials popup to specify credentials. This
                    option should be used when smartcard credentials need to be
                    specified. This option is only in effect when the password 
                    value is supplied as *

/EnableTgtDelegation
                    Set to no to disable Kerberos full delegation on outbound 
                    forest trusts. This prevents services in the other forests 
                    from receiving forwarded TGTs. Warning: By setting 
                    EnableTgtDelegation to no, services in the other forests 
                    with "Trust this computer/user for delegation to any 
                    service" configured will not be able to use Kerberos full 
                    delegation with any account in this forest to any service.