As an administrator types in information the directory matches results to the query. For example, if a user typed in the name "Kevin" the UI only would show users named Kevin. The same is true when searching for user attributes or other data stored in the directory.
The new management UI would work against multi-domains and forests in the directory and takes advantage of PowerShell scripting. It also has navigation controls so users can show or hide certain information fields.
The goal is to hide the sea of tabs administrators see now when managing the directory and make it easier to crawl the directory's structure or tree.
The UI also has a section to let users work with custom schema and attributes within the tool, which is not possible with the current management interface.
Lissoir said work on the management UI is still very early and many questions remain to be answered, such as access control.
The new federation tools use prebuilt scripts programmed against ADFS to automate the creation of federations between companies.
ADFS has been part of the directory for some time now, but the complexity of architecting a system across company boundaries is one factor that has been holding back mass adoption of federations within the Microsoft platform.
Microsoft' Stuart Kwan, director of program management for identity and access, showed a simple UI that used three questions before kicking off an automated federation set up so users from one company could access a SharePoint server running in another company.
Kwan started with an unconfigured federation server and by the time the scripts had run the server was configured, metadata had been exchanged, and certificates created.
Kwan said the new tools are incorporating the WS-Federation protocol being developed for standardization by the Organization for the Advancement of Structured Information Standards to promote cross-platform integration.