Once a directory configuration is added to the domain for the first time, Enterprise Manager is able to query the domain for users and groups, even though Enterprise Manager is still in restricted mode. To add users and groups, you select the “Configure New Domain Permissions” context menu item from the domain node to start the Configure New Domain Permissions Wizard.
NOTE This wizard is only run for newly created domains, and it only adds administrative users. To modify users and groups after the domain is set up, use the security tab.
Add/remove administrative domain users to a new domain