AWS Role for discovry

Hi… just wondering what the least permissive role I can use for discovery in AWS. Tried read-only and that doesn’t seem to work - another post alludes to administrator access being requiured - I was hoping for something a little less powerful in terms of permissions.

Power User?