What are the minimum privileges to run credential management reports such as the Cluster State report?