For a successful Compliance Scan Symantec SGOS asset, the minimum privilege required is the Read/Write, since the show configuration expanded command is used to view the current configuration settings of the device, which requires enable ( privileged mode). The privileged mode is required for executing the show configuration expanded command, which is the main command needed for the scans. It allows you to display various configuration parameters and their values.
Hence, the minimal privilege for a successful Symantec SGOS ML scan is admin with read/write permissions.
Note: Users must select Target Type as Symantec SGOS (PC) while creating an authenticated record in UI.