Hi,
in the documentation there is only documented that you will need full administrative access to all involved devices of the cluster. I didn´t find someone inside CA which can tell me more or had an documnetation of all of the needed security rights inside Windows.
In fact if you want only to monitor the cluster you need only read access to the Cluster Nodes and the Custer Ressources. The AIM will collect the data on the same way as the MS Custer do it.
If you want to minimize the needed rights you need to track the used rights with the Sysinternal Tools. But this was an quit hard work and need a lot of time.In ou projects we deside to use the domain admin group. The easysed way to do it.
Alex