I am using Version 6.5, platinum license
When using user, password for enrollment as described in
https://www.elastic.co/guide/en/beats/metricbeat/current/enroll-beats.html
what are the minimal security role/privileges/fields the user needs to succeed the enrollment.
For security reasons I do not want to expose an user with beats_admin rights e.g. on an edge server within a DMZ.