Read only access to export session report

Hey Guys,

I would like to know how i can give a user read only access to APM so that they can export session reports. I tried Guest, Auditor and Operator but each of these roles give some access to modify items on APM. Does anyone know a better way to provide access to user so they can view reports and graphs.

Thanks!!