Due to a lack of response to my post, I opened up a case with Symantec Tech Support. The support engineer tried different things but was unable to resolve my issue and even ended up (unknowingly) killing SMC access for all of my help desk staff in the process. Got that resolved by myself although original problem still exists.
Anyway, what I want is to create a very restrictive (read-only) Symantec Role whose members can only generate reports and use PCAnywhere to remote into user desktops. For the most part, the role I created from scratch gets this done although, again, the Audit Software Search report pulls up no info, and found that drilling down into the Installed Software report also returns nothing.
I seem to have the engineer stumped as he has yet to call me back after our last call the middle of last week. He said he was going to do some testing in his lab where I suspect he's seeing the same thing. Luckily this isn't a show stopper although not sure how to figure out what resource(s) the blank reports are trying to get to.