Hello Julian,
By default in MS-AD any member of the "Authenticated Users" group has READ permissions on all user and group objects in the compete tree.
(This can be changed with Users&Computers / View / Advanced / right-click-the-object / Properties / Security)
To answer your question, for integrating AD via LDAP to MS-AD an ordinary user is sufficient.