There are no service accounts in ConfigMgr. Also, no global admin permissions are given or delegated during co-management configuration.
A global admin account is required during co-management setup to create an Azure AD app registration. There is no other way to create this registration. This is a one time activity that only occurs during setup usin the credentials supplied during the wizard.