Using Service Accounts / Run As when Running ATFs

Hello,

So I am currently developing and maintaining ATF suites in ServiceNow especifically for the HRSD application. I know that there are certain roles and ACLs that are needed when running things in ATF so the person running these ATFs should have the appropriate ACLs and/or roles to complete the test successfully. I am able to run these ATFs without issues because I have appropriate access but when I have someone run these ATFs, they fail at some point because of the lacking ACL/roles. We cannot just give these access directly to them but they need to validate the components via ATF so that's a big issue that we are facing.

I have two questions in mind with regards to the solution I am trying to come up:

1. Is it possible to "script" the roles needed for them to run these ATFs at the beginning of the ATF? Like "temporarily" provide them these roles and then "rollback" these access grants for them? Or probably impersonating a "service account" at the beginning of the test for them to perform these actions successfully?

2. Is it possible to customize a "run for me" action in which a user with the appropriate access will run the ATFs for the user without these access and return results as the person requesting to run these ATFs in behalf of someone (e.g. User 1 does not have the access required to run specific parts of the ATF but User 2 has. So User 2 would just be running the ATFs in behalf of User 1 and ATF will base its access scope from User 2 but then in auditing the test results, the name of User 1 should appear). The reason for this is that we need to track the original user who run these ATFs and not be clueless as to who is running using an account of someone else without permission.

These are just long shots though but would definitely appreciate everyone's input.

Thanks,