An administrator notices that a flow that runs when a catalog item is submitted is failing because the flow tries to update a record that the flow's user (system) does not have permission to update. What is the best practice to address this?
Running as the requestor uses their permissions and ensures correct access.
Why this answer
Flows can be configured to run as a specific user. Setting the flow to run as the requestor ensures permissions are based on the user who submitted the request, which typically has appropriate access. Granting additional roles to the system user is not recommended.
Using a run script action or business rule does not address the permission issue directly.