I am working on migrating some old System V type services over to "real" systemd services on RHEL 7/8. I have things running for Redhat 7, SLES 12 and SLES 15 just fine. But when I try to get a service running on RHEL 8, I found the system now was requiring my application's pidfile to be in the /run directory...or at least it wants it there. (Our applications typically were writing the pidfile in the application's installation directories.)
I found I was able to accomplish this by changing the application startup scripts and writing to the /run directory. So Success! But now there is one problem that I cannot seem to get over. I need my running services to be running in the context of a particular user (my login id), and not as root. All my research has told me I simply need to specify User= in the .service file in order to accomplish this. But whenever I add that one line to the file, my service start fails. It seems it is failing at the point where the pidfile is written to the /run directory. Pidfile can't be written, the process exits. 
My service file:
Description={removed}
After=remote-fs.target
After=network-online.target
Wants=remote-fs.target
Wants=network-online.target
[Service]
Type=forking
Restart=no
User=myid
TimeoutSec=5min
IgnoreSIGPIPE=no
KillMode=none
GuessMainPID=no
RemainAfterExit=no
SuccessExitStatus=5 6 255
PIDFile=/run/adidmn.pid
ExecStart=<fullPathToScript> start
ExecStop=<fullPathToScript> stop
[Install]
WantedBy=multi-user.target
My start script defines how the daemon is to be run on various platforms, sets some environment variables and in turn calls a shell script which starts the actual process. The called daemon script is runnable directly when called with sudo privilege. My userid is in the sudoers list, but of course, again the owner of the running process is root.
Without the "User=" property in the .service file, I have no problems starting the service. I do always run the systemctl commands as sudo under my own userid. My end goal is to see the actual running process as running under my userid and not as root. I thought adding User=<myid> to the .service file would accomplish this, but that one line makes the service start fail.
The user exists (my own userid) and is also in the sudoers list. /run is owned by root and when the pid file is written there using sudo, the owner of the pid file is root. I tried using su <userid> for the command in my start script, but that resulted in the daemon not starting at all.
Basically, I have different behavior between SuSE and Redhat. My daemon has (for years) come up with a pid file in the installation path of the program. The process is started using su <userid> -c command that starts the process in the context of user "a". The pid file is placed in the application's install path and owned by user "a". SuSE Linux: no problem at all. However, on Redhat, while the process runs, systemd complains with: 
New main PID 26979 does not belong to service, and PID file is not owned by root. Refusing.
Why the difference? Is what I am trying to accomplish "doable?" or is it necessary that root now owns all systemd service processes?
