The preview actually uses the logged-in user for permissions checks, which just made me realize it must be kinda useless for checking what others see.
I think the best approach would be to let admins enter a username, then use that user in the Guardian checks.