Extend ACL-level principal validation for configured administrative principals

In order to provide consistent behavior between permission evaluation and access control management, we should extend the test for 'admin' principals to also include any configured administrative principal names as well as the internally used system principal in an extension to OAK-2158.

as in OAK-2158 the result would depend on the configured ImportBehavior and either ignore those entries, add them with a warning or fail the operation.