Privileged Access Management PAM rule priority problems

PAM does not seem to have any logic behind the priority in which rules are evaluated and processed. According to tech support, rules are checked independently and as soon as it hits one that applies to the elevation request, the request is approved, or denied.  For example - i created a rule to automatically elevate requests from all users of all organizations for a particular quickbooks .exe. I tested this with my computer/user and it worked fine. I then created an auto deny rule with the exact same program parameters, and I added my user name.  So in theory, it should deny the request when i try to elevate it, but allow everyone else.  However, when I requested the elevation for quickbooks it ignored the deny rule and automatically elevated my request.  I then went back and deleted the automatic elevation rule, tried it again, and this time it denied my auto elevation because the deny rule was the only one in place for quickbooks.  One would think that the most restrictive policy should be used when evaluating requests.  Deny requests should take precedence over allow requests for example.  So at this point I'm kind of confused as to the best practice for rule creation.