I finally solved this, but not in the way I expected. After applying read/write to all the members, and still being denied, I set the default permission to read/write and then removed access to the extraneous nodes and it worked. So in the interface, it looked exactly the same but the "default" setting was now read/write. Now I have permissions that work as I need them.