Disable the guest account or prevent it from connecting in the properties of the shares. It is also desirable to correct the rights to the folder at the ntfs level, prohibiting guest connections \ allowing connections only for specific users - a group.

Well, when you share the folder, specify the users who can connect and that's it.

I would advise to raise the ftp server and give each user a folder for access. Everything is very simple and reliable

When granting access to a folder over the network, it should be (and nothing else) in the access settings for the all (all) group permission is set to full access, in the security settings, a distinction is already made by users or groups, it should be borne in mind that prohibiting settings take precedence over permissive (in other words, for a group, you can give permission for full access to the folder, but for one user from this group, only reading, in this case, the specified user will be allowed to view files but not change them, or in the prohibitive settings for one user of the group, you can prohibit viewing the contents , in this case, regardless of group membership, the user, respectively, will not be able to open / view files / folders)
it seems to me that there are two ways to

1. Make the server a domain controller (terminal.rdp or something like that), and then organize storage with domain groups, group policies, etc. without any problems.
   
2. On the server, create local groups that restrict access to the folder through the Security Properties (you can include various members in the local group, for example DomainName\User; ServerName\User)