In regard to the ignorePerms option, I found an answer here:
I’m still not 100% sure what Syncthing does in Linux-to-Linux sync with ACL’s and group sticky bits.
My guess is that when ACL’s and group sticky bits are set on all devices, we can use the ignorePerms option to make those things entirely control the file permissions and group ownership.
However, I have read a number of statements like this one: Sync file ownership, and permissions - #2 by calmh
Permissions are synchronized. Owner and group would require running as root; this is neither recommended nor supported right now. There would be a bunch of corner cases to solve in that case as well…
That makes it sound like Syncthing cannot do what I am asking. Hence confusion.