Update
Everything was working fine up to the day of my post. It seems I got it working now. I had a firewall rule that prevented access from IOT VLAN -> IOT VLAN; turned off this rule and instead opted to make wireless network Guest in Unifi Controller.