Our company uses the nCircle appliance to scan for security vulnerabilites. It is detecting a vulnerability with the SMSPKG and SMSSIG shares having the everyone group with full control. How can I remove the everyone group and not break anything. What can I substitute in besides authenticated users group since this is also a finding. Has anyone had to do this? I know it is secured by NTFS permissions but the everyone group must be removed. I have no choice.

The official answer will be that you shouldn't tamper with the default permissions. You could try and configure the site servers with full control and see if that breaks anything.Kent Agerlund | http://scug.dk/ | The Danish community for System Center products

You could set these share permissions for Everyone to Read. Make sure that you SCCM computer account has FULL control on this share. One method would be: <Server>\Administrators - Full Control, Read,Change. Add your SCCM server computer account to Administrator group. I configued like this and did not noticed any issues, since last 3-4 years.Regards, Madan

I configued like this and did not noticed any issues, since last 3-4 years. I just wanted to second Kent's statement. It's not supported to change those permissions manually (even it might work).