Hello GcmRukawa,
Unfortunately the "All Machines" group is a default group and can't be removed, by default computer accounts will have read access to the NFS share.
However, the main recommendation is enable Access-based Enumeration, which will allow you not to distinguish computer accounts but users. Independantly of what the machine's permissions are, any "deny" permission will prevail over the "allow" permission in the machine accounts.
You can read more about Access Based Enumeration here: https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc753731(v=ws.11)?redirectedfrom=MSDN#BKMK_NFS
Hope this helps,
Best regards,