Initially, the certificate templates are automatically created in the configuration partition of the AD when the Certificate Template Manager is opened. I assume that if a new template is delivered with a new OS version (e.g. Kerberos Authentication in Windows Server 2008), it will create the new template when I opening the manager on the new OS for the first time.
As I understand, LoadDefaultTemplates=0 prevents the Issue CA from automatically assigning the certificate templates and so not offering them to the clients.
Does LoadDefaultTemplates=0 prevent also the creation of new templates which are not yet in the configuration partition of the AD? Or only that the existing certificate templates in the configuration partition are not provided by the new CA?

