.NET added very solid CNG support in last couple years, so developers easily can add CNG support in their applications. It is what was significantly changed since I wrote that post. World moves toward CNG (modern) crypto. However, the question is too broad and I would configure every template according to intended purpose and applications that will utilize certificates. If you would clarify your question to be more specific, then I maybe could add more specific recommendations.