ISE internal CA can be used to deliver certificates for BYOD devices (through BYOD flow), iot devices authenticating To Ise, for example cameras security or pxgrid clients

It’s not meant to be used for servers in your environment

https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/admin_guide/b_ise_admin_guide_23/b_ise_admin_guide_23_chapter_00.html#concept_170E4F1CA46A404AA4C818C02226C8F2