Certify the web makes it so stupid simple every server we have, temporary or not, gets setup with it if it’s going to host anything.
The ONLY thing we use our CA for at all (other than base use for AD) is my dev certificates for stuff I publish using ClickOnce