CLI using Windows Hello on subsequent uses

Environment:

• Win11
• PowerShell (various versions)
• Regina Rexx program which invokes CLI via ADDRESS COMMAND (here's the outlier)

1P settings:

• Security
  • Unlock using Windows Hello
  • Show Windows Hello prompt automatically
  • Use TPM
  • Confirm password interval set
  • Auto-lock interval set for 1 week (machine is in home office and generally is shut off over the weekend, this is fine for my working environment)
• Developer
  •  CLI integrated
• Environment:
  • OP_BIOMETRIC_UNLOCK_ENABLED="true" set by the Regina Rexx script

The first time it's run after startup, I receive the password prompt, whether or not I've already entered it for another use of 1P. The password prompt text is the normal "password needed before using Windows Hello". Subsequent CLI calls from the program don't trigger authentication pop-ups. On subsequent runs, even within a minute, I am asked to authenticate with password again. 

My desired experience is that I should only receive the password prompt after startup (whether it's from the app or CLI), and then just receive Windows Hello authentication as triggered.

As a silverback software developer, the only thing that pops into my mind is that the authentication scope is limited to the specific execution of the program. I have set the BIOMETRIC environment variable at the shell level before executing Regina and that doesn't change the behavior. So, I figure I'm missing something, and someone more familiar with the ecosystem might have good suggestions.

Thanks in advance,
Ray