@davidpbrown, the authenticator uses an unregistered session. That means it’s just reading the connection info from the authenticator app. You don’t need to login in to the authenticator to allow the browser to connect to the network. or you don’t even need an account.
Also, in the browser we have re-authenticate option in the right bottom menu popup control which can be used to refresh the session (especially when you want to connect to the different vault)