please see SESSION INTEGRATION in docs of KCFinder
http://kcfinder.sunhater.com/docs/integrate#session
by setting SESSION var like this
$_SESSION['KCFINDER'] = array();
$_SESSION['KCFINDER']['disabled'] = false;
you will enable the KCFINDER. Do this only for authenticated users and you should be ok.