In the documentation for Microsoft.KeyVault/vaults/secrets/SecretAttributes, there is no explanation for what the enabled property does. The documentation simply states
Determines whether the object is enabled.
What is the difference between an enabled and not-enabled object, and if the naive answer is the correct one, why would anyone need a not-enabled SecretAttribute?
it does exactly that. why would any one want that, well, security reasons? disabling outdated secret without deleting it?