Hello

I am looking for some best practice advice.  My aim is to minimise the amount of logging done on a node (for the purposes of TAC debugging etc.) whilst allowing me to still see what I need to see via Reports, Live Log, Live Sessions etc in the GUI.  Am I correct in saying that the "Local Logging" tick box shown below is NOT used for the purposes of displaying useful information in the GUI (e.g. Live Logs, Reporting etc.) and rather, it's a debugging tool for advanced troubleshooting on the node's CLI?  If so, it should be quite harmless to disable this on all Logging Categories, right?  If I have a TAC case I am happy to enable this for debugging.  But it seems overkill to have this running all over the place.

My understanding is that in the case of the Logging Category shown below (Passed Authentications) the PSN sends events to MnT via Syslog and then the PAN should request that data from the MnT when needed.  Which again begs the question, why do I need this in the local logs too?

What is meant by "local" anyway, since this is a global setting?  Does it mean it will just log in the relevant cases (e.g. Passed Authentications will only create logs on a PSN where Policy Service is enabled?)