When enabling/disabling or updating the logging in the NAT, Firewall and VPN , the task succeeded in VMware Cloud Director (VCD) and no change is made in NSX-T.. editing the NAT/Firewall/VPN rule again will show the toggle for logging is not updated. 

VMware Cloud Director 10.x

This is a known issue impacting Cloud Director 10.5.x UI. This issue has been resolved in 10.6.x

in 10.6.x, users will now see the error: " Cannot configure system logging, missing right: Organization vDC Gateway: Configure System Logging"

The user will need the permission: "Configure System Logging"  in order to update the logging option. ensure this is pushed from the default rights bundle.