Yes, the PSP is the issue. For this purposevit's better to assume it works as a push. 1 time only. A pure Policy will always sync. Matchng the local DB with the tasks on the server. Changing your delivery method will definately work for you. Create the task, add a policy delivery method, add your ldap targets and start. Set and forget :)
Required policy. That translates to what Frank was pointing out. Your policy needs to periodically run again. You can create a delivery method for this. We set up our required policies to run once a day, but you have to make sure that the detection is working properly in a package, otherwise you could end up with the package trying to reinstall over and over again. We didn't like the outcome of two packages where one is a dependent of the other. Setting up detection in one of the packages, which then if detected causes the installation of the dependent package. This model is weird and ackward, and its prone to failure (unless LANDesk has fixed all of this.) In the past you could get false positives on the detection because it utilizes vulscan to perform the detection logic, but if vulscan was already running, for instance performing a security scan at the time, it would cause an error code return of the additional copy of vulscan being called by software distribution, which would produce a false positive. This would then trigger the dependent package to be installed even if it really wasn't needed. Because of this issue we chose a different path. We build custom definitions to install software. This way vulscan itself handles all the logic of detection and installation. Then we create packages that simple call vulscan with the /repair switch and the name of the custom definition. When these packages are scheduled, we set them up for daily frequency, and this way when a policy sync occurs it will kick vulscan and attempt to repair the patch. If the patch is not detected, nothing happens. The return code to the task will be no patches found basically. This is a BIG change though, so I wouldn't expect that you'd jump right at this. Can take a major rethink of how things are done. There are obviously limits. Hope simething here is somewhat useful to ya.