Bug #58318 introduced automatic adding of the univentionObjectIdentifier and a diagnostic module. In our CI tests we see that "univention-join/univention-server-join" creates e.g. DNS objects objects when attributes like dnsEntryZoneForward and dnsEntryZoneReverse and ip are set and those then don't have a univentionObjectIdentifier.
The diagnostic module for example shows (every Jenkins run every day): [dry-run] Updating univentionObjectIdentifier with entryUUID values. [dry-run] Would update 'relativeDomainName=slave,zoneName=ucs.test,cn=dns,dc=ucs,dc=test' | 'c9b6b3a0-ebeb-103f-963e-750a10220e05' [dry-run] Would update 'relativeDomainName=81.21,zoneName=207.10.in-addr.arpa,cn=dns,dc=ucs,dc=test' | 'c9bcbf3e-ebeb-103f-9645-750a10220e05' [dry-run] Would update 'relativeDomainName=backup,zoneName=ucs.test,cn=dns,dc=ucs,dc=test' | '97b19a96-ebf0-103f-9ac9-091f2f6ac5c4' [dry-run] Would update 'relativeDomainName=82.21,zoneName=207.10.in-addr.arpa,cn=dns,dc=ucs,dc=test' | '97b56af4-ebf0-103f-9acc-091f2f6ac5c4' [dry-run] Would update 'relativeDomainName=member,zoneName=ucs.test,cn=dns,dc=ucs,dc=test' | '12b8fd66-ebf5-103f-89df-5f42322f6fe5' [dry-run] Would update 'relativeDomainName=83.21,zoneName=207.10.in-addr.arpa,cn=dns,dc=ucs,dc=test' | '12be9d8e-ebf5-103f-89e2-5f42322f6fe5' [dry-run] Updated 6 records. And we have a PS/customer report about: dn: univentionAppID=radius_9.0,cn=radius,cn=apps,cn=univention,dc=dev,dc=ucs,dc=example,dc=org in a non-mixed environment.