Broken system after failed (cancelled) upgrade from 5.0.10 to 5.2

Hi and Happy New Year to everyone!
I’m running univention for years now with need for only basic services (LDAP, samba, windows domain controller). Last update in september failed due to some problems:

• disk_space (fixed)
• minimum_ucs_version_of_all_systems_in_domain (should be fixed too)
• keycloak_migration (maybe still open?)

Missing disk space in /boot was fixed successfully (univention-prune-kernels).
System still running without issues after reboot

The problem with the minimum version was an old (non existing) memberserver (named ucs-dashb / 5.0.3). I manually removed these instances in the configuration.
Unfortunately, I don’t fully remember the next steps completely, but I did an “apt autoremove” for not longer needed packages, which must have broken the system.

After I reinstalled all packages which were uninstalled with autoremove and rebooted the system I could access the webportal again, but cannot login ("invalid credentials).

“kinit administrator” is working, but “id administrator” is failing with “no such user”.
“univention-ldapsearch” returns “ldap_bind: Invalid credentials (49)”, so there seems to be a problem with ldap.

Luckily “udm users/user list --filter uid=Administrator | grep DN:” is returning a valid user now (after reinstalling the autoremoved packages), so I can try to reset credentials.

How can I check afterwards (in case of success), that everything is ready for the upgrade?

Login into the portal is now possible, but system diagnostics still shows ldap issues.

Join-script also has some ldap-related errors:

~# univention-run-join-scripts --force
univention-run-join-scripts: runs all join scripts existing on local computer.
copyright (c) 2001-2024 Univention GmbH, Germany

Running pre-joinscripts hook(s): done
Running 01univention-ldap-server-init.inst done
Running 02univention-directory-notifier.inst done
Running 03univention-directory-listener.inst done
Running 04univention-ldap-client.inst done
Running 08univention-apache.inst done
Running 10univention-ldap-server.inst done
Running 11univention-heimdal-init.inst done
Running 11univention-pam.inst done
Running 15univention-directory-notifier-post.inst done
Running 15univention-heimdal-kdc.inst done
Running 18python-univention-directory-manager.inst done
Running 20univention-directory-policy.inst done
Running 20univention-join.inst done
Running 20univention-ldap-config-master.inst failed (exitcode: 1)
Running 22univention-directory-manager-rest.inst done
Running 26univention-nagios-common.inst done
Running 30univention-appcenter.inst failed (exitcode: 1)
Running 30univention-monitoring-client.inst failed (exitcode: 1)
Running 30univention-nagios-client.inst done
Running 31univention-monitoring-s4-connector.inst done
Running 31univention-monitoring-samba.inst done
Running 31univention-nagios-s4-connector.inst done
Running 31univention-nagios-samba.inst done
Running 33univention-portal.inst failed (exitcode: 1)
Running 35univention-appcenter-docker.inst done
Running 35univention-management-console-module-appcenter.indone
Running 35univention-management-console-module-diagnostic.idone
Running 35univention-management-console-module-ipchange.insdone
Running 35univention-management-console-module-join.inst done
Running 35univention-management-console-module-lib.inst done
Running 35univention-management-console-module-quota.inst done
Running 35univention-management-console-module-reboot.inst done
Running 35univention-management-console-module-services.insdone
Running 35univention-management-console-module-setup.inst done
Running 35univention-management-console-module-sysinfo.instdone
Running 35univention-management-console-module-top.inst done
Running 35univention-management-console-module-ucr.inst done
Running 35univention-management-console-module-udm.inst done
Running 35univention-management-console-module-updater.instdone
Running 35univention-management-console-module-welcome.instdone
Running 35univention-server-overview.inst done
Running 36univention-management-console-module-apps.inst done
Running 81univention-nfs-server.inst done
Running 91univention-saml.inst failed (exitcode: 1)
Running 92univention-management-console-web-server.inst failed (exitcode: 3)
Running 96univention-samba4.inst done
Running 97univention-s4-connector.inst failed (exitcode: 1)
Running 98univention-pkgdb-tools.inst done
Running 98univention-samba4-dns.inst done
Running 98univention-samba4-saml-kerberos.inst failed (exitcode: 1)
Running post-joinscripts hook(s): done

After the execution of the join-script, login fails again:
(Authentication failed)