When upgrading to v7.5.0, when meeting the blocking error 'Could not create domain', it is possible that it is because the environment is FIPS enabled. As per the release note, version 7.5.0 is not compliant with FIPS nor IPV6 environment:

Release Notes 7.5.0

To check this is the case, here is the full message error from /usr/local/upgrade/logs/ansible.log:

Warning:
The JKS keystore uses a proprietary format. It is recommended to migrate to PKCS12 which is an industry standard format using "keytool -importkeystore -srckeystore /opt/glassfish7/glassfish/domains/domain1/config/keystore.jks -destkeystore /opt/glassfish7/glassfish/domains/domain1/config/keystore.jks -deststoretype pkcs12".
Enter keystore password: Certificate was added to keystore
Could not create password alias keystore /opt/glassfish7/glassfish/domains/domain1/config/domain-passwords( JCEKS not found )( JCEKS not found )( Could not create password alias keystore /opt/glassfish7/glassfish/domains/domain1/config/domain-passwords( JCEKS not found ) )
Command create-domain failed.
- rc: 1
- stderr: CLI130: Could not create domain, domain1 CLI130: Could not create domain, domain1
- start: 2026-01-14 10:30:27.913462
- end: 2026-01-14 10:30:31.649078
- msg: non-zero return code
- changed: True
- cmd: [
- /opt/glassfish/bin/asadmin
- --user
- admin
- --passwordfile
- /tmp/passwords.txt
- create-domain
- --adminport
- 4848
- domain1
]
- delta: 0:00:03.735616
- stderr_lines: [ CLI130: Could not create domain, domain1 CLI130: Could not create domain, domain1

To confirm that it is because of FIPS: run the following command from the machine CLI as root:

fips-mode-setup --check