If I understand you question correctly you want to use SSL Offloading. So speak encrypted to the client but plaintext to the server. In this case you need to assign a client-ssl profile, but no server-ssl profile. Afaik there is no client-ssl-incompatible per default. The client-ssl profile is used for the VS, where the client connection is terminated. So the client-ssl profile is the one, which uses the cert-key pair.
If this is not what you have expected, please provide more information. What is the reponse of the BIG-IP, when you access the VS?
Greets,
svs