If the application is part of AVC and if the traffic that is using is HTTPS, you will need to enable decrypt for application detection in the WSA GUI -> Security Services -> HTTPS proxy -> Decrypt for Application Detection.
Other wise WSA unable to inspect the application signature and perform granular action for it since still been encrypted.
This will need to be enabled individually in WSA since this is a global setting of WSA, while SMA appliance only manage policies level (all setting in the "Web Security Manager" tab in WSA).
Once decrypted, you then can set the action from the access policy (which you can do this from SMA appliance)
Hope this helps.