While creating a rule based on an Active Directory group or username to block or allow a certain HTTPS site, it is noted that the rule is not applying correctly. The HTTP (non-secure) version of the site works fine and a global rule to deny or allow the same site does work correctly as well.
Verdict is not applied due to SSL Interception not working for this particular site. Web Security Service needs to inspect the contents of the HTTPS traffic in order to correctly apply policy decision based on user or group.