I have consistent event 1021 messages about active sync not allowing the health mailboxes to connect. This is due to the fact that we require password, device encryption, etc... for devices to connect. Easy enough right? Just create a new active sync policy or "mobile device mailbox policies" in 2013. Wrong.....
I found this http://technet.microsoft.com/en-us/library/aa997929(v=exchg.150).aspx which contains incorrect syntax for changing a policy. I found the correct syntax elsewhere (big surprise), but I keep receiving an error that the health mailboxes do not exist on my AD servers.
Any help would be appreciated. As of now, I have the health service disabled because it is completely unreliable and inaccurate.
<Rant> The health checks in 2013 appear to be as much of an afterthought as coexistence. It's mind boggling how poorly thought out this stuff is. </Rant>