Which of the following capabilities does IAM provide?

The capability of IAM, or Identity and Access Management, to provide centralized control of AWS accounts is a fundamental aspect of how AWS manages user permissions and security across its services. IAM allows you to create and manage AWS users and groups, and it enables you to grant or deny access to AWS resources through fine-grained permissions.

This centralized control means that an organization can define policies that specify who can access which services and resources within their AWS environment, all from a single interface. This is crucial for maintaining security best practices, ensuring that only authorized users have access to sensitive data and critical infrastructure components.

While the other options may involve aspects of AWS management, they do not directly pertain to IAM's core functionality. For example, IAM does not directly facilitate third-party application integration or provide user activity tracking as built-in features. Moreover, automatic resource scaling is largely managed through services like AWS Auto Scaling and does not fall within the purview of IAM, which is mainly focused on identity and access management. Thus, the choice highlighting IAM's role in centralized control accurately reflects one of its primary capabilities.