Yes, conceptually, reducing IT costs is a HIGHLY desirable goal. But think about risk management.
You cannot hand over the keys to the kingdom based on such easily hackable password protection. The cost of business lossess from confidential information or for potential fines of exposed consumer information, depending on the business that you are in, could EASILY be 100x to 1000x any savings. Now, if you could restrict access to specific IP and Mac Addr's (which I acknowedge can be faked) in combination with password protection, you'd have a step in the right direction. Fundamentally, the issues are 1) monitoring breaches and 2) reaction time (immediate) to control access. Irate employees and foreign hackers are the same problem.
Let me know if you find cloud services that will give me reports of unusual (IP/Mac) activity on my user community accounts and what assets were accessed. I would be interested.
In the meantime, it's all fine for academic purposes and anything not mission critical. Just don't ask me to start policing employee content to make sure it's not mission critical. That equals forget it until security is decent.