Rights control is the central part of MIS(management information system) security management .Common rights control which bases the character and the operator can resolve the One-dimension rights management.Rights control based on the operator leads to the large workloads, the operation becomes unpractical when it is dealing with those units that are big and multiclass. On the other hand, rights control based on the character can release the workloads but it also brings us the confusion of duties and the data operation. The model and the practice of Two-dimension rights control are mentioned.The key property is the rights' self-maintenance of the units and the operators. It strongly supports the least work of the DBA(Database Administrator), insure the security of database and the exclusive DBA in the system. The two-dimension rights control has been used in the road transportation management system for 4 years by 42 units all over the Chongqing City with high praise of the users.