Try removing the login_firewall, so your security.yml reads as follows. Also, I changed the roles in the memory provider.
providers:
in_memory:
memory:
users:
admin: { password: secret, roles: ROLE_ADMIN }
firewalls:
secured_area:
pattern: ^/
anonymous: ~
form_login:
login_path: /login
check_path: /login_check
logout:
path: /logout
target: /login
access_control:
- { path: ^/login$, roles: IS_AUTHENTICATED_ANONYMOUSLY }
- { path: ^/admin, roles: ROLE_ADMIN }